Mock Version: 1.3.4
Mock Version: 1.3.4
ENTER ['do'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target ppc64 --nodeps /builddir/build/SPECS/nss.spec'], chrootPath='/var/lib/mock/f26-build-8521864-749792/root'uid=1000gid=425env={'SHELL': '/bin/bash', 'LANG': 'en_US.UTF-8', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOSTNAME': 'mock', 'TERM': 'vt100', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'HOME': '/builddir'}timeout=172800shell=FalseprintOutput=Falselogger=<mockbuild.trace_decorator.getLog object at 0x3fffa5b73588>user='mockbuild'nspawn_args=[])
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target ppc64 --nodeps /builddir/build/SPECS/nss.spec'] with env {'SHELL': '/bin/bash', 'LANG': 'en_US.UTF-8', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOSTNAME': 'mock', 'TERM': 'vt100', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'HOME': '/builddir'} and shell False
Building target platforms: ppc64
Building for target ppc64
Wrote: /builddir/build/SRPMS/nss-3.30.2-1.1.fc26.src.rpm
Child return code was: 0
ENTER ['do'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bb --target ppc64 --nodeps /builddir/build/SPECS/nss.spec'], chrootPath='/var/lib/mock/f26-build-8521864-749792/root'uid=1000gid=425env={'SHELL': '/bin/bash', 'LANG': 'en_US.UTF-8', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOSTNAME': 'mock', 'TERM': 'vt100', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'HOME': '/builddir'}timeout=172800shell=FalseprintOutput=Falselogger=<mockbuild.trace_decorator.getLog object at 0x3fffa5b73588>user='mockbuild'nspawn_args=[])
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bb --target ppc64 --nodeps /builddir/build/SPECS/nss.spec'] with env {'SHELL': '/bin/bash', 'LANG': 'en_US.UTF-8', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOSTNAME': 'mock', 'TERM': 'vt100', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'HOME': '/builddir'} and shell False
Building target platforms: ppc64
Building for target ppc64
Executing(%prep): /bin/sh -e /var/tmp/rpm-tmp.fmXRJH
+ umask 022
+ cd /builddir/build/BUILD
+ cd /builddir/build/BUILD
+ rm -rf nss-3.30.2
+ /usr/bin/gzip -dc /builddir/build/SOURCES/nss-3.30.2.tar.gz
+ /usr/bin/tar -xof -
+ STATUS=0
+ '[' 0 -ne 0 ']'
+ cd nss-3.30.2
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
+ cd /builddir/build/BUILD
+ cd nss-3.30.2
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
Patch #2 (add-relro-linker-option.patch):
+ echo 'Patch #2 (add-relro-linker-option.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .relro --fuzz=0
patching file nss/coreconf/Linux.mk
Hunk #1 succeeded at 177 (offset 3 lines).
Patch #3 (renegotiate-transitional.patch):
+ echo 'Patch #3 (renegotiate-transitional.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .transitional --fuzz=0
patching file ./nss/lib/ssl/sslsock.c
Hunk #1 succeeded at 65 (offset -7 lines).
Patch #16 (nss-539183.patch):
+ echo 'Patch #16 (nss-539183.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .539183 --fuzz=0
patching file ./nss/cmd/httpserv/httpserv.c
Hunk #1 succeeded at 969 (offset 16 lines).
patching file ./nss/cmd/selfserv/selfserv.c
Hunk #1 succeeded at 1679 (offset -32 lines).
Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):
+ echo 'Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .noocsptest --fuzz=0
patching file nss/tests/chains/scenarios/scenarios
Hunk #1 succeeded at 18 (offset -32 lines).
Patch #47 (utilwrap-include-templates.patch):
+ echo 'Patch #47 (utilwrap-include-templates.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .templates --fuzz=0
patching file nss/lib/nss/config.mk
Patch #49 (nss-skip-bltest-and-fipstest.patch):
+ echo 'Patch #49 (nss-skip-bltest-and-fipstest.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .skipthem --fuzz=0
patching file ./nss/cmd/Makefile
Patch #50 (iquote.patch):
+ echo 'Patch #50 (iquote.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .iquote --fuzz=0
patching file ./nss/cmd/certcgi/Makefile
patching file ./nss/cmd/certutil/Makefile
patching file ./nss/cmd/lib/Makefile
patching file ./nss/cmd/modutil/Makefile
patching file ./nss/cmd/selfserv/Makefile
patching file ./nss/cmd/ssltap/Makefile
patching file ./nss/cmd/strsclnt/Makefile
patching file ./nss/cmd/tstclnt/Makefile
patching file ./nss/cmd/vfyserv/Makefile
patching file ./nss/coreconf/location.mk
patching file ./nss/gtests/pk11_gtest/Makefile
patching file ./nss/gtests/ssl_gtest/Makefile
Hunk #1 succeeded at 50 (offset 7 lines).
patching file ./nss/lib/certhigh/Makefile
patching file ./nss/lib/cryptohi/Makefile
patching file ./nss/lib/nss/Makefile
patching file ./nss/lib/pk11wrap/Makefile
patching file ./nss/lib/ssl/Makefile
Hunk #1 succeeded at 56 (offset 7 lines).
Patch #58 (rhbz1185708-enable-ecc-3des-ciphers-by-default.patch):
+ echo 'Patch #58 (rhbz1185708-enable-ecc-3des-ciphers-by-default.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .1185708_3des --fuzz=0
patching file ./nss/lib/ssl/ssl3con.c
Hunk #1 succeeded at 108 (offset -10 lines).
+ pushd nss
~/build/BUILD/nss-3.30.2/nss ~/build/BUILD/nss-3.30.2
Patch #59 (nss-check-policy-file.patch):
+ echo 'Patch #59 (nss-check-policy-file.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .check_policy_file --fuzz=0
patching file lib/pk11wrap/pk11pars.c
Patch #62 (nss-skip-util-gtest.patch):
+ echo 'Patch #62 (nss-skip-util-gtest.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .skip_util_gtest --fuzz=0
patching file ./gtests/manifest.mn
Patch #63 (nss-gcc7.patch):
+ echo 'Patch #63 (nss-gcc7.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .gcc7 --fuzz=0
patching file lib/libpkix/pkix_pl_nss/pki/pkix_pl_ocsprequest.c
Patch #64 (nss-1328318-v8-3.30.patch):
+ echo 'Patch #64 (nss-1328318-v8-3.30.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .1328318 --fuzz=0
patching file gtests/nss_bogo_shim/nss_bogo_shim.cc
patching file gtests/ssl_gtest/tls_agent.cc
patching file lib/ssl/sslsock.c
patching file gtests/ssl_gtest/Makefile
patching file gtests/ssl_gtest/manifest.mn
patching file gtests/ssl_gtest/ssl_versionpolicy_unittest.cc
+ popd
~/build/BUILD/nss-3.30.2
+ /usr/bin/cp ./nss/lib/softoken/lowkeyi.h ./nss/cmd/rsaperf
+ /usr/bin/cp ./nss/lib/softoken/lowkeyti.h ./nss/cmd/rsaperf
+ /usr/bin/mv ./nss/lib/util/verref.h ./nss/verref.h
+ /usr/bin/rm -rf ./nss/lib/freebl
+ /usr/bin/rm -rf ./nss/lib/softoken
+ /usr/bin/rm -rf ./nss/lib/util
+ /usr/bin/rm -rf ./nss/cmd/bltest
+ /usr/bin/rm -rf ./nss/cmd/fipstest
+ /usr/bin/rm -rf ./nss/cmd/rsaperf_low
+ /usr/bin/rm -rf ./nss/external_tests/util_gtests
+ exit 0
Executing(%build): /bin/sh -e /var/tmp/rpm-tmp.Nrzkl7
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.30.2
+ NSS_NO_PKCS11_BYPASS=1
+ export NSS_NO_PKCS11_BYPASS
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ XCFLAGS='-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64'
+ export XCFLAGS
+ PKG_CONFIG_ALLOW_SYSTEM_LIBS=1
+ PKG_CONFIG_ALLOW_SYSTEM_CFLAGS=1
+ export PKG_CONFIG_ALLOW_SYSTEM_LIBS
+ export PKG_CONFIG_ALLOW_SYSTEM_CFLAGS
++ /usr/bin/pkg-config --cflags-only-I nspr
++ sed s/-I//
+ NSPR_INCLUDE_DIR='/usr/include/nspr4 '
+ NSPR_LIB_DIR=/usr/lib64
+ export NSPR_INCLUDE_DIR
+ export NSPR_LIB_DIR
++ /usr/bin/pkg-config --cflags-only-I nss-util
++ sed s/-I//
+ export 'NSSUTIL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4 '
+ NSSUTIL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4 '
+ export NSSUTIL_LIB_DIR=/usr/lib64
+ NSSUTIL_LIB_DIR=/usr/lib64
++ /usr/bin/pkg-config --cflags-only-I nss-softokn
++ sed s/-I//
+ export 'FREEBL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4 '
+ FREEBL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4 '
+ export FREEBL_LIB_DIR=/usr/lib64
+ FREEBL_LIB_DIR=/usr/lib64
+ export USE_SYSTEM_FREEBL=1
+ USE_SYSTEM_FREEBL=1
+ export NSS_USE_SYSTEM_FREEBL=1
+ NSS_USE_SYSTEM_FREEBL=1
++ /usr/bin/pkg-config --libs nss-softokn
+ export 'FREEBL_LIBS=-L/usr/lib64 -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl '
+ FREEBL_LIBS='-L/usr/lib64 -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl '
+ export SOFTOKEN_LIB_DIR=/usr/lib64
+ SOFTOKEN_LIB_DIR=/usr/lib64
+ export USE_SYSTEM_NSSUTIL=1
+ USE_SYSTEM_NSSUTIL=1
+ export USE_SYSTEM_SOFTOKEN=1
+ USE_SYSTEM_SOFTOKEN=1
+ export NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_USE_SYSTEM_SQLITE=1
+ export NSS_USE_SYSTEM_SQLITE
+ USE_64=1
+ export USE_64
+ export IN_TREE_FREEBL_HEADERS_FIRST=1
+ IN_TREE_FREEBL_HEADERS_FIRST=1
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ /usr/bin/make -C ./nss/coreconf
make: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
make[1]: Nothing to be done for 'export'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 nsinstall.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pathsub.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pathsub.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pathsub.o -m64 -Wl,-z,relro   -lpthread  -ldl -lc
true -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
make: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf'
+ /usr/bin/make -C ./nss/lib/dbm
make: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm'
cd include; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
Creating ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
Creating ../../../../dist/private/dbm
../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
make[1]: Nothing to be done for 'export'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
cd include; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
make[1]: Nothing to be done for 'libs'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/db.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 db.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/h_bigkey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 h_bigkey.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/h_func.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 h_func.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/h_log2.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 h_log2.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/h_page.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 h_page.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 hash.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/hash_buf.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 hash_buf.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/mktemp.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 mktemp.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dirent.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 dirent.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libdbm.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/db.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/h_bigkey.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/h_func.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/h_log2.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/h_page.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/hash.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/hash_buf.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/mktemp.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dirent.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libdbm.a ../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
make: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm'
+ export POLICY_FILE=nss.config
+ POLICY_FILE=nss.config
+ export POLICY_PATH=/etc/crypto-policies/back-ends
+ POLICY_PATH=/etc/crypto-policies/back-ends
+ /usr/bin/mkdir -p ./dist/private/nss
+ /usr/bin/mv ./nss/verref.h ./dist/private/nss/verref.h
+ /usr/bin/make -C ./nss
make: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss'
cd coreconf; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
true -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf'
cd lib; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib'
cd dbm; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm'
cd include; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
make[3]: Nothing to be done for 'export'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm'
cd base; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/base'
Creating ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssbaset.h nssbase.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 baset.h base.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/base'
cd dev; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dev'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ckhelper.h devm.h devtm.h devt.h dev.h nssdevt.h nssdev.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dev'
cd pki; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pki'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pki.h pkit.h nsspkit.h nsspki.h pkistore.h pki3hack.h pkitm.h pkim.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pki'
cd libpkix; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix'
cd include; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/include'
cd pkix; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
cd pki; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss'
cd include; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/include'
cd pkix; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss'
There are no private exports.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix'
cd certdb; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certdb'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cert.h certt.h certdb.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 genname.h xconst.h certxutl.h certi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certdb'
cd certhigh; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certhigh'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ocsp.h ocspt.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ocspti.h ocspi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pk11wrap'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmod.h secmodt.h secpkcs5.h pk11func.h pk11pub.h pk11priv.h pk11sdr.h pk11pqg.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmodi.h dev3hack.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/cryptohi'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cryptohi.h cryptoht.h key.h keyhi.h keyt.h keythi.h sechash.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 keyi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/cryptohi'
cd nss; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/nss'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nss.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssrenam.h nssoptions.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/nss'
cd ssl; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ssl'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ssl.h sslt.h sslerr.h sslproto.h preenc.h ../../../dist/public/nss
There are no private exports.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ssl'
cd pkcs7; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs7'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmime.h secpkcs7.h pkcs7t.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs12'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkcs12t.h pkcs12.h p12plcy.h p12.h p12t.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs12'
cd smime; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/smime'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cms.h cmst.h smime.h cmsreclist.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/smime'
cd crmf; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/crmf'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 crmf.h crmft.h cmmf.h cmmft.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 crmfi.h crmfit.h cmmfi.h cmmfit.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/crmf'
cd jar; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/jar'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 jar.h jar-ds.h jarfile.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/jar'
cd ckfw; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw'
cd builtins; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw/builtins'
../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssckbi.h ../../../../dist/public/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssck.api nssckepv.h nssckft.h nssckfw.h nssckfwc.h nssckfwt.h nssckg.h nssckmdt.h nssckt.h ../../../dist/public/nss
cd builtins; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw/builtins'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ck.h ckfw.h ckfwm.h ckfwtm.h ckmd.h ckt.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw'
cd sysinit; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/sysinit'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/sysinit'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib'
cd cmd; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd'
cd lib; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/lib'
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 basicutil.h secutil.h pk11table.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/lib'
cd shlibsign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign'
cd mangle; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign/mangle'
make[3]: Nothing to be done for 'export'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/addbuiltin'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/addbuiltin'
cd atob; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/atob'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/atob'
cd btoa; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/btoa'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/btoa'
cd certcgi; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certcgi'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certcgi'
cd certutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certutil'
cd chktest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/chktest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/chktest'
cd crlutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crlutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crlutil'
cd crmftest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crmftest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crmftest'
cd dbtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/dbtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/dbtest'
cd derdump; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/derdump'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/derdump'
cd digest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/digest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/digest'
cd httpserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/httpserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/httpserv'
cd listsuites; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/listsuites'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/listsuites'
cd makepqg; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/makepqg'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/makepqg'
cd multinit; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/multinit'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspresp'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/oidcalc'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/oidcalc'
cd p7content; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7content'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7content'
cd p7env; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7env'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7env'
cd p7sign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7sign'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7sign'
cd p7verify; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7verify'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7verify'
cd pk12util; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk12util'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11ectest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11gcmtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11mode'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk1sign'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk1sign'
cd pp; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pp'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pwdecrypt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/rsaperf'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/sdrtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/selfserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/selfserv'
cd signtool; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signtool'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signtool'
cd signver; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signver'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signver'
cd smimetools; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/smimetools'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/smimetools'
cd ssltap; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ssltap'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/strsclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/symkeyutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/symkeyutil'
cd tests; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tests'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tests'
cd tstclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tstclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfychain'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfyserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfyserv'
cd modutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/modutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pkix-errcodes'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pkix-errcodes'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd'
cd gtests; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests'
cd google_test; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/google_test'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/google_test'
cd common; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/common'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/common'
cd der_gtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/der_gtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/der_gtest'
cd nss_bogo_shim; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/nss_bogo_shim'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests'
cd coreconf; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
true -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf'
cd lib; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib'
cd dbm; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm'
cd include; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
make[3]: Nothing to be done for 'libs'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libdbm.a ../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm'
cd base; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/base'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/arena.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 arena.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/error.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 error.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/errorval.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 errorval.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/hashops.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 hashops.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libc.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 libc.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tracker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 tracker.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/item.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 item.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/utf8.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 utf8.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/list.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 list.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 hash.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssb.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/arena.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/error.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/errorval.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/hashops.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libc.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tracker.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/item.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/utf8.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/list.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/hash.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssb.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/base'
cd dev; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dev'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/devslot.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 devslot.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/devtoken.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 devtoken.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/devutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 devutil.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ckhelper.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/devslot.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/devtoken.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/devutil.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dev'
cd pki; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pki'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 asymmkey.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certificate.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certificate.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cryptocontext.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/symmkey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 symmkey.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 trustdomain.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tdcache.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 tdcache.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certdecode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certdecode.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkistore.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkistore.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkibase.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkibase.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pki3hack.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certificate.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/symmkey.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tdcache.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certdecode.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkistore.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkibase.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pki'
cd libpkix; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix'
cd include; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/include'
make[3]: Nothing to be done for 'libs'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/include'
cd pkix; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_certselector.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_comcertselparams.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a ../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_crlselector.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_comcrlselparams.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a ../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_basicconstraintschecker.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_certchainchecker.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_crlchecker.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_ekuchecker.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_expirationchecker.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_namechainingchecker.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_nameconstraintschecker.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_ocspchecker.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_revocationmethod.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_revocationchecker.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_policychecker.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_signaturechecker.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_targetcertchecker.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a ../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_trustanchor.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_procparams.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_valparams.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_resourcelimits.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a ../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_buildresult.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_policynode.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_valresult.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_verifynode.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a ../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_store.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a ../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_validate.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_lifecycle.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_build.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a ../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_tools.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_error.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_logger.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_list.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_errpaths.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a ../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_basicconstraints.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_cert.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_certpolicyinfo.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_certpolicymap.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_certpolicyqualifier.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_crl.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_crldp.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_crlentry.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_date.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_generalname.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_infoaccess.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_nameconstraints.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_ocsprequest.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_ocspresponse.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_publickey.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_x500name.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_ocspcertid.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a ../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_bigint.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_bytearray.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_common.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_error.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_hashtable.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_lifecycle.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_mem.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_monitorlock.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_mutex.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_object.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_oid.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_primhash.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_rwlock.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_string.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a ../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_aiamgr.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_colcertstore.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_httpcertstore.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_httpdefaultclient.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_ldaptemplates.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_ldapcertstore.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_ldapresponse.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_ldaprequest.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_ldapdefaultclient.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_nsscontext.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_pk11certstore.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix_pl_socket.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
../../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a ../../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix'
cd certdb; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certdb'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/alg1485.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 alg1485.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certdb.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certdb.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certv3.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certv3.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certxutl.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certxutl.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crl.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 crl.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/genname.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 genname.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 stanpcertdb.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 polcyxtn.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secname.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 secname.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 xauthkid.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 xbsconst.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/xconst.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 xconst.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/alg1485.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certdb.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certv3.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certxutl.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crl.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/genname.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secname.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/xconst.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certdb'
cd certhigh; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certhigh'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certhtml.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certhtml.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certreq.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certreq.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crlv2.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 crlv2.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ocsp.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ocsp.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ocspsig.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certhigh.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certhigh.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certvfy.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certvfy.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certvfypkix.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 xcrldist.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certhtml.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certreq.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crlv2.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ocsp.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certhigh.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certvfy.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pk11wrap'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 dev3hack.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11akey.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11auth.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11cert.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11cxt.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11err.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11err.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11kea.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11list.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11list.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11load.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11load.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11mech.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11merge.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11nobj.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11obj.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11pars.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11pbe.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11pk12.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11pqg.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11sdr.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11skey.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11slot.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11util.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11util.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11err.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11list.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11load.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11util.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/cryptohi'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sechash.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sechash.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/seckey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 seckey.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secsign.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 secsign.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secvfy.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 secvfy.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dsautil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 dsautil.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sechash.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/seckey.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secsign.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secvfy.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dsautil.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/cryptohi'
cd nss; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/nss'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nssinit.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 nssinit.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 nssoptions.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nssver.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 nssver.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 utilwrap.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnss.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnss.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nssinit.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nssver.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnss.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnss.a
grep -v ';-' nss.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nss.def
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnss3.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnss3.so  -Wl,--version-script,Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nss.def -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnss3.so Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nssinit.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nssver.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o ../certhigh/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certhtml.o ../certhigh/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certreq.o ../certhigh/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crlv2.o ../certhigh/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ocsp.o ../certhigh/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o ../certhigh/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certhigh.o ../certhigh/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certvfy.o ../certhigh/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o ../certhigh/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o ../cryptohi/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sechash.o ../cryptohi/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/seckey.o ../cryptohi/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secsign.o ../cryptohi/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secvfy.o ../cryptohi/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dsautil.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11err.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11list.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11load.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o ../pk11wrap/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11util.o ../certdb/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/alg1485.o ../certdb/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certdb.o ../certdb/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certv3.o ../certdb/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certxutl.o ../certdb/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crl.o ../certdb/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/genname.o ../certdb/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o ../certdb/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o ../certdb/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secname.o ../certdb/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o ../certdb/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o ../certdb/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/xconst.o ../pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o ../pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certificate.o ../pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o ../pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/symmkey.o ../pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o ../pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tdcache.o ../pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certdecode.o ../pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkistore.o ../pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkibase.o ../pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o ../dev/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/devslot.o ../dev/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/devtoken.o ../dev/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/devutil.o ../dev/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o ../base/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/arena.o ../base/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/error.o ../base/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/errorval.o ../base/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/hashops.o ../base/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libc.o ../base/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tracker.o ../base/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/item.o ../base/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/utf8.o ../base/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/list.o ../base/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/hash.o ../libpkix/pkix/certsel/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o ../libpkix/pkix/certsel/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o ../libpkix/pkix/checker/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o ../libpkix/pkix/checker/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o ../libpkix/pkix/checker/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o ../libpkix/pkix/checker/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o ../libpkix/pkix/checker/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o ../libpkix/pkix/checker/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o ../libpkix/pkix/checker/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o ../libpkix/pkix/checker/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o ../libpkix/pkix/checker/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o ../libpkix/pkix/checker/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o ../libpkix/pkix/checker/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o ../libpkix/pkix/checker/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o ../libpkix/pkix/checker/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o ../libpkix/pkix/params/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o ../libpkix/pkix/params/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o ../libpkix/pkix/params/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o ../libpkix/pkix/params/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o ../libpkix/pkix/results/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o ../libpkix/pkix/results/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o ../libpkix/pkix/results/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o ../libpkix/pkix/results/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o ../libpkix/pkix/top/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o ../libpkix/pkix/top/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o ../libpkix/pkix/top/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o ../libpkix/pkix/util/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o ../libpkix/pkix/util/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o ../libpkix/pkix/util/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o ../libpkix/pkix/util/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o ../libpkix/pkix/util/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o ../libpkix/pkix/crlsel/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o ../libpkix/pkix/crlsel/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o ../libpkix/pkix/store/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o ../libpkix/pkix_pl_nss/pki/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o ../libpkix/pkix_pl_nss/system/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o ../libpkix/pkix_pl_nss/system/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o ../libpkix/pkix_pl_nss/system/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o ../libpkix/pkix_pl_nss/system/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o ../libpkix/pkix_pl_nss/system/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o ../libpkix/pkix_pl_nss/system/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o ../libpkix/pkix_pl_nss/system/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o ../libpkix/pkix_pl_nss/system/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o ../libpkix/pkix_pl_nss/system/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o ../libpkix/pkix_pl_nss/system/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o ../libpkix/pkix_pl_nss/system/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o ../libpkix/pkix_pl_nss/system/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o ../libpkix/pkix_pl_nss/system/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o ../libpkix/pkix_pl_nss/system/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o ../libpkix/pkix_pl_nss/module/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o ../libpkix/pkix_pl_nss/module/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o ../libpkix/pkix_pl_nss/module/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o ../libpkix/pkix_pl_nss/module/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o ../libpkix/pkix_pl_nss/module/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o ../libpkix/pkix_pl_nss/module/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o ../libpkix/pkix_pl_nss/module/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o   -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnss3.so
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnss.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnss3.so ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/nss'
cd ssl; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ssl'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 dtlscon.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/prelib.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 prelib.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ssl3con.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ssl3gthr.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslauth.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslauth.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslcon.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslcon.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssldef.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ssldef.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslenum.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslenum.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslerr.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslerr.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslerrstrs.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslinit.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslinit.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ssl3ext.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ssl3exthandle.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslmutex.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslnonce.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslreveal.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslsecur.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslsnce.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslsock.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslsock.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ssltrace.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslver.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslver.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/authcert.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 authcert.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmpcert.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslinfo.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ssl3ecc.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tls13con.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 tls13con.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 tls13exthandle.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 tls13hkdf.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslcert.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslcert.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sslgrp.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/unix_err.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 unix_err.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libssl.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libssl.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/prelib.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslauth.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslcon.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssldef.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslenum.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslerr.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslinit.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslsock.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslver.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/authcert.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tls13con.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslcert.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/unix_err.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libssl.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libssl.a
grep -v ';-' ssl.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl.def
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libssl3.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libssl3.so  -Wl,--version-script,Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl.def -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libssl3.so Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/prelib.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslauth.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslcon.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssldef.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslenum.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslerr.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslinit.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslsock.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslver.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/authcert.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tls13con.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslcert.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/unix_err.o    -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
chmod +x Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libssl3.so
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libssl.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libssl3.so ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ssl'
cd pkcs7; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs7'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certread.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certread.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7common.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p7common.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7create.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p7create.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7decode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p7decode.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7encode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p7encode.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7local.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p7local.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secmime.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 secmime.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certread.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7common.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7create.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7decode.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7encode.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7local.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secmime.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs12'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12local.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p12local.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12creat.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p12creat.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12dec.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p12dec.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p12plcy.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p12tmpl.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12e.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p12e.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12d.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p12d.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12local.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12creat.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12dec.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12e.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12d.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs12'
cd smime; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/smime'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsarray.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsasn1.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsattr.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmscinfo.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmscipher.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsdecode.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsdigdata.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsdigest.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsencdata.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsencode.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsenvdata.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsmessage.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmspubkey.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsrecinfo.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsreclist.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmssigdata.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmssiginfo.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsudf.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsutil.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 smimemessage.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 smimeutil.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/smimever.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 smimever.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libsmime.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/smimever.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
grep -v ';-' smime.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/smime.def
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libsmime3.so  -Wl,--version-script,Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/smime.def -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/smimever.o ../pkcs12/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12local.o ../pkcs12/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12creat.o ../pkcs12/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12dec.o ../pkcs12/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o ../pkcs12/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o ../pkcs12/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12e.o ../pkcs12/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p12d.o ../pkcs7/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certread.o ../pkcs7/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7common.o ../pkcs7/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7create.o ../pkcs7/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7decode.o ../pkcs7/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7encode.o ../pkcs7/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7local.o ../pkcs7/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secmime.o   -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libsmime.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/smime'
cd crmf; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/crmf'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmfenc.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 crmfenc.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmftmpl.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 crmftmpl.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmfreq.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 crmfreq.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmfpop.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 crmfpop.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmfdec.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 crmfdec.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmfget.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 crmfget.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmfcont.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 crmfcont.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmmfasn1.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmmfasn1.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmmfresp.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmmfresp.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmmfrec.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmmfrec.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmmfchal.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmmfchal.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/servget.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 servget.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/encutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 encutil.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/respcli.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 respcli.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/respcmn.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 respcmn.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/challcli.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 challcli.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/asn1cmn.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 asn1cmn.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmfenc.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmftmpl.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmfreq.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmfpop.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmfdec.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmfget.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmfcont.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmmfasn1.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmmfresp.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmmfrec.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmmfchal.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/servget.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/encutil.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/respcli.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/respcmn.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/challcli.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/asn1cmn.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/crmf'
cd jar; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/jar'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/jarver.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 jarver.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/jarsign.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 jarsign.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/jar.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 jar.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/jar-ds.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 jar-ds.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/jarfile.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 jarfile.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/jarint.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 jarint.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libjar.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libjar.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/jarver.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/jarsign.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/jar.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/jar-ds.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/jarfile.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/jarint.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libjar.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libjar.a
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libjar.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/jar'
cd ckfw; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crypto.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 crypto.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/find.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 find.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 hash.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/instance.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 instance.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/mutex.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 mutex.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/object.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 object.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/session.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 session.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sessobj.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sessobj.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/slot.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 slot.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/token.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 token.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/wrap.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 wrap.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/mechanism.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 mechanism.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crypto.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/find.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/hash.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/instance.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/mutex.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/object.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/session.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sessobj.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/slot.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/token.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/wrap.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/mechanism.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
cd builtins; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw/builtins'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/anchor.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 anchor.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/constants.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 constants.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bfind.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 bfind.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/binst.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 binst.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bobject.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 bobject.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bsession.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 bsession.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bslot.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 bslot.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/btoken.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 btoken.c
perl certdata.perl certdata.txt Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certdata.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certdata.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certdata.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ckbiver.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ckbiver.c
grep -v ';-' nssckbi.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nssckbi.def
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnssckbi.so  -Wl,--version-script,Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nssckbi.def -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/anchor.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/constants.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bfind.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/binst.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bobject.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bsession.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bslot.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/btoken.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certdata.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ckbiver.o   ../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a ../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so
../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so ../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw/builtins'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw'
cd sysinit; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/sysinit'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 nsssysinit.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so
cc -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnsssysinit.so  -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o    -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/sysinit'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib'
cd cmd; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd'
cd lib; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/lib'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/basicutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 basicutil.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 secutil.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secpwd.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 secpwd.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/derprint.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 derprint.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/moreoids.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 moreoids.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pppolicy.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pppolicy.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ffs.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ffs.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11table.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11table.c
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libsectool.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/basicutil.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secutil.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secpwd.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/derprint.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/moreoids.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pppolicy.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ffs.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11table.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libsectool.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/lib'
cd shlibsign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/shlibsign.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 shlibsign.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/shlibsign -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/shlibsign.o -m64 -Wl,-z,relro  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/shlibsign ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
cd mangle; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign/mangle'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/mangle.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 mangle.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/mangle -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/mangle.o -m64 -Wl,-z,relro  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/mangle ../../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/addbuiltin'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/addbuiltin.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 addbuiltin.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/addbuiltin -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/addbuiltin.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/addbuiltin ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/addbuiltin'
cd atob; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/atob'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/atob.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 atob.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/atob -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/atob.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/atob ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/atob'
cd btoa; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/btoa'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/btoa.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 btoa.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/btoa -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/btoa.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/btoa ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/btoa'
cd certcgi; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certcgi'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certcgi.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certcgi.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certcgi -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certcgi.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certcgi ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certcgi'
cd certutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certutil'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certext.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certext.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certutil.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/keystuff.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 keystuff.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certutil -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certext.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certutil.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/keystuff.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certutil ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certutil'
cd chktest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/chktest'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/chktest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 chktest.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/chktest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/chktest.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/chktest ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/chktest'
cd crlutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crlutil'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crlgen_lex.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 crlgen_lex.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crlgen.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 crlgen.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crlutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 crlutil.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crlutil -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crlgen_lex.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crlgen.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crlutil.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crlutil ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crlutil'
cd crmftest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crmftest'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/testcrmf.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 testcrmf.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmftest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/testcrmf.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/crmftest ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crmftest'
cd dbtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/dbtest'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dbtest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 dbtest.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dbtest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dbtest.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dbtest ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/dbtest'
cd derdump; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/derdump'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/derdump.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 derdump.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/derdump -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/derdump.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/derdump ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/derdump'
cd digest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/digest'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/digest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 digest.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/digest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/digest.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/digest ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/digest'
cd httpserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/httpserv'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/httpserv.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 httpserv.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/httpserv -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/httpserv.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/httpserv ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/httpserv'
cd listsuites; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/listsuites'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/listsuites.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 listsuites.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/listsuites -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/listsuites.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/listsuites ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/listsuites'
cd makepqg; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/makepqg'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/makepqg.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 makepqg.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/makepqg -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/makepqg.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/makepqg ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/makepqg'
cd multinit; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/multinit'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/multinit.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 multinit.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/multinit -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/multinit.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/multinit ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspclnt'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ocspclnt.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ocspclnt.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ocspclnt -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ocspclnt.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ocspclnt ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspresp'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ocspresp.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ocspresp.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ocspresp -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ocspresp.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ocspresp ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/oidcalc'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/oidcalc.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 oidcalc.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/oidcalc -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/oidcalc.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/oidcalc ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/oidcalc'
cd p7content; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7content'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7content.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p7content.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7content -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7content.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7content ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7content'
cd p7env; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7env'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7env.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p7env.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7env -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7env.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7env ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7env'
cd p7sign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7sign'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7sign.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p7sign.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7sign -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7sign.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7sign ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7sign'
cd p7verify; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7verify'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7verify.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 p7verify.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7verify -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7verify.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/p7verify ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7verify'
cd pk12util; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk12util'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk12util.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk12util.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk12util -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk12util.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk12util ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11ectest'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11ectest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11ectest.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11ectest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11ectest.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11ectest ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11gcmtest'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11gcmtest.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11mode'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11mode.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11mode.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11mode -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11mode.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11mode ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk1sign'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk1sign.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk1sign.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk1sign -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk1sign.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk1sign ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk1sign'
cd pp; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pp'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pp.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pp.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pp -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pp.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pp ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pwdecrypt'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pwdecrypt.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/rsaperf'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/rsaperf.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 rsaperf.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/defkey.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 defkey.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/rsaperf -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/rsaperf.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/defkey.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/rsaperf ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/sdrtest'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sdrtest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sdrtest.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sdrtest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sdrtest.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sdrtest ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/selfserv'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/selfserv.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 selfserv.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/selfserv -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/selfserv.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/selfserv ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/selfserv'
cd signtool; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signtool'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/signtool.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 signtool.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certgen.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 certgen.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/javascript.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 javascript.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/list.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 list.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sign.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 sign.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/util.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 util.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/verify.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 verify.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/zip.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 zip.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/signtool -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/signtool.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/certgen.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/javascript.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/list.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/sign.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/util.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/verify.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/zip.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/signtool ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signtool'
cd signver; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signver'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/signver.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 signver.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk7print.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk7print.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/signver -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/signver.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk7print.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/signver ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signver'
cd smimetools; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/smimetools'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 cmsutil.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsutil -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/cmsutil ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/smimetools'
cd ssltap; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ssltap'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssltap.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 ssltap.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssltap -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssltap.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/ssltap ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/strsclnt'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/strsclnt.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 strsclnt.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/strsclnt -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/strsclnt.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/strsclnt ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/symkeyutil'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/symkeyutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 symkeyutil.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/symkeyutil -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/symkeyutil.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/symkeyutil ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/symkeyutil'
cd tests; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tests'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/baddbdir.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 baddbdir.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/baddbdir -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/baddbdir.o \
-m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/conflict.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 conflict.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/conflict -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/conflict.o \
-m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dertimetest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 dertimetest.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dertimetest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dertimetest.o \
-m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/encodeinttest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 encodeinttest.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/encodeinttest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/encodeinttest.o \
-m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nonspr10.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 nonspr10.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nonspr10 -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nonspr10.o \
-m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/remtest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 remtest.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/remtest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/remtest.o \
-m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secmodtest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 secmodtest.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secmodtest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secmodtest.o \
-m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/baddbdir Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/conflict Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/dertimetest Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/encodeinttest Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nonspr10 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/remtest Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/secmodtest ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tests'
cd tstclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tstclnt'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tstclnt.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 tstclnt.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tstclnt -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tstclnt.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/tstclnt ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfychain'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/vfychain.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 vfychain.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/vfychain -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/vfychain.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/vfychain ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfyserv'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/vfyserv.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 vfyserv.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/vfyutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 vfyutil.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/vfyserv -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/vfyserv.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/vfyutil.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/vfyserv ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfyserv'
cd modutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/modutil'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/modutil.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 modutil.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pk11.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/instsec.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 instsec.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/install.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 install.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/installparse.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 installparse.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/install-ds.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 install-ds.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lex.Pk11Install_yy.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 lex.Pk11Install_yy.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/modutil -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/modutil.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pk11.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/instsec.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/install.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/installparse.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/install-ds.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lex.Pk11Install_yy.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/modutil ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pkix-errcodes'
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 pkix-errcodes.c
cc -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pkix-errcodes'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd'
cd gtests; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests'
cd google_test; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/google_test'
if test ! -d Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/gtest/src; then rm -rf Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/gtest/src; ../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/gtest/src; fi
g++ -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -Igtest/include/ -Igtest -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/gtest -I../../../dist/private/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -std=c++0x gtest/src/gtest-all.cc
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
ar cr Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libgtest.a Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o
echo Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
rm -f Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so
g++ -shared -m64 -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro  -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o   ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
chmod +x Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libgtest.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/google_test'
cd common; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/common'
if test ! -d Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/gtests.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I../../cpputil -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -std=c++0x gtests.cc
g++ -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/gtests -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I../../cpputil -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/gtests.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/gtests ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/common'
cd der_gtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/der_gtest'
if test ! -d Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/der_getint_unittest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I../../cpputil -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -std=c++0x der_getint_unittest.cc
if test ! -d Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/der_private_key_import_unittest.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I../../cpputil -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -std=c++0x der_private_key_import_unittest.cc
g++ -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/der_gtest -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I../../cpputil -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/der_getint_unittest.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/der_private_key_import_unittest.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a  ../common/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/gtests.o ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/der_gtest ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/der_gtest'
cd nss_bogo_shim; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/nss_bogo_shim'
if test ! -d Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/config.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -I../../lib/ssl -std=c++0x -std=c++0x config.cc
if test ! -d Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsskeys.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -I../../lib/ssl -std=c++0x -std=c++0x nsskeys.cc
if test ! -d Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim.o -c -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -I../../lib/ssl -std=c++0x -std=c++0x nss_bogo_shim.cc
g++ -o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim -O2 -fPIC  -m64 -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -I../../lib/ssl Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/config.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsskeys.o Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim.o -m64 -Wl,-z,relro ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim ../../../dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests'
make: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss'
+ unset NSS_BLTEST_NOT_AVAILABLE
~/build/BUILD/nss-3.30.2/nss ~/build/BUILD/nss-3.30.2
+ pushd ./nss
+ /usr/bin/make clean_docs build_docs
/usr/bin/make -C ./doc clean
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/doc'
rm -f date.xml version.xml *.tar.bz2
rm -f html/*.proc
rm -fr nss-man ascii
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/doc'
/usr/bin/make -C ./doc
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/doc'
date +"%e %B %Y" | tr -d '\n' > date.xml
echo -n  > version.xml
mkdir -p html
mkdir -p nroff
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/doc'
+ popd
~/build/BUILD/nss-3.30.2
+ /usr/bin/mkdir -p ./dist/docs/nroff
+ /usr/bin/cp ./nss/doc/nroff/certutil.1 ./nss/doc/nroff/cmsutil.1 ./nss/doc/nroff/crlutil.1 ./nss/doc/nroff/derdump.1 ./nss/doc/nroff/modutil.1 ./nss/doc/nroff/pk12util.1 ./nss/doc/nroff/pp.1 ./nss/doc/nroff/signtool.1 ./nss/doc/nroff/signver.1 ./nss/doc/nroff/ssltap.1 ./nss/doc/nroff/vfychain.1 ./nss/doc/nroff/vfyserv.1 ./dist/docs/nroff
+ /usr/bin/mkdir -p ./dist/pkgconfig
+ /usr/bin/cat /builddir/build/SOURCES/nss.pc.in
+ sed -e s,%libdir%,/usr/lib64,g -e s,%prefix%,/usr,g -e s,%exec_prefix%,/usr,g -e s,%includedir%,/usr/include/nss3,g -e s,%NSS_VERSION%,3.30.2,g -e s,%NSPR_VERSION%,4.14.0,g -e s,%NSSUTIL_VERSION%,3.30.2,g -e s,%SOFTOKEN_VERSION%,3.30.2,g
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VMAJOR'
++ awk '{print $3}'
+ NSS_VMAJOR=3
++ cat nss/lib/nss/nss.h
++ awk '{print $3}'
++ grep '#define.*NSS_VMINOR'
+ NSS_VMINOR=30
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VPATCH'
++ awk '{print $3}'
+ NSS_VPATCH=2
+ export NSS_VMAJOR
+ export NSS_VMINOR
+ export NSS_VPATCH
+ /usr/bin/cat /builddir/build/SOURCES/nss-config.in
+ sed -e s,@libdir@,/usr/lib64,g -e s,@prefix@,/usr,g -e s,@exec_prefix@,/usr,g -e s,@includedir@,/usr/include/nss3,g -e s,@MOD_MAJOR_VERSION@,3,g -e s,@MOD_MINOR_VERSION@,30,g -e s,@MOD_PATCH_VERSION@,2,g
+ chmod 755 ./dist/pkgconfig/nss-config
+ /usr/bin/cat /builddir/build/SOURCES/setup-nsssysinit.sh
+ chmod 755 ./dist/pkgconfig/setup-nsssysinit.sh
+ /usr/bin/cp ./nss/lib/ckfw/nssck.api ./dist/private/nss/
+ date '+%e %B %Y'
+ tr -d '\n'
+ echo -n 3.30.2
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/nss-config.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/setup-nsssysinit.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/pkcs11.txt.xml .
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man nss-config.xml
Note: Writing nss-config.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man setup-nsssysinit.xml
Note: Writing setup-nsssysinit.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man pkcs11.txt.xml
Note: Writing pkcs11.txt.5
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert8.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert9.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key3.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key4.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/secmod.db.xml .
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert8.db.xml
Note: Writing cert8.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert9.db.xml
Note: Writing cert9.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key3.db.xml
Note: Writing key3.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key4.db.xml
Note: Writing key4.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man secmod.db.xml
Note: Writing secmod.db.5
+ exit 0
Executing(%install): /bin/sh -e /var/tmp/rpm-tmp.e4dXow
+ umask 022
+ cd /builddir/build/BUILD
+ '[' /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64 '!=' / ']'
+ rm -rf /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64
++ dirname /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64
+ mkdir -p /builddir/build/BUILDROOT
+ mkdir /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64
+ cd nss-3.30.2
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3/templates
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/bin
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/nss/unsupported-tools
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/pkgconfig
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/doc/nss-tools
+ mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man1
+ mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man5
+ touch /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/libnssckbi.so
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/nss/libnssckbi.so
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//etc/pki/nssdb
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert8.db /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//etc/pki/nssdb/cert8.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key3.db /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//etc/pki/nssdb/key3.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-secmod.db /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//etc/pki/nssdb/secmod.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert9.db /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//etc/pki/nssdb/cert9.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key4.db /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//etc/pki/nssdb/key4.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/system-pkcs11.txt /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//etc/pki/nssdb/pkcs11.txt
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/certutil /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/cmsutil /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/crlutil /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/modutil /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/signtool /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/signver /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/ssltap /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/bin
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/atob /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/btoa /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/derdump /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/listsuites /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/ocspclnt /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pp /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/selfserv /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/strsclnt /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/symkeyutil /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/tstclnt /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/vfyserv /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/vfychain /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/nss/unsupported-tools
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cert.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/certdb.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/certt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmmf.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmmft.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cms.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmsreclist.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmst.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/crmf.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/crmft.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cryptohi.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cryptoht.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jar-ds.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jar.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jarfile.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/key.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keyhi.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keyt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keythi.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nss.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssbase.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssbaset.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckbi.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckepv.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckft.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfw.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwc.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckg.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckmdt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ocsp.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ocspt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12plcy.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12t.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11func.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pqg.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11priv.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pub.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11sdr.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12t.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs7t.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/preenc.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sechash.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmime.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmod.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmodt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs5.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs7.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/smime.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ssl.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslerr.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslproto.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3
+ for file in dist/private/nss/nssck.api
+ /usr/bin/install -p -m 644 dist/private/nss/nssck.api /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/include/nss3/templates
+ /usr/bin/install -p -m 644 ./dist/pkgconfig/nss.pc /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/lib64/pkgconfig/nss.pc
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/nss-config /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/bin/nss-config
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/bin/setup-nsssysinit.sh
+ ln -r -s -f /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/bin/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64//usr/bin/setup-nsssysinit
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 nss-config.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man1/nss-config.1
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 setup-nsssysinit.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man1/setup-nsssysinit.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/certutil.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man1/certutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/cmsutil.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man1/cmsutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/crlutil.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man1/crlutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/derdump.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man1/derdump.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/modutil.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man1/modutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/pk12util.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man1/pk12util.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/signtool.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man1/signtool.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/signver.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man1/signver.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/ssltap.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man1/ssltap.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/vfychain.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man1/vfychain.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/vfyserv.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man1/vfyserv.1
+ install -c -m 644 ./dist/docs/nroff/pp.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/doc/nss-tools/pp.1
+ for f in pkcs11.txt
+ install -c -m 644 pkcs11.txt.5 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man5/pkcs11.txt.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert8.db.5 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man5/cert8.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert9.db.5 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man5/cert9.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key3.db.5 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man5/key3.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key4.db.5 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man5/key4.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 secmod.db.5 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/man/man5/secmod.db.5
+ /usr/lib/rpm/find-debuginfo.sh --strict-build-id -m --run-dwz --dwz-low-mem-die-limit 10000000 --dwz-max-die-limit 50000000 /builddir/build/BUILD/nss-3.30.2
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/libnss3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/libsmime3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/libssl3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/nss/unsupported-tools/btoa
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/nss/unsupported-tools/pp
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/nss/unsupported-tools/strsclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/nss/unsupported-tools/listsuites
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/nss/unsupported-tools/vfychain
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/nss/unsupported-tools/symkeyutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/nss/unsupported-tools/ocspclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/nss/unsupported-tools/vfyserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/nss/unsupported-tools/atob
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/nss/unsupported-tools/selfserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/nss/unsupported-tools/derdump
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/nss/unsupported-tools/tstclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/nss/libnssckbi.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/lib64/libnsssysinit.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/bin/certutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/bin/pk12util
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/bin/modutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/bin/cmsutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/bin/ssltap
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/bin/signtool
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/bin/crlutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/bin/signver
/usr/lib/rpm/sepdebugcrcfix: Updated 25 CRC32s, 0 CRC32s did match.
cpio: nss-3.30.2/nss/cmd/modutil/lex.Pk11Install_yy.cpp: Cannot stat: No such file or directory
cpio: nss-3.30.2/nss/cmd/modutil/ytab.c: Cannot stat: No such file or directory
25235 blocks
+ /usr/lib/rpm/check-buildroot
+ /usr/lib/rpm/brp-compress
+ /usr/lib/rpm/brp-strip-static-archive /usr/bin/strip
+ /usr/lib/rpm/brp-python-bytecompile /usr/bin/python 1
+ /usr/lib/rpm/brp-python-hardlink
Executing(%check): /bin/sh -e /var/tmp/rpm-tmp.T1rEY0
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.30.2
+ '[' 0 -eq 1 ']'
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ USE_64=1
+ export USE_64
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ export SOFTOKEN_LIB_DIR=/usr/lib64
+ SOFTOKEN_LIB_DIR=/usr/lib64
+ export NSS_IGNORE_SYSTEM_POLICY=1
+ NSS_IGNORE_SYSTEM_POLICY=1
++ find ./nss/tests
++ grep -c ' '
+ SPACEISBAD=0
+ :
+ '[' 0 -ne 0 ']'
++ perl -e 'print 9000 + int rand 1000'
9323
selfserv_9323
+ MYRAND=9323
+ echo 9323
+ RANDSERV=selfserv_9323
+ echo selfserv_9323
++ ls -d ./dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
./dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
+ DISTBINDIR=./dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
+ echo ./dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
++ pwd
~/build/BUILD/nss-3.30.2 ~/build/BUILD/nss-3.30.2
+ pushd /builddir/build/BUILD/nss-3.30.2
+ cd ./dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin
+ ln -s selfserv selfserv_9323
~/build/BUILD/nss-3.30.2
+ popd
+ find ./nss/tests -type f
+ grep -v '\.db$'
+ grep -v '\.crl$'
+ grep -v '\.crt$'
+ grep -vw CVS
+ xargs grep -lw selfserv
+ xargs -l perl -pi -e 's/\bselfserv\b/selfserv_9323/g'
+ killall selfserv_9323
selfserv_9323: no process found
+ :
+ rm -rf ./tests_results
~/build/BUILD/nss-3.30.2/nss/tests ~/build/BUILD/nss-3.30.2
+ pushd ./nss/tests/
++ echo
+ SKIP_NSS_TEST_SUITE=
+ '[' x == x ']'
+ HOST=localhost
+ DOMSUF=localdomain
+ PORT=9323
+ NSS_CYCLES=
+ NSS_TESTS='libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests'
+ NSS_SSL_TESTS=
+ NSS_SSL_RUN=
+ ./all.sh
testdir is /builddir/build/BUILD/nss-3.30.2/tests_results/security
init.sh init: Creating /builddir/build/BUILD/nss-3.30.2/tests_results/security
which: no domainname in (.:/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin)
********************************************
   Platform: Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ
   Results: localhost.1
********************************************
init.sh init: Testing PATH .:/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin against LIB /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib:
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Wed May 10 11:36:24 UTC 2017
TIMESTAMP libpkix END: Wed May 10 11:36:24 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Wed May 10 11:36:24 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #1: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -f ../tests.pw
cert.sh: #2: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #3: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #5: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -f ../tests.pw
cert.sh: #6: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #7: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #9: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #10: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #11: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #12: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #13: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -f ../tests.pw
cert.sh: #14: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #15: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #16: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #17: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #18: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #19: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #20: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #21: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #22: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #23: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #24: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #25: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #26: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #27: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #28: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #29: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #30: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #31: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #32: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #33: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #34: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #35: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #36: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #37: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #38: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #39: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #40: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #41: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #42: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #43: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #44: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #45: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #46: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #47: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #48: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #49: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -f ../tests.pw
cert.sh: #50: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #51: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #52: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #53: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #54: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #55: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #56: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #57: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #58: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #59: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #60: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #61: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #62: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #63: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #64: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #65: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #66: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #67: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #68: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #69: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #70: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #71: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #72: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #73: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #74: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #75: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #76: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #77: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #78: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -f ../tests.pw
cert.sh: #79: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #80: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #81: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #82: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #83: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #84: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #85: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #86: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #87: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #88: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #89: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #90: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #91: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #92: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #93: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #94: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #95: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #96: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #97: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #98: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #99: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #100: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #101: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #102: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #103: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #104: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #105: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #106: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #107: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw
cert.sh: #108: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #109: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -i ../CA/TestCA.ca.cert
cert.sh: #110: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #111: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #112: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #113: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #114: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #115: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #116: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #117: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #118: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #119: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #120: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #121: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #122: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #123: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #124: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #125: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #126: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #127: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #128: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #129: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -i ../CA/TestCA.ca.cert
cert.sh: #130: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #131: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #132: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #133: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #134: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #135: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #136: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #137: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #138: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #139: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #140: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #141: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #142: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #143: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #144: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #145: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #146: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #147: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #148: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #149: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #150: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #151: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #152: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #153: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #154: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #155: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #156: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #157: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #158: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #159: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #160: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #161: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #162: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #163: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #164: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #165: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw
cert.sh: #166: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #167: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #168: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #169: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #170: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #171: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #172: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #173: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #174: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #175: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #176: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #177: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #178: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #179: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #180: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #181: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #182: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #183: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #184: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #185: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw
cert.sh: #186: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #187: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #188: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #189: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #190: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #191: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #192: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #193: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #194: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #195: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #196: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #197: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #198: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #199: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #200: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #201: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #202: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #203: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #204: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #205: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw
cert.sh: #206: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #207: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -i ../CA/TestCA.ca.cert
cert.sh: #208: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #209: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #210: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #211: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #212: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #213: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #214: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #215: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #216: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #217: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #218: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #219: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #220: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #221: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #222: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #223: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #224: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #225: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw
cert.sh: #226: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #227: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -i ../CA/TestCA.ca.cert
cert.sh: #228: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #229: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #230: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #231: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #232: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #233: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #234: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #235: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #236: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #237: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #238: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #239: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #240: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #241: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #242: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #243: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #244: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #245: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #246: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #247: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #248: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #249: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #250: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #251: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #252: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #253: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips -f ../tests.fipspw
cert.sh: #254: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #255: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #256: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #257: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -f ../tests.pw
cert.sh: #258: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #259: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #260: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #261: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #262: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #263: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #264: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #265: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #266: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #267: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #268: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #269: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw
cert.sh: #270: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #271: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #272: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #273: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #274: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #275: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #276: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #277: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #278: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #279: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #280: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #281: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #282: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #283: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #284: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #285: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #286: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #287: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #288: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #289: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3c:51
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:36:36 2017
            Not After : Thu Aug 10 11:36:36 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:ee:0d:d9:2e:ed:f0:b5:26:c9:8a:f1:4b:30:25:f1:
                    31:78:e8:9c:9f:ba:96:8e:12:c7:28:d7:2b:4a:08:da:
                    ef:f1:75:c4:5d:29:ae:2b:49:4f:f5:e6:d2:8a:44:cd:
                    64:bb:66:2c:59:64:d9:66:5d:4e:f3:68:e6:8e:45:d9:
                    7d:dc:1c:04:8e:09:87:d4:4b:4b:32:e8:74:18:39:4d:
                    4a:b2:66:58:13:c4:67:63:e4:b4:60:3c:0c:d2:95:a1:
                    d3:73:14:7b:c7:63:19:e0:06:30:b5:dc:cd:61:80:0e:
                    03:e4:58:20:08:67:cf:f3:1e:da:47:cf:89:bd:69:14:
                    e9:31:41:fc:ac:d9:df:6f:bb:12:08:35:e8:5a:16:2a:
                    46:3b:8e:8b:b4:15:d9:0e:1c:0c:87:18:ac:6a:05:7a:
                    cc:17:11:2c:59:f3:a7:b0:29:7c:32:79:aa:db:b4:aa:
                    8c:f0:80:69:51:c4:a8:b7:05:56:db:1e:b3:30:50:b5:
                    15:f6:32:58:da:b9:3b:95:22:a2:5e:b3:32:8b:3d:ff:
                    d5:82:6e:40:d4:d0:28:01:c1:34:d0:30:e3:4d:dc:2b:
                    88:f7:03:e1:59:ec:46:7d:40:fe:fd:cf:cd:e2:5f:4d:
                    46:29:73:b2:3e:79:3e:e4:f4:66:b7:fa:5e:f7:5a:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2b:78:66:36:b5:f9:f1:9d:e9:31:5c:3b:12:73:b1:f5:
        29:5f:52:42:6b:11:07:b9:51:38:e2:6e:40:ff:7d:44:
        fc:5b:54:d5:b1:84:82:7b:fa:64:22:21:c5:9b:73:43:
        0d:7d:e2:e6:c7:0e:98:a1:fb:63:d4:3d:8d:80:fb:b1:
        78:61:0e:f6:ce:1d:7e:d9:2c:23:e1:67:61:3b:f4:14:
        38:cf:79:f9:f9:ba:74:39:b2:2f:cb:d2:d3:16:22:94:
        6d:42:19:d0:f2:d1:a3:c2:6c:ad:9a:04:9e:4a:c2:41:
        97:0d:a8:e8:ab:f8:ad:0c:15:e8:e5:59:35:27:17:e0:
        65:2a:77:0f:17:5b:70:f5:74:89:1f:3b:43:41:2b:84:
        ea:4f:3e:73:84:bc:46:3c:36:33:cf:35:b0:a2:a3:ad:
        db:48:2c:66:cc:46:43:2d:98:dc:4e:8a:19:62:1b:3a:
        ce:7b:79:cd:06:a1:0e:33:dc:95:7e:6b:c5:e9:7d:26:
        5a:60:4c:37:b1:07:73:88:8f:4a:ac:85:55:6d:8f:7d:
        56:8e:d4:fc:d1:b6:71:b0:6a:ec:b3:74:c5:33:03:69:
        b5:e0:f2:e8:b2:c3:06:1c:5a:94:13:73:fd:92:8d:e9:
        03:50:59:dd:3c:72:14:2a:b7:7d:de:db:70:e6:aa:0a
    Fingerprint (SHA-256):
        4F:01:4B:06:8F:A3:FB:77:6C:AD:79:90:AD:D6:81:91:DF:77:F9:19:57:BB:73:19:4B:F1:49:61:30:B5:CC:A9
    Fingerprint (SHA1):
        80:0A:46:DF:57:D7:3A:AA:2B:E9:53:48:5C:67:91:07:56:9B:52:DC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #290: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3c:51
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:36:36 2017
            Not After : Thu Aug 10 11:36:36 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:87:96:f1:20:d9:73:40:98:19:a7:95:4c:39:8d:5c:
                    2e:3a:91:4c:c4:eb:53:16:40:d8:6c:10:90:b5:74:1a:
                    31:d8:c6:ef:0a:54:38:53:07:db:30:da:b2:8f:41:00:
                    ee:88:38:4e:12:19:fc:7d:45:b6:13:3d:8c:54:e8:a7:
                    50:42:d8:c9:59:e0:60:0e:99:64:ea:a5:0a:de:7c:9e:
                    4e:2c:8e:a8:92:78:02:51:0b:7f:56:4a:1a:b6:37:02:
                    ee:82:f6:90:b8:75:2b:23:f4:85:a7:47:9c:65:f4:66:
                    28:06:d0:c1:9f:26:75:5b:89:b8:d9:c7:67:5c:29:83:
                    19:09:7b:7b:32:9f:ba:c6:7b:5f:bc:94:5a:cd:59:54:
                    57:32:4d:92:54:e3:65:24:f1:d0:dc:b4:22:45:09:6b:
                    7b:49:b8:95:6d:c6:77:a0:c2:a6:17:69:df:a9:04:88:
                    48:82:83:f3:4a:c9:10:e7:3d:89:0e:e2:e5:b4:88:25:
                    85:86:49:4f:2d:dc:f8:65:8e:40:94:b4:4c:05:75:87:
                    b5:2e:a6:6b:fe:56:27:0b:b0:a9:16:78:b7:42:2b:61:
                    c5:fe:4b:d5:9f:99:80:3a:ac:cc:30:10:05:c6:e7:a6:
                    7b:d1:79:d1:15:76:fe:d4:21:23:2b:ab:a5:de:40:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:52:95:38:74:69:19:b8:8a:29:84:69:2c:9f:4d:8b:
        e6:f1:dd:e8:e0:4f:90:8c:04:b2:f8:88:45:08:5f:f4:
        d6:81:2b:f2:b7:af:d7:f5:38:67:7c:59:9f:38:b5:a6:
        04:ad:e7:f2:c0:d8:fd:50:04:5e:35:da:f1:a6:87:9a:
        de:fa:a6:c4:67:94:16:fe:c6:e5:43:20:a3:6e:0d:b5:
        1a:cc:ba:69:bc:5b:83:47:09:96:61:e2:7e:b1:5d:d9:
        90:f3:b9:af:04:f1:03:91:84:65:dc:01:32:5e:f8:80:
        eb:f9:ee:fd:40:c4:f3:4e:80:46:98:af:1f:28:22:f7:
        a6:d7:be:db:2e:6e:73:53:6d:db:eb:99:f8:2f:d3:c4:
        b3:c2:00:57:26:e3:95:a7:38:8f:9b:62:8c:5e:ff:ee:
        14:47:84:83:c5:7d:3d:35:4a:f3:db:f3:ea:f1:7f:df:
        c4:f9:ea:25:d2:0e:3b:1f:a2:f3:b7:d4:1b:ac:91:97:
        21:63:bc:59:12:bc:04:85:9e:e2:ab:cb:f1:c1:94:4b:
        d2:cf:84:b0:d0:22:e9:2b:4e:ee:e0:eb:41:ec:04:93:
        1c:d4:e0:e8:44:3a:39:8d:1f:6f:6a:12:4c:6f:65:f9:
        10:4b:21:16:8c:f6:09:59:7a:f1:75:f8:5a:6b:fe:30
    Fingerprint (SHA-256):
        A5:4A:CE:75:96:ED:C3:FB:E4:B6:B7:C9:1B:24:12:E0:16:7B:FD:9D:6B:36:77:81:F0:B7:48:43:18:90:B6:A6
    Fingerprint (SHA1):
        20:3A:3C:6A:0D:92:2D:01:66:AD:AA:CF:05:22:10:07:75:62:68:47
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #291: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3c:52
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:36:37 2017
            Not After : Thu Aug 10 11:36:37 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:86:04:41:c1:0b:80:24:3e:4b:2b:88:9d:20:25:bd:
                    f6:2f:76:94:1c:1d:1c:c6:16:85:54:6d:ad:18:d3:06:
                    a5:f0:84:d3:9d:a6:4c:0a:a0:09:eb:77:79:95:45:92:
                    5a:a5:93:1e:95:37:fe:f4:4a:3f:dc:01:5e:84:bd:22:
                    cf:f6:30:fd:43:c4:64:86:fc:3b:39:92:18:70:03:18:
                    d2:27:00:56:5b:86:4d:41:af:8e:7d:2b:be:3d:25:2a:
                    2c:39:21:74:1d:ce:ed:2c:f4:47:91:20:3d:65:58:fa:
                    cf:17:ac:c5:81:4e:a9:5a:b5:2d:17:eb:c2:e9:4a:97:
                    e4:38:a0:88:d5:ab:72:fc:da:1c:03:95:b7:cc:85:2f:
                    72:b0:b2:ba:9d:22:0f:0d:34:0c:7e:87:c8:73:3f:fe:
                    e2:ec:51:a0:3b:31:99:d6:2b:f6:09:54:d8:51:99:22:
                    9a:36:80:1f:01:8f:3a:cf:ab:e2:e4:53:51:39:f9:47:
                    d1:e4:90:94:19:10:37:d3:12:a7:f3:f9:91:5c:af:e8:
                    56:9c:2d:ef:86:06:a7:b7:7d:18:2d:0a:97:11:e4:6a:
                    6e:e3:60:30:a7:3c:71:f4:0b:be:5a:c5:ac:9c:be:b4:
                    93:15:a6:66:9e:6b:ba:3e:69:17:a8:f1:87:7a:65:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:79:50:91:f1:0e:2a:bf:cd:8b:ab:8a:71:92:ab:5d:
        22:c7:8b:0c:1e:ae:89:77:f0:ef:be:5c:6f:4d:d6:cb:
        86:f5:ba:e0:ca:51:81:26:e3:31:c0:2e:28:f8:d0:6d:
        ce:3d:3c:fe:78:1c:ff:43:ab:e3:ae:f0:bc:58:e8:ce:
        be:f6:12:36:2c:8e:9c:86:cf:65:dc:fa:f2:46:06:22:
        48:1d:c3:4b:bd:c4:9d:c4:45:46:c8:18:3b:e9:69:9d:
        d9:27:32:87:03:5b:64:50:78:d2:fc:5f:57:61:1b:4e:
        6c:36:00:61:c5:77:0a:cf:0e:f5:84:fc:a7:7e:37:fc:
        15:35:17:8d:90:3a:88:10:d9:33:1e:aa:05:3d:a4:90:
        46:f8:b2:04:ec:fc:49:75:c7:a2:51:5a:df:3f:e3:d2:
        73:73:c7:5d:cc:b9:08:70:d2:15:a7:f5:38:54:f0:58:
        7f:07:a8:46:92:83:96:17:38:f4:82:a8:01:b5:45:dc:
        0f:f2:7f:e3:03:50:f1:3d:c5:25:4a:ad:fa:5f:fa:2f:
        22:58:a6:e8:a0:72:8a:b9:7a:e9:7b:00:19:a2:05:fe:
        b7:2b:94:9f:a8:e0:85:3c:48:1d:30:28:38:3b:c5:f1:
        3d:15:e3:92:f4:94:11:24:4e:5c:98:e5:ff:ad:1c:ff
    Fingerprint (SHA-256):
        31:4F:4B:1D:1F:39:2C:3A:3D:4A:B0:C5:9A:E3:31:9C:14:99:D1:42:2F:0F:BF:0D:53:D2:9F:01:01:07:22:3B
    Fingerprint (SHA1):
        0D:81:5A:BF:1D:36:A2:71:1A:C7:46:54:28:28:BF:A5:9C:D4:E1:D1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #292: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3c:52
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:36:37 2017
            Not After : Thu Aug 10 11:36:37 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:b4:26:37:61:4f:15:fd:d4:f7:b0:05:e8:82:56:78:
                    e0:dc:55:dd:de:68:5d:5d:c0:73:a9:b0:28:01:d9:10:
                    b7:57:bf:5a:26:65:93:7e:45:7a:52:6f:ca:78:22:9a:
                    3f:cc:4e:14:e9:4b:e2:77:2d:4e:cb:e7:10:ef:1a:8c:
                    2a:ca:83:d7:0d:88:bf:b4:59:36:d3:df:35:37:f7:65:
                    ae:f5:08:af:20:87:3f:4c:52:6b:52:3c:fc:ac:ce:3b:
                    93:7f:44:64:d6:77:24:00:db:fd:c4:f0:3b:0a:9a:60:
                    0e:c8:2c:cb:05:67:78:9f:5a:a5:f4:07:0c:30:52:ef:
                    61:82:6f:1a:f9:10:bc:3d:3a:ea:41:37:00:f2:9c:08:
                    7f:58:d6:54:ef:e7:d7:95:e1:83:ec:e0:3b:76:4c:34:
                    fd:94:db:37:ed:5e:a0:09:83:e5:ac:9f:e9:91:2d:23:
                    d8:6d:2c:26:a8:30:f5:e3:3a:77:11:d1:fb:5f:6a:e1:
                    56:d5:c5:e4:eb:a8:40:bc:dd:85:d5:9c:0a:22:07:4a:
                    9b:c3:3c:0d:da:61:b5:d9:44:eb:ae:21:15:68:98:49:
                    f6:ee:04:95:4a:9e:00:9f:b1:3f:b2:65:33:27:09:91:
                    fd:ae:6f:75:88:a1:73:67:28:24:72:ef:41:d7:af:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:9b:a8:c2:50:30:ca:e4:4c:c1:6b:85:80:dd:df:a9:
        ca:79:c2:4f:3d:b2:41:52:e9:dd:7b:f9:ab:a8:08:dd:
        b7:1e:41:2e:9f:12:ff:aa:5c:7d:bc:07:50:92:30:ad:
        91:24:78:e0:c9:93:c4:43:d3:08:30:02:bc:54:e9:31:
        f0:85:f6:11:81:cf:1c:6a:02:20:9a:44:58:b1:ff:71:
        7d:3e:8f:51:2e:e2:42:6f:8a:98:bb:a7:3e:e2:c8:4d:
        f1:09:c1:5b:b9:22:c6:1c:ac:ff:2f:89:ca:16:c0:2e:
        bd:de:3e:24:d4:6a:54:cc:4f:c9:c7:de:53:88:df:50:
        16:2f:75:0c:65:bb:e9:2d:8f:57:ca:0a:f6:db:7e:c7:
        e3:d2:f8:17:84:67:b6:c7:a8:14:30:c1:08:5e:ff:d3:
        55:2e:d3:ca:6f:f8:12:26:83:a2:93:4b:2b:5f:dc:6f:
        05:97:f0:cd:07:2f:5e:bf:b4:be:92:bf:16:f5:e2:2e:
        ae:b7:92:0f:13:36:e9:92:d4:ea:84:7c:fa:08:93:a3:
        31:a5:d5:b8:f8:8a:f8:4e:c4:85:75:9e:f9:88:87:e2:
        d9:0e:56:05:68:fb:d2:cc:4d:90:2d:b5:3d:b4:d2:ab:
        85:0c:be:3c:2f:43:6c:24:eb:ee:11:64:e6:f1:e8:8f
    Fingerprint (SHA-256):
        CA:8E:F1:3C:28:D7:EC:D9:98:0C:81:21:0B:7E:84:D5:2C:B0:5B:3F:07:99:D4:3A:61:D4:CC:79:D2:07:9B:58
    Fingerprint (SHA1):
        97:27:E3:3F:10:93:60:7B:8F:6A:90:9E:92:66:D3:62:2B:BE:6C:23
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #293: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3c:53
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:36:37 2017
            Not After : Thu Aug 10 11:36:37 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    95:d0:1f:07:b0:92:25:aa:2a:63:e0:b4:eb:df:90:83:
                    ad:02:d0:a1:cb:9f:43:9d:4f:c3:32:24:dd:82:9f:a1:
                    a1:5b:13:34:02:21:d3:e7:62:85:d8:62:15:3a:c7:ea:
                    76:22:1f:2a:c1:0d:0a:52:69:8f:14:7c:34:97:ed:e0:
                    7b:a6:f9:4e:4f:7c:14:d2:ee:07:d7:b9:84:62:b3:86:
                    38:a9:e6:0b:c3:f2:52:de:c4:71:73:db:a1:88:bb:66:
                    ea:4b:e8:f2:d2:08:63:a7:9d:f4:08:5e:8f:68:9f:61:
                    b8:7c:c3:7a:88:a8:c7:6f:1e:de:a4:58:c9:eb:cd:9b:
                    ae:67:40:dd:99:58:c8:8e:4a:10:f3:76:30:0b:0a:b0:
                    87:f6:74:ae:e9:b0:99:92:18:46:80:fc:54:86:03:35:
                    84:00:37:cd:da:3b:c2:6c:c7:bc:be:e9:8d:a9:02:b5:
                    3e:9d:b1:a3:60:b0:6d:36:6e:3a:0e:5b:97:73:a7:14:
                    70:03:7e:e3:64:16:37:a8:fe:76:ef:41:d7:53:b1:6c:
                    a6:12:75:bd:e3:dc:f0:f2:be:e0:20:be:7c:f6:8c:ba:
                    49:69:ef:00:ae:da:55:8a:06:73:ba:7a:ad:e4:01:4b:
                    f9:5a:55:d7:f8:f6:e2:3f:47:0b:43:fc:f2:19:4a:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        16:17:22:ee:94:5d:27:10:49:c6:c7:1f:67:c2:cc:a2:
        9f:fd:f0:da:4a:79:c0:8d:79:6a:15:92:8c:8f:57:c0:
        ed:99:08:21:dd:87:9a:29:56:a1:c6:2f:e1:64:7a:0f:
        7f:2b:3b:36:1a:53:23:c2:81:fa:f7:ac:47:c5:97:a3:
        6e:51:a0:2e:f1:d3:30:01:a6:41:e6:03:f1:a0:6f:ce:
        bd:5b:a8:40:35:46:b0:ce:38:12:64:02:e4:12:30:03:
        35:ac:4b:dd:e8:2f:d4:8b:97:bc:f1:bc:da:6f:56:c7:
        36:21:65:9a:5a:a6:20:01:dc:c2:82:58:d1:24:7b:9a:
        35:c6:41:1b:f1:28:09:28:81:9f:da:b1:dd:09:03:9a:
        d3:d0:a3:b2:68:4c:5a:27:fa:3f:8a:be:1c:de:e4:a1:
        5c:ba:cf:fc:49:ef:cb:71:8b:7f:60:90:b9:e7:bf:a6:
        ed:70:20:1a:59:6f:23:af:16:38:3d:39:07:53:86:96:
        e7:c2:37:20:da:b3:f3:5d:a9:f7:3b:5e:c2:f1:1a:2e:
        0a:f0:b8:5a:fc:fc:7e:9b:88:12:ca:9f:21:98:86:71:
        41:18:36:cd:ab:60:0c:88:b3:da:ac:9c:e9:53:47:dc:
        d9:eb:a8:fa:47:88:2a:b0:43:e6:46:7e:8b:43:43:ba
    Fingerprint (SHA-256):
        18:CA:79:3A:D9:3D:10:65:4F:6B:60:62:B6:A2:A3:CF:B0:54:23:39:A8:91:DC:C9:2E:87:98:29:56:E9:00:23
    Fingerprint (SHA1):
        2F:0D:69:37:79:2E:60:A6:33:D0:56:AE:F6:E5:01:0A:8E:87:2D:C7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #294: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3c:53
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:36:38 2017
            Not After : Thu Aug 10 11:36:38 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:d1:e3:31:98:92:c2:9c:2a:4a:3c:84:b8:c7:35:75:
                    73:de:d0:e4:9a:78:23:08:e3:fb:a5:20:98:6e:44:be:
                    31:a5:a1:d7:b5:c2:1d:8f:80:c8:f2:5c:8a:ac:74:1b:
                    f0:22:a0:de:e7:fa:20:87:48:8a:12:8b:a3:6a:7c:14:
                    f9:e6:01:b3:7a:6d:8e:8e:a1:7f:56:3e:af:4a:cf:67:
                    47:c3:9f:27:8d:a6:18:5b:83:15:11:21:36:a9:62:3e:
                    7a:24:90:c2:42:f8:b0:ac:01:d5:61:5e:a7:f8:ce:06:
                    c1:c5:95:d1:b3:29:07:ba:84:a4:98:fd:13:8e:4f:d5:
                    15:59:23:8d:b6:6e:73:53:a1:89:9f:73:1e:ac:15:0c:
                    37:d4:e0:32:c3:2c:1e:ed:ef:dd:b4:f6:af:a7:fd:b3:
                    49:e5:d5:f0:54:b5:ee:e2:51:77:3c:2f:79:70:11:28:
                    e1:1a:04:60:ce:60:bb:94:32:51:00:2a:fb:19:b0:e5:
                    98:c3:57:96:31:c9:a2:15:2a:84:4b:24:86:d8:70:a1:
                    77:57:4c:ba:32:68:68:9c:51:67:da:02:b5:b5:0a:07:
                    b0:60:00:e3:8b:26:62:ba:49:99:2d:6e:7d:ca:19:22:
                    bf:b2:97:51:32:cc:aa:52:ad:18:de:65:bc:19:1a:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:5c:ad:be:6e:68:9c:74:a4:dd:f3:60:0e:4c:68:05:
        2a:c2:5f:8b:19:04:7d:9c:03:43:1b:ec:c8:92:a9:68:
        ea:24:3b:7a:9c:70:87:4e:df:16:e6:2e:04:e0:83:1b:
        88:40:60:0b:18:78:66:e5:be:16:c6:e5:83:41:1e:b5:
        41:d1:8b:f8:24:cd:4c:fe:65:05:d9:0a:3d:86:f8:09:
        af:8c:a1:74:1d:f3:c4:f1:41:79:e6:15:a6:df:22:8e:
        c4:95:c9:a2:a6:25:dc:4b:b8:83:f1:28:5f:af:e4:fd:
        95:76:01:48:7e:40:47:c2:ec:95:5b:df:51:9b:26:d1:
        e6:bc:30:fd:13:a9:62:c1:8d:b8:4e:a2:ce:50:35:67:
        58:ff:d8:0e:a1:2b:a9:8e:1d:d6:f7:97:db:89:89:3c:
        1a:63:57:cd:dc:ba:26:bc:e2:f5:d4:0a:2e:b9:d6:8f:
        fc:e4:3e:49:78:c4:7e:2e:0b:ce:93:16:0d:89:7f:a2:
        f7:f8:2b:52:62:1b:a7:61:74:50:ed:71:2d:53:88:1d:
        c1:c4:5e:c3:7c:10:e7:e2:c1:29:c5:63:83:b0:83:bb:
        5f:31:d1:36:ea:ed:05:d5:7c:e7:7c:77:4e:0d:ea:b5:
        d4:eb:8e:1e:19:84:fb:09:fb:97:bb:5b:d7:97:92:a6
    Fingerprint (SHA-256):
        AD:FA:F4:1F:9B:E6:4A:B6:91:FC:FC:DC:F3:F9:25:38:80:C7:14:38:8A:E4:27:8C:A0:29:E1:23:B1:04:D7:2D
    Fingerprint (SHA1):
        DF:E1:5F:32:AD:CC:A9:ED:6D:12:BC:FB:40:83:76:FA:92:54:65:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #295: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3c:54
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:36:38 2017
            Not After : Thu Aug 10 11:36:38 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:5e:bb:0c:d2:14:1e:4c:8a:22:aa:88:b3:80:d3:ac:
                    56:bc:10:64:83:5c:09:d0:18:74:04:11:9d:a5:a3:cb:
                    04:aa:51:3a:a4:7c:a6:92:40:89:14:9b:30:d1:07:56:
                    97:46:1e:83:ef:ad:27:ea:c9:15:87:76:59:8a:89:5b:
                    a3:ce:31:ad:b9:9d:a1:1c:ab:3f:41:97:ae:6f:ee:f8:
                    4b:15:b8:9b:11:17:46:84:82:45:b4:b7:37:0b:a1:db:
                    c0:42:75:95:2a:0d:0e:a3:32:e6:1d:31:5f:fd:4e:fd:
                    d2:f1:8b:57:3c:72:ee:54:c2:ef:fb:bb:3d:74:d1:8f:
                    0c:bb:ee:b6:d8:07:f5:4c:54:7b:bf:a8:ee:bc:2f:11:
                    77:a3:ed:2b:e3:25:d7:a8:e8:b5:43:82:29:0e:36:cd:
                    72:3a:cd:7d:92:d8:36:7d:50:50:40:fa:cc:97:f5:32:
                    48:c0:a4:cb:b2:1a:00:be:43:97:56:ea:b1:0f:ee:12:
                    c4:9c:ae:c7:7d:fe:f9:60:ad:ba:9c:16:76:f9:b9:05:
                    85:5f:e9:d2:98:a9:19:72:fe:96:e9:49:aa:62:56:84:
                    31:c1:c1:bb:14:c3:21:72:2e:37:f7:5c:e0:0b:b2:a0:
                    0f:54:9e:23:04:d8:b5:b5:af:03:04:b7:1d:05:b3:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c4:68:a5:3e:d2:a7:78:cd:ee:94:70:45:d0:66:d3:a5:
        d1:08:2d:76:d9:e0:d8:ba:2c:f1:20:8d:c4:b8:36:c4:
        3b:4c:41:ab:7d:7f:d8:e8:85:e2:5f:99:ca:51:88:d9:
        d4:9a:2e:70:ba:5a:b2:70:4e:26:f5:2f:5d:04:ac:e8:
        08:b7:c5:2a:58:e3:09:d0:16:30:b5:3b:1c:d4:a9:3d:
        25:2f:e0:68:70:d3:1d:f7:e5:5f:64:65:36:87:65:6e:
        12:ad:93:40:aa:77:99:c4:f7:51:17:0a:dc:2f:2c:15:
        b9:75:91:c0:e1:fa:b9:d1:7d:50:1f:5d:56:5d:ea:5c:
        e3:0c:b2:86:1d:c6:74:b8:0a:52:24:f1:a4:ca:98:f5:
        09:89:70:4f:e6:4e:85:18:3f:cd:01:ce:96:13:66:bd:
        14:e7:b3:21:25:d7:34:12:b7:4f:33:71:5b:36:ff:aa:
        7d:f9:59:af:e1:55:3e:42:5b:d6:e2:52:f8:cd:46:48:
        d4:f7:dc:9b:d4:ee:e6:4c:ad:80:17:a2:9c:46:08:0f:
        ec:84:ad:3c:4d:5a:9f:ab:f7:90:00:16:43:4b:5c:d7:
        76:0b:9f:89:82:b7:9a:f1:b1:86:82:2f:24:d0:22:de:
        9b:be:a6:4f:87:d2:3c:bd:01:88:ce:dd:19:99:6e:ca
    Fingerprint (SHA-256):
        1E:23:AA:2F:44:5D:E5:68:FC:94:15:D9:56:D1:E0:49:94:B6:38:D0:80:F0:A9:4E:C4:0E:04:2A:58:E0:F1:3D
    Fingerprint (SHA1):
        73:B3:EC:7D:2A:1D:33:2C:68:EE:CB:93:61:60:80:8C:44:34:36:AC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #296: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3c:55
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:36:38 2017
            Not After : Thu Aug 10 11:36:38 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:a5:79:50:68:d4:c9:b2:f7:94:37:56:15:c9:dc:38:
                    32:e6:31:f7:36:e8:c2:2a:2c:96:dd:1c:f4:52:65:69:
                    ec:bd:6b:4a:d9:85:1c:71:27:d1:84:78:ba:80:da:65:
                    2a:92:21:42:2c:03:53:c8:b9:7c:63:96:41:47:6e:e3:
                    1b:08:7c:0d:cc:f7:ef:0c:af:c4:c9:7a:af:e0:73:57:
                    94:b6:62:94:de:34:28:d3:1f:24:cd:99:78:ac:3e:d6:
                    c9:ad:3c:07:c5:cf:7b:89:35:ee:ec:c6:b7:60:67:27:
                    94:a5:16:cc:b1:a7:13:32:8b:d1:a9:f5:2f:fe:d1:2c:
                    29:95:07:df:da:ed:8e:24:0b:15:1e:c0:e4:55:47:e8:
                    eb:43:ed:04:46:f4:5d:b9:c9:ca:6a:ff:82:f1:ce:c3:
                    d7:bd:11:66:b1:4b:1f:e5:97:81:d3:d2:18:ba:c2:c4:
                    bf:62:95:3a:ec:c4:6e:c6:e6:7e:51:ae:10:fb:cc:51:
                    74:ff:c7:61:c2:c3:aa:b0:d8:5d:50:cb:8d:fe:1c:2f:
                    34:ad:ff:da:fd:ff:3c:0c:04:ae:21:7d:ff:89:1b:87:
                    54:6d:a9:5e:73:97:79:11:0f:c2:d3:62:3b:72:0b:aa:
                    f4:a9:b1:31:23:e4:e6:1f:a1:a1:e1:d7:36:c0:24:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a5:96:56:8b:ff:7d:f9:1d:9d:df:6f:6a:86:2e:e4:0b:
        c3:cd:ae:82:89:66:0d:f0:71:8f:8f:69:0c:29:67:cc:
        7e:eb:f8:c7:1c:ab:da:10:4a:b1:78:1a:84:19:be:5c:
        78:03:10:10:50:55:9d:d2:25:86:3a:d7:73:f5:73:0e:
        09:72:82:ae:25:d2:09:d5:3e:f6:25:9c:c7:5a:ab:bd:
        3f:35:2f:20:7e:17:9f:d9:b3:66:0c:b8:c5:f8:b7:bf:
        7f:cb:7d:24:0f:a3:1c:26:cb:c3:a8:f5:fb:1c:e7:e3:
        09:c8:34:b6:36:47:0f:9e:94:04:b1:b8:00:6e:24:ac:
        73:86:51:b7:59:6a:3d:5c:05:74:a4:fc:4c:45:d5:5f:
        ac:47:fc:34:97:20:69:43:8c:4b:4d:5a:67:0b:77:81:
        22:b3:de:fd:6f:f3:6f:2d:55:77:8b:40:bc:08:40:ac:
        7c:8c:4a:e1:7d:b7:03:07:db:61:81:be:db:a4:87:07:
        dd:14:ba:c4:36:51:27:44:31:63:db:4a:87:ad:e7:99:
        04:65:1f:e1:82:5d:16:b0:60:a2:79:f4:4c:9f:d1:53:
        30:85:ac:fb:29:97:42:82:bf:21:df:7f:ad:c7:d2:dd:
        b2:a6:a6:5a:bb:f6:d7:bf:83:22:79:b0:81:ea:a1:00
    Fingerprint (SHA-256):
        BF:94:17:9D:AE:D9:06:70:20:DC:0F:76:62:4C:42:85:EF:48:46:D9:00:F4:2A:A0:ED:6A:79:BD:14:37:90:72
    Fingerprint (SHA1):
        CB:86:D9:BC:70:6D:D1:8A:83:D3:E6:89:ED:A5:6A:98:A4:68:A7:2C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #297: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3c:55
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:36:39 2017
            Not After : Thu Aug 10 11:36:39 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:65:08:7b:2e:b1:d6:69:b8:cc:49:ce:ab:aa:eb:d6:
                    f1:3b:61:de:38:cc:9d:f1:69:81:d9:41:7d:44:67:02:
                    1f:32:80:2d:93:8a:ed:0b:e9:60:bc:91:e7:a8:e9:6b:
                    9a:8e:e3:93:77:d5:8c:1f:96:59:da:80:23:b2:fe:bd:
                    be:22:1b:ae:78:30:1f:64:00:6b:d8:f5:0a:2b:ee:a6:
                    50:8a:c7:04:92:af:d0:1f:1b:79:3a:2b:ab:20:8e:ab:
                    68:1e:f7:f8:78:da:f9:72:3f:f6:75:a7:85:22:0f:f9:
                    a1:b3:81:85:4c:56:fa:3d:fe:ff:cb:bc:87:9a:f0:01:
                    27:d8:97:20:eb:53:8f:e9:61:94:7c:90:ef:75:d8:30:
                    6b:88:a3:14:f9:8c:be:d3:9c:e8:ac:63:95:ed:3b:9b:
                    05:f1:6b:d9:82:c6:eb:4f:c8:7f:02:cc:cb:a7:df:5c:
                    01:c9:c8:c5:b4:e2:6c:df:8f:b1:0c:f0:6a:19:01:a1:
                    c8:fd:49:04:38:51:95:bf:75:ba:ca:48:9a:1e:4e:47:
                    c1:00:39:21:5d:a5:49:b8:52:d9:6d:fe:4d:b3:b9:a7:
                    66:a9:de:c1:f7:76:ee:2c:1c:d7:44:06:8f:7b:05:fb:
                    bb:3f:40:eb:ab:57:aa:d8:c4:ab:1d:63:5d:4a:c8:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        11:7f:24:9e:dc:51:01:5e:1d:95:3b:93:fa:61:05:ef:
        64:4e:0e:00:02:e7:56:11:b3:57:bf:4e:ee:68:2d:56:
        35:36:5d:a3:8f:c2:df:cf:00:5a:32:fc:74:55:71:08:
        ad:e1:36:4e:ae:e6:05:04:97:49:fc:5f:5d:58:31:54:
        16:18:aa:25:c3:d2:e9:ec:96:00:c0:35:d9:8d:57:d1:
        31:02:dd:a3:c5:38:00:f4:21:a6:dd:4d:5b:76:8e:a8:
        88:5c:bb:94:e7:a2:b0:68:0c:91:93:47:76:52:e3:b8:
        1f:96:e4:a7:09:b7:71:ee:f3:2d:0e:01:56:9f:30:ca:
        4a:2f:90:75:79:6b:cb:78:cf:0d:b9:e0:65:3e:92:f0:
        e7:d5:b0:2c:34:d4:27:8b:a4:45:76:99:0e:25:c1:7c:
        04:92:e5:52:6f:b4:02:9d:cc:e6:5d:a8:d3:11:47:e9:
        9a:37:42:a2:d9:14:10:3b:37:a6:82:1a:1d:6a:80:47:
        98:18:35:74:32:1a:20:87:ac:ca:d3:45:af:03:b3:29:
        64:1a:4c:61:ec:ff:64:28:26:68:9a:01:8b:2b:b9:64:
        c9:9f:21:e1:58:d1:6e:11:ed:d8:4c:aa:b1:91:b9:60:
        05:64:9a:0b:ed:72:47:1b:7b:53:e0:44:9b:fd:35:e7
    Fingerprint (SHA-256):
        75:27:A0:4B:42:A3:85:E5:8D:F2:B6:0F:E8:C5:E7:B0:4C:54:7F:21:7D:EC:AB:1B:DD:A0:37:2B:B9:0B:0C:8C
    Fingerprint (SHA1):
        7F:BB:84:19:3B:6C:98:9C:61:21:83:2D:7A:41:73:B7:25:4D:3F:3E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #298: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3c:56
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:36:39 2017
            Not After : Thu Aug 10 11:36:39 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:d4:2d:aa:fb:8e:13:b6:e9:7d:86:25:9b:b5:f1:e6:
                    24:57:2d:90:c7:4d:a3:4e:fc:3b:25:2b:ef:e4:e5:ac:
                    52:86:b4:74:1d:75:39:44:f9:28:7e:99:ef:16:29:f5:
                    37:60:3d:96:e6:6f:89:24:ac:b4:1d:ac:46:5d:35:d8:
                    b7:de:27:d8:e4:d5:a8:e8:fe:5b:77:e7:e8:aa:1a:a5:
                    f8:11:83:b1:db:04:b8:e3:25:14:44:bf:02:a7:6d:dd:
                    98:b7:28:0b:27:64:f0:ab:46:d3:85:dc:ab:f9:4c:c4:
                    19:5e:bf:14:d2:dc:1d:b0:68:00:3d:0d:5e:25:90:b4:
                    3e:bc:b2:8e:ef:e8:71:1f:cb:63:61:70:28:bf:d1:2c:
                    e4:03:81:f7:b3:66:0d:79:ef:63:1b:02:c5:ac:ba:46:
                    04:03:31:bc:c0:f0:bb:ca:60:e3:72:b9:17:8f:26:32:
                    2c:f2:37:ab:08:c9:10:5a:07:34:a4:e7:61:9d:f9:b6:
                    ec:f8:8c:fb:0a:76:fc:a8:e2:ac:b5:ab:bc:f8:1b:25:
                    ba:f0:12:c4:f2:e3:e8:4e:64:38:1d:3a:c5:bc:95:f2:
                    6e:4a:85:04:c9:93:e5:35:39:0e:df:a3:d8:e2:fb:54:
                    61:f4:e0:85:47:8a:24:5b:19:9b:24:df:ca:ae:89:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5a:23:74:90:ec:2a:c6:cd:db:8b:82:09:ab:0a:a3:f9:
        4a:1f:4c:ba:09:17:c5:a2:86:94:53:8f:95:bb:65:f3:
        ac:9c:05:34:40:3f:cc:80:c7:17:20:e6:07:f5:3d:88:
        7c:64:89:fb:bb:71:ab:de:51:4e:82:ff:4b:8f:ee:bb:
        72:58:f5:8b:ac:c3:d4:22:26:4f:eb:c2:af:24:f1:5f:
        59:ab:d9:dc:b3:e1:60:74:ac:20:b5:f2:27:28:bd:ca:
        71:06:c0:fd:b6:30:90:76:2d:a3:9c:24:a0:2d:c5:71:
        5d:92:7d:41:2e:ae:49:ae:0b:27:0a:e8:f2:ce:01:55:
        ac:84:ac:e7:4a:fe:ba:ca:91:86:3e:af:03:dd:62:e5:
        7a:07:14:ff:89:b3:30:28:d5:38:79:a9:a8:dd:4f:9b:
        3d:48:f4:e2:22:98:ef:b0:37:b3:b2:06:a0:5c:4e:63:
        e3:f4:b4:b5:2c:77:77:7d:4b:03:c2:5c:9e:21:7c:51:
        8c:3b:10:47:11:c1:f4:61:c0:9a:b0:9f:be:79:50:5f:
        f4:e3:fc:90:04:79:42:72:1b:d2:ee:35:fa:de:6b:80:
        4a:9b:e2:f6:2e:a7:c1:fc:4d:0d:64:c3:d5:81:72:6f:
        4c:3e:ff:2e:e4:01:b9:fd:51:c6:3c:0c:f2:07:64:1c
    Fingerprint (SHA-256):
        62:34:A5:32:5C:67:89:9D:B6:36:B9:26:D4:EC:69:68:34:E9:E7:71:41:33:4A:3B:59:EF:DD:6B:51:E4:64:30
    Fingerprint (SHA1):
        C8:DB:3A:8E:AC:83:53:C1:AD:66:FA:5E:05:79:67:A6:9B:10:8D:F4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #299: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3c:56
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:36:39 2017
            Not After : Thu Aug 10 11:36:39 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:93:13:f8:c8:09:dd:c3:41:0b:3c:90:8e:39:79:f7:
                    91:b3:78:f0:f2:b2:48:6e:b4:f8:cf:c0:fd:8e:64:a6:
                    04:31:29:39:11:2a:8a:2d:3c:39:1d:28:cc:eb:5c:3f:
                    ed:d0:1d:52:8e:e3:e0:a2:43:f5:90:fa:fb:ab:26:7a:
                    57:6c:31:b6:d4:53:bc:98:04:af:0e:20:fd:17:f9:29:
                    9f:4f:91:df:8a:39:6a:75:0f:af:10:1c:c5:3f:4f:68:
                    fe:58:f0:2d:f7:74:e9:fe:19:dd:23:7c:d7:72:20:0b:
                    63:15:f2:a3:ac:69:86:7f:78:1b:ff:83:4a:5e:ed:39:
                    e9:18:2b:a1:1d:fd:f6:4c:5f:5a:0f:66:ae:a2:9a:a3:
                    d9:96:b6:bc:2d:a2:0a:55:a0:59:72:ad:5f:2e:b2:7d:
                    c1:65:4a:3b:a2:f7:4b:4e:b1:99:4c:7c:40:3f:11:f8:
                    94:ad:7b:f8:a4:bf:29:eb:f3:67:e4:f2:6c:71:7b:dd:
                    72:18:01:0e:46:8e:1c:f7:cb:1c:73:39:92:54:e9:60:
                    74:ea:ec:48:46:19:21:b6:a4:c6:83:15:78:9c:3d:dc:
                    44:7b:9e:3d:d6:79:d5:95:ba:94:fe:3c:33:87:f0:2b:
                    0a:5f:93:31:24:32:8d:bf:a4:b3:ce:5a:eb:30:c5:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:5c:75:71:13:e4:96:b5:43:8d:6f:e9:12:54:98:06:
        97:cd:87:80:ba:ef:53:3b:a6:19:92:56:fc:ae:ee:28:
        a4:7c:0f:44:93:98:7c:0d:71:d3:8c:fd:cb:be:40:90:
        91:8d:f2:44:49:f1:b2:5d:40:82:f5:f8:c8:41:1d:25:
        e0:67:67:9a:3e:b8:b3:d5:c5:d5:77:23:8e:81:d4:1a:
        0a:07:5d:91:2d:92:37:f5:19:af:61:b0:ae:84:94:db:
        9f:c5:a4:69:9b:01:6b:71:0d:6d:66:b9:fa:c9:6e:1e:
        1c:f2:bd:74:60:32:40:56:5b:ef:06:8a:22:78:db:b4:
        69:c5:e6:6c:1f:f3:1b:db:18:5e:32:e1:11:03:fe:4e:
        18:4f:78:19:36:42:cb:0f:74:7e:44:c4:98:c4:29:6f:
        2f:45:65:eb:94:71:d7:ba:8e:76:6d:a9:9a:2e:c9:df:
        a6:49:a0:55:99:b4:17:f9:f0:d2:5d:c6:67:25:60:4b:
        3a:7a:73:13:c5:27:75:e9:ef:d9:22:b2:d8:a1:e0:fc:
        0a:dd:4c:e0:de:4c:f7:f6:7d:b9:03:be:5c:97:0a:07:
        e6:fd:18:d8:07:da:8d:b7:6b:07:93:3c:cc:79:34:af:
        b3:0b:33:eb:53:27:53:e7:2b:72:04:61:ca:b7:f5:95
    Fingerprint (SHA-256):
        D7:F2:53:57:D8:B1:46:12:2C:F0:EF:90:9C:34:10:97:72:EE:A8:B6:B5:4A:E2:1B:FD:09:58:38:C8:32:45:8B
    Fingerprint (SHA1):
        07:11:C2:CA:DC:FC:73:4F:32:1D:FE:0C:E5:66:B2:01:4C:D4:34:CF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #300: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #301: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #302: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #303: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3c:58
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed May 10 11:36:40 2017
            Not After : Thu Aug 10 11:36:40 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:59:80:49:c5:38:22:0d:bd:01:7e:9e:b9:eb:6f:a1:
                    2a:af:4b:10:35:8d:7c:30:d4:dd:18:44:23:ff:37:5c:
                    fc:8d:7a:00:64:e8:af:c3:6a:bc:8f:c1:fd:19:0b:0f:
                    82:be:6f:24:80:98:7d:f1:97:1c:48:b0:9c:49:dd:7f:
                    8c:52:5b:86:21:7d:0f:1a:4b:79:8a:6b:a3:56:6c:89:
                    7d:19:65:03:63:a9:a6:f5:5b:7a:72:7a:f7:33:89:f9:
                    eb:9b:4c:2d:a9:6a:67:9f:72:b9:1a:bd:11:e2:d5:31:
                    f7:16:45:2b:f9:f0:76:44:1d:45:81:dc:e1:78:6b:bb:
                    42:30:7a:bd:24:ab:b3:d4:d7:06:9c:88:1f:8d:7b:ee:
                    cd:f2:71:c3:90:5d:4b:e4:c5:5b:bb:75:76:82:cd:3b:
                    34:f3:ee:f2:65:51:a6:e5:8b:da:3c:13:7b:b4:6c:2e:
                    d3:f3:e2:95:69:44:29:1b:7b:d1:53:41:8c:35:56:65:
                    66:8e:7f:2f:08:da:5a:9e:8b:53:f0:25:77:93:cb:4d:
                    d0:1b:4e:69:95:f6:10:2e:00:d1:5a:3d:4c:8b:55:35:
                    c1:1a:87:9b:f0:a9:29:4c:70:9b:41:cc:58:b6:1b:b3:
                    c8:81:83:6f:4d:33:26:5d:eb:90:11:ef:82:c9:07:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:c4:eb:ea:05:46:84:08:a4:3c:0e:37:5c:b7:57:b8:
        53:71:00:33:f4:c4:7d:58:89:92:e8:62:6d:4f:24:c7:
        12:43:da:8f:c1:bb:7d:3e:8e:96:0d:44:03:25:bd:6b:
        ee:08:90:a7:74:de:5b:65:5b:ae:b1:4c:c3:10:94:09:
        dd:d1:a4:2a:26:ca:1e:1a:e1:66:7b:27:32:91:45:8c:
        2f:e6:a7:c2:cc:4b:c3:64:96:44:08:ab:ae:bc:bf:c8:
        5b:11:9b:de:be:a0:8b:86:3b:27:cb:75:7f:63:95:eb:
        61:69:8b:3a:18:42:35:ec:18:c5:eb:05:9a:f1:ac:b4:
        71:68:67:04:7a:b8:35:3d:45:61:9c:1a:60:5e:8d:56:
        20:be:af:82:d2:02:94:91:fb:ea:ed:08:45:8a:31:0b:
        59:32:2b:1f:86:6b:51:6f:32:67:36:c7:92:69:7f:bb:
        f9:b5:d1:f9:7e:ec:34:f7:e4:0b:3b:15:0d:12:e9:22:
        77:8a:19:a3:9e:c5:c6:3e:17:d6:0b:3f:10:b2:8b:dd:
        68:e8:68:49:9e:23:4d:e9:39:7f:eb:48:af:90:95:2e:
        fd:41:19:e6:07:11:ad:19:5b:dc:a5:b0:12:58:a4:21:
        a8:42:3b:91:3b:50:b0:db:93:af:92:40:8c:1b:72:2b
    Fingerprint (SHA-256):
        EA:5B:D5:DF:EB:41:57:D9:62:96:1F:B7:30:52:FF:14:2D:25:4A:D3:7D:73:52:46:B8:0B:28:5D:58:41:2C:A8
    Fingerprint (SHA1):
        66:04:16:38:3C:7E:51:08:30:31:56:99:BC:F8:8E:4E:27:29:E3:43
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #304: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der
cert.sh: #305: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #306: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #307: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #308: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #309: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #310: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #311: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3c:5a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed May 10 11:36:41 2017
            Not After : Thu Aug 10 11:36:41 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e0:2d:ce:d8:52:2b:c4:0a:2b:5a:5a:71:47:f8:79:
                    d8:69:d2:2c:4e:87:04:62:60:21:26:ad:0c:d8:a4:5e:
                    a8:86:d6:bd:ce:5b:f6:c1:ce:3f:e7:71:4e:63:4d:14:
                    ca:4c:c0:cc:e0:d4:4b:c4:d2:6d:19:34:85:d4:91:ab:
                    15:c3:a5:e5:9b:13:2c:a3:d3:c6:63:d4:f0:eb:17:eb:
                    f7:21:06:e4:6c:5a:7a:8c:de:e5:de:53:72:47:4a:a7:
                    af:5f:b2:1c:73:93:22:5e:67:1c:04:6f:fc:6c:12:5c:
                    e9:ce:9d:d5:4b:15:c2:5f:33:d8:ec:47:a1:a8:f7:b7:
                    96:cc:41:5c:fd:86:2a:03:d7:31:2b:6c:19:c6:da:5d:
                    61:f9:ae:74:c1:5e:82:3d:1d:21:37:e0:2a:1a:c7:f4:
                    d6:87:ad:3a:92:d9:35:9a:f4:6a:23:13:b9:a9:6d:53:
                    9f:2a:14:37:a7:14:f7:89:5e:fc:62:0d:36:5e:f7:d6:
                    41:d8:6f:ff:d2:35:c0:80:03:98:93:33:3c:83:1e:95:
                    96:82:53:53:9f:20:3e:f9:81:5d:49:92:37:7d:c6:b4:
                    72:3e:46:ee:05:c7:6a:fd:0a:c0:cb:e7:02:5d:61:97:
                    69:dd:ae:91:f5:c7:0a:15:b2:7a:45:8e:c4:14:c6:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:fc:ed:a6:e5:97:1b:0f:01:1a:bc:db:15:32:7f:b8:
        6d:58:aa:5f:2c:78:84:b4:f6:b5:31:17:d6:84:fb:cc:
        97:86:6d:0b:67:2c:08:f8:38:58:3f:2c:33:55:a3:75:
        c0:d6:00:c8:80:bc:e1:a7:9f:01:50:9a:31:6d:e7:0e:
        41:c2:cc:c4:a1:e0:e3:3f:4b:d9:f6:78:97:1c:b8:8a:
        39:ab:fc:f1:e8:91:0b:d1:f2:78:c2:f9:29:cd:77:81:
        5d:dc:de:e3:ca:a0:fc:43:99:46:36:25:c0:f8:09:f7:
        0c:f4:0a:33:47:cf:23:4f:71:71:2e:85:3a:2d:00:be:
        ad:75:5e:55:db:6b:43:9e:08:ff:39:eb:8e:5a:20:de:
        78:77:b2:6d:37:9c:7f:15:e0:e9:32:43:cb:aa:a9:52:
        f8:d9:cf:cd:76:ee:0f:4f:36:2e:91:e1:d0:19:65:ee:
        ff:b3:2f:b3:17:38:92:be:84:bb:6e:5b:dc:0d:9a:20:
        4a:b7:c3:20:ef:a6:3a:fd:c2:f5:91:c9:8e:d4:a9:27:
        66:81:c6:ac:53:cb:b4:19:50:94:60:65:60:75:b6:7f:
        0b:0c:92:ee:73:ae:f2:ec:2a:66:47:92:78:6a:50:35:
        77:f6:61:80:0a:56:bf:b1:f5:cf:c1:2e:6f:46:ba:cd
    Fingerprint (SHA-256):
        D6:10:55:D2:F2:CC:8A:08:4A:69:A0:B1:77:CB:D5:59:20:A6:CA:24:9E:1E:A0:8D:8C:76:AC:60:07:65:3B:43
    Fingerprint (SHA1):
        DD:D4:0F:BA:51:CC:01:20:47:A4:98:99:97:3C:BB:62:B0:70:7C:DC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #312: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #313: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #314: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass -f ../tests.pw
cert.sh: #315: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #316: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #317: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass -o root.cert
cert.sh: #318: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #319: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #320: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #321: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #322: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #323: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -i ../CA/TestCA.ca.cert
cert.sh: #324: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #325: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #326: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #327: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #328: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #329: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #330: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #331: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #332: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #333: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #334: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #335: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #336: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #337: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #338: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #339: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #340: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #341: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #342: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #343: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #344: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #345: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #346: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #347: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #348: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #349: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #350: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #351: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #352: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #353: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #354: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #355: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #356: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #357: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #358: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #359: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #360: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #361: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #362: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #363: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #364: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #365: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #366: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #367: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #368: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #369: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #370: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #371: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #372: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #373: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #374: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #375: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #376: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #377: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #378: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #379: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #380: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #381: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #382: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #383: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #384: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #385: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #386: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #387: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #388: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #389: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #390: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #391: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #392: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #393: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #394: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #395: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #396: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #397: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #398: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #399: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #400: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #401: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #402: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #403: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #404: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #405: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #406: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #407: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #408: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #409: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #410: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #411: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #412: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #413: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #414: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #415: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #416: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #417: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #418: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #419: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #420: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #421: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #422: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #423: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #424: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #425: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #426: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #427: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #428: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #429: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #430: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #431: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #432: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #433: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #434: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #435: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #436: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #437: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #438: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #439: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #440: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #441: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #442: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #443: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #444: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #445: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #446: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #447: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #448: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #449: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #450: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #451: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #452: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #453: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #454: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #455: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #456: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #457: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #458: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #459: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #460: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #461: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #462: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #463: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #464: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #465: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #466: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #467: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #468: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #469: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #470: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #471: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #472: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #473: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #474: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #475: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #476: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #477: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #478: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #479: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #480: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #481: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #482: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #483: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #484: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #485: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #486: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #487: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #488: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #489: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #490: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #491: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #492: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #493: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #494: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #495: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #496: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #497: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #498: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #499: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #500: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #501: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #502: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #503: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #504: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #505: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #506: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #507: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #508: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #509: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #510: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #511: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #512: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #513: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #514: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #515: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #516: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #517: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #518: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #519: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #520: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #521: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #522: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #523: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #524: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #525: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #526: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #527: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #528: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #529: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #530: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #531: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #532: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #533: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #534: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #535: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #536: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #537: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #538: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #539: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #540: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #541: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #542: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #543: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #544: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #545: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #546: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #547: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #548: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #549: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #550: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #551: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #552: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #553: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #554: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #555: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #556: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #557: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #558: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #559: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #560: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #561: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #562: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #563: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #564: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #565: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #566: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #567: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #568: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #569: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #570: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #571: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #572: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #573: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Wed May 10 11:37:02 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Wed May 10 11:37:02 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #574: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #575: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #576: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #577: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #578: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir
dbtests.sh: #579: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir
dbtests.sh: #580: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #581: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtests.sh: #582: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #583: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #584: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/secmod.db
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/cert8.db
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/key3.db
dbtests.sh: #585: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtests.sh: #586: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir
---------------------------------------------------------------
dr-xr-xr-x. 2 mockbuild mockbuild   4096 May 10 11:37 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir
-r--r-----. 1 mockbuild mockbuild   1220 May 10 11:37 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/TestUser-dsa.cert
-r--r-----. 1 mockbuild mockbuild   1424 May 10 11:37 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/TestUser-dsamixed.cert
-r--r-----. 1 mockbuild mockbuild    579 May 10 11:37 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/TestUser-ec.cert
-r--r-----. 1 mockbuild mockbuild    705 May 10 11:37 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/TestUser-ecmixed.cert
-r--r-----. 1 mockbuild mockbuild    870 May 10 11:37 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/TestUser.cert
-r--------. 1 mockbuild mockbuild 229376 May 10 11:37 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/cert8.db
-r--------. 1 mockbuild mockbuild 118784 May 10 11:37 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/key3.db
-r--r-----. 1 mockbuild mockbuild    394 May 10 11:37 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/req
-r--------. 1 mockbuild mockbuild  16384 May 10 11:37 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/secmod.db
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #587: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:33 2017
            Not After : Tue May 10 11:36:33 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:fa:56:76:7e:ef:36:f1:b5:ce:9a:a8:7d:3d:0d:8a:
                    44:5a:3c:2d:ba:68:7d:b6:4c:fa:04:66:c8:53:23:ab:
                    bb:37:44:51:58:e2:97:89:f1:52:ef:cd:a9:36:90:98:
                    83:68:b3:fa:8e:d4:2e:4c:9a:d0:f9:82:65:36:af:4d:
                    04:bb:e2:71:b1:0a:8f:14:3f:07:28:3e:41:b9:3d:47:
                    5b:a9:d2:2e:c2:30:92:42:3d:56:81:b4:af:23:a8:d5:
                    53:ab:ad:63:3c:f9:3b:37:ee:2f:02:2d:43:a9:3d:c4:
                    fc:79:59:52:51:db:5f:36:65:6f:d2:9a:22:04:7f:d2:
                    65:66:d9:43:84:5b:cc:38:11:8f:47:77:c1:c8:56:00:
                    0f:99:ae:38:79:95:dd:41:63:80:89:4d:08:a9:e4:ec:
                    82:46:ac:da:6b:bd:ad:24:74:1b:64:c4:b2:0b:e2:91:
                    fc:70:d7:a2:2a:d2:02:48:c7:8e:aa:ab:63:a8:39:c8:
                    14:08:5b:a6:c8:1e:ad:76:1f:15:d2:d4:20:e3:88:77:
                    91:76:e9:3e:13:68:b9:e3:40:68:56:15:15:63:35:04:
                    8e:aa:e0:28:2d:94:b5:36:f8:e8:4a:2c:0c:2e:8d:c8:
                    64:7f:72:eb:89:f3:74:0c:44:fe:70:48:60:eb:12:4d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:13:aa:da:c4:42:ed:52:e3:22:d2:c7:ff:fb:cf:c0:
        13:96:82:85:67:bc:0b:b0:a6:3e:52:5d:48:ed:60:3d:
        06:95:c2:a6:08:49:f7:03:8a:52:94:23:55:ee:51:37:
        ed:ec:fa:6a:be:3e:79:8f:cd:ed:0f:7a:b0:27:b8:88:
        d2:53:72:12:5f:f3:c1:e0:fe:c4:0a:28:30:e8:45:ce:
        0b:0f:11:37:d4:79:ce:53:10:74:7f:a5:20:49:ee:1d:
        eb:05:11:9a:7d:4e:98:f6:4f:55:26:ec:78:84:20:a1:
        f1:87:24:c5:c1:58:91:7c:51:d1:86:54:de:79:be:fc:
        77:8c:18:ba:1d:18:b8:36:c1:c9:60:5c:60:70:fa:f5:
        bd:e9:e6:2c:d4:12:f7:b5:68:49:5f:be:68:61:df:56:
        8e:2c:2d:84:53:ef:c4:9d:c6:c8:58:e7:2c:9d:1f:3b:
        a5:29:41:ee:80:b4:40:6d:b6:9d:61:5d:ca:71:c6:2a:
        62:9c:2e:b6:63:a3:23:87:b7:02:64:aa:60:13:76:a5:
        d3:94:17:e0:fb:af:b0:05:c5:97:7b:ec:02:78:e5:41:
        6e:41:fb:70:ac:15:2a:c6:89:a4:a1:61:80:30:51:1a:
        8f:0a:84:3d:ac:05:ce:54:cd:c4:bf:58:1a:25:59:54
    Fingerprint (SHA-256):
        ED:6E:B3:EA:66:5F:27:15:B7:E5:2D:00:EB:FC:48:A9:70:61:3D:B9:09:2E:AF:83:72:35:B9:E0:0B:B2:27:EF
    Fingerprint (SHA1):
        BC:DA:70:D2:36:EB:6E:28:B1:AD:69:7B:3D:5C:EE:83:35:5B:AC:DD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #588: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Wed May 10 11:37:02 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Wed May 10 11:37:02 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #589: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a1:a6:ac:24:6e:80:39:b0:73:d4:62:50:bd:b7:e0:5b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #590: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #591: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #592: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #593: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6c:5b:7e:45:31:20:6b:45:5b:9a:71:c4:79:99:c2:12
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 11:36:28 2017
            Not After : Tue May 10 11:36:28 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:d7:8d:61:03:91:b3:93:9d:57:ae:33:9e:16:c0:
                    3f:fc:c5:9b:b3:89:08:00:9d:40:6c:53:6d:06:12:c6:
                    1d:76:7a:f1:f5:8c:1e:cf:6e:7c:63:18:2e:37:b4:28:
                    41:46:f1:ce:50:b8:8f:05:83:ff:6b:c2:4b:d3:a2:47:
                    3b:4c:62:01:df:19:8e:04:d3:97:1b:44:1d:b7:96:ee:
                    08:09:4f:96:95:36:10:50:41:4e:36:64:79:76:73:23:
                    ab:54:ac:ac:cd:ed:94:b7:0e:99:b7:15:5e:d7:4c:c0:
                    89:31:e1:8b:5c:1f:e2:05:6f:3b:c2:70:9b:2f:4d:83:
                    41:f7:06:c5:17
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:00:95:ce:19:20:ab:59:e7:cb:35:f6:
        e4:9a:6b:5a:f3:9c:e1:ea:a1:2b:09:bc:66:64:93:e9:
        0a:d1:2c:07:bf:8d:7f:5a:13:a6:22:ce:02:8b:29:ed:
        d7:ed:e4:0a:c5:19:3b:3c:0c:f5:92:69:d2:78:d5:6c:
        16:bb:51:88:73:41:85:02:42:01:f7:76:14:8f:62:23:
        10:f1:b0:20:a6:c1:9c:0b:79:76:72:b5:f7:9c:52:6c:
        28:13:e6:63:34:6b:00:6e:ea:3b:4f:32:33:b0:de:5c:
        6d:db:f9:66:b0:8c:04:34:93:96:ea:6b:77:00:82:15:
        2a:ec:54:e9:6b:d5:ed:e3:92:0d:a9
    Fingerprint (SHA-256):
        99:5F:E2:7B:14:3D:AB:4C:3A:9C:4A:C6:D5:9B:4E:8C:10:FB:65:E6:E2:A2:8A:E2:C1:56:E6:EC:69:6B:BA:9F
    Fingerprint (SHA1):
        00:B0:79:17:18:85:47:40:99:40:5B:B8:22:8B:9B:F0:A4:66:1B:6A
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:c8:b7:82:d6:ca:26:9e:97:0a:b8:5d:22:f4:9d:de:
                    31:aa:36:df:af:e7:7f:80:0a:f7:19:4c:39:0c:e3:11:
                    5c:b2:4f:aa:c1:a9:9a:2e:f2:6d:d0:4f:56:a4:60:4d:
                    72:11:35:6f:cc:76:d4:75:5a:b8:92:7b:3d:2a:bc:cc:
                    00:06:5e:2d:e0:46:3e:96:63:d7:c4:11:7f:86:1a:12:
                    d7:97:f1:07:86:90:5b:14:66:0b:d2:9c:82:2d:fa:6b:
                    b1
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:41:58:de:a6:0f:e4:e2:13:50:60:2a:e6:
        9d:63:4b:2a:f5:ea:65:dc:4d:a2:d6:23:b1:b2:95:cf:
        b5:62:74:f7:b0:84:dc:35:eb:4e:c3:5a:a2:1f:c9:fa:
        19:20:41:92:bc:a3:a2:05:11:0a:0f:97:d1:d3:8e:d1:
        e3:23:f8:13:66:6a:02:42:00:f2:55:41:4f:99:10:5b:
        21:c9:81:d9:e8:ea:db:8c:21:31:49:49:9e:e9:59:2d:
        fc:a6:45:5a:aa:9c:d3:f5:8a:58:e8:b9:06:83:ef:4a:
        81:a1:44:75:e6:76:d9:fc:4d:6a:6d:9b:4a:ab:bf:a3:
        0b:c2:bd:cb:54:f9:fc:46:04:e8
    Fingerprint (SHA-256):
        5B:A1:9C:F8:5E:17:08:D1:10:6E:D0:DF:75:40:09:AF:C5:57:A3:B7:50:A4:4B:CB:C3:8A:D0:43:40:42:CD:96
    Fingerprint (SHA1):
        93:50:BE:56:FA:51:2D:20:6E:18:4D:D9:53:B9:2F:56:18:8A:56:85
    Friendly Name: Alice-ec
tools.sh: #594: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #595: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                07:ac:1a:d1:c5:5e:90:c4:96:b7:59:49:5c:73:64:1b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #596: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #597: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #598: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                23:26:25:f1:27:73:07:14:e3:13:6a:06:c0:4e:3d:d2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #599: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #600: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #601: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                d2:c6:a0:f3:7b:a9:26:f4:62:5a:7b:27:45:1a:e3:85
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #602: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #603: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #604: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                a3:f7:c8:b9:4c:19:41:91:91:c0:93:8d:65:9c:05:0c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #605: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #606: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #607: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                da:63:04:0b:5e:2b:0a:06:bf:c1:42:ac:f7:df:b5:23
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #608: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #609: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #610: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                e8:ee:b6:66:d0:6f:41:e5:df:ad:9c:fd:e0:f5:a0:21
            Iteration Count: 2000 (0x7d0)
tools.sh: #611: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #612: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #613: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a6:9d:83:4d:55:39:36:f2:02:74:c2:28:c2:01:87:c8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #614: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #615: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #616: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                31:9f:8d:aa:e4:3e:13:a2:e6:93:15:78:18:5a:29:3a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #617: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #618: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #619: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                34:b4:cb:ae:ac:30:93:f0:41:dd:36:ae:e0:9b:a6:c8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #620: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #621: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #622: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                85:bb:20:9a:9f:96:4f:82:e4:bf:e7:6a:41:77:0c:63
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #623: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #624: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #625: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                71:cf:5f:c5:4a:0a:3d:6a:80:0b:6e:8b:85:ee:3a:21
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #626: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #627: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #628: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f0:02:90:2f:ef:87:d3:b6:01:ce:2d:a3:84:f5:df:17
            Iteration Count: 2000 (0x7d0)
tools.sh: #629: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #630: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #631: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5b:20:89:34:f6:c3:ee:6f:e2:85:a4:33:60:bf:af:b1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:18:aa:3f:be:41:05:e3:23:78:3b:e7:d8:3a:52:
                    03:94
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #632: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #633: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #634: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        34:29:f9:ff:57:98:9f:36:96:8c:33:c9:3d:25:c7:2b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:41:7a:47:2e:b7:aa:30:3d:39:57:0a:db:37:e9:
                    3b:c1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #635: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #636: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #637: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f1:c4:ca:82:f1:1d:73:28:cc:47:fa:e0:f7:5a:17:b8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:e1:7f:88:95:b3:93:33:51:77:bd:d4:9b:16:25:
                    88:38
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #638: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #639: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #640: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        41:c2:f0:06:8d:46:e0:4e:cd:3e:66:c3:f2:b8:c5:a5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:aa:b1:32:29:ee:11:8e:eb:2b:30:07:88:d6:9f:
                    56:87
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #641: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #642: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #643: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a7:94:61:a6:32:9a:02:bd:5c:67:0f:2b:5c:0c:70:02
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:40:86:41:aa:d1:e9:a2:c9:44:76:00:fb:f2:e9:
                    a3:74
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #644: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #645: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #646: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3d:f3:26:8d:44:97:a9:10:8e:a1:e9:09:58:6c:db:44
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:aa:6e:14:b6:5f:94:56:1c:d7:f8:3c:4c:ee:a5:
                    51:4b
tools.sh: #647: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #648: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #649: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        35:05:1c:05:8a:9c:aa:cf:79:ba:e7:a8:c9:26:66:5b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:1d:34:f6:76:01:c6:9a:c9:a3:10:23:51:5e:53:
                    af:43
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #650: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #651: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #652: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f9:68:0c:40:9e:84:8a:78:43:09:a3:ec:9d:9f:31:33
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:c3:a6:2b:cf:b6:7a:d8:b7:b2:73:d9:de:be:12:
                    33:67
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #653: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #654: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #655: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        38:dd:5a:90:db:d9:74:31:19:bf:f2:ac:43:9d:97:cd
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:b9:f2:bf:b2:e0:36:eb:cf:bb:d9:16:dd:8f:49:
                    d6:25
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #656: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #657: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #658: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        be:c0:19:55:43:3d:67:6e:41:3e:3e:bc:43:ab:e1:0c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:1a:48:61:51:34:7d:25:99:67:47:89:60:ea:97:
                    1d:21
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #659: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #660: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #661: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        62:1b:cb:77:e0:fd:c8:81:ac:db:74:5f:9b:5f:4c:12
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:c3:e2:b1:da:fc:a6:59:69:38:bc:cc:25:e0:85:
                    cd:8e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #662: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #663: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #664: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4b:cf:57:0d:f0:e4:71:99:dc:50:54:b6:fe:4e:78:e7
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:5a:ad:c0:82:4a:bf:36:9c:60:3b:d8:06:cb:6f:
                    02:f9
tools.sh: #665: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #666: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #667: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f5:54:68:24:4d:61:d2:63:6e:69:42:b1:4d:9f:cd:85
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:e2:2e:ff:40:71:3e:fa:d5:b6:f2:ed:4a:42:ff:
                    9d:b4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #668: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #669: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #670: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c2:83:70:6e:7b:e9:2c:c1:a7:64:66:04:f1:59:13:50
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:94:e8:d8:cc:27:f6:db:80:0d:f3:46:35:3a:4b:
                    85:1a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #671: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #672: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #673: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        aa:f9:71:55:fb:3f:55:81:8b:b6:c7:28:41:e2:6b:6e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:2d:a7:44:45:89:5b:4e:2a:5e:ac:f8:3d:fd:cc:
                    71:bc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #674: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #675: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #676: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        69:62:4f:b0:10:b5:a2:4b:2b:97:7a:6f:b1:cb:b8:13
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:c4:d1:7c:b3:88:31:9f:2a:03:b7:54:0a:05:17:
                    f3:d6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #677: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #678: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #679: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        0f:06:51:3a:e6:18:8d:e7:b3:8b:71:91:0a:1f:22:56
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:22:94:5c:17:02:41:d4:4e:c8:8d:f9:c0:22:4b:
                    82:e2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #680: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #681: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #682: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4e:cd:d0:76:2a:2a:77:f0:f1:17:14:a4:9c:e0:e4:1b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:05:48:c3:50:b4:88:d6:e8:32:3d:46:be:9f:e7:
                    5a:c8
tools.sh: #683: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #684: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #685: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        68:a9:05:4d:41:33:ef:c2:0c:a1:8f:6e:13:6f:08:de
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:6a:21:9e:36:41:7a:4f:fe:4b:85:ea:52:bd:86:
                    53:d0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #686: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #687: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #688: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3a:d8:04:e1:0d:28:3c:bc:94:7c:ce:a8:60:ea:53:0b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:87:26:40:01:ca:13:f8:5a:10:31:70:c9:72:0b:
                    36:b0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #689: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #690: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #691: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        18:e2:8a:8d:b4:69:7b:6b:7d:1d:4c:83:cd:2d:9b:85
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:0e:7a:5f:b9:7b:cd:1c:fd:c0:fa:10:5d:3a:fd:
                    ce:41
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #692: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #693: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #694: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ef:30:67:d4:c0:6d:cf:b9:12:f3:5a:43:34:ed:09:52
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:93:61:09:57:83:ea:51:af:93:82:4c:01:0b:08:
                    1e:e2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #695: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #696: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #697: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        01:14:f2:bf:4f:80:05:62:60:2b:be:cb:7e:95:4e:57
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:7e:e5:57:b0:04:d2:dc:f3:4a:2b:d1:67:05:c4:
                    78:cd
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #698: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #699: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #700: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f1:d2:7e:62:e6:2b:78:70:7d:85:90:a3:bf:c6:5e:5e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:69:76:55:e6:d4:1a:43:3e:a3:29:9f:81:ab:cd:
                    09:82
tools.sh: #701: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #702: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #703: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        72:7b:02:db:9a:af:64:d8:18:ec:39:c1:ff:a4:cd:f0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:32:b8:82:d1:b4:da:ab:77:3d:ca:dc:63:6d:3b:
                    d1:90
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #704: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #705: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #706: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        68:a3:72:16:98:0a:43:f5:b0:4e:fb:d2:ef:47:fd:c6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:9c:75:5c:74:8f:b1:20:6c:7e:24:96:ff:4d:42:
                    fb:e7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #707: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #708: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #709: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6c:3c:95:31:58:45:7b:fb:33:9d:4f:42:46:09:09:44
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:f2:e3:f5:80:25:30:3c:eb:05:b6:a2:8b:bd:9b:
                    f5:b6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #710: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #711: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #712: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e4:f8:e1:a7:9b:e0:f5:8d:84:cb:2d:b5:15:85:0e:f9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:ad:83:d6:86:2f:78:b2:f3:eb:a8:dd:ad:13:0c:
                    41:c7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #713: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #714: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #715: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        de:21:4c:c4:98:57:bd:6d:f4:05:9c:04:9c:37:56:7b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:90:52:23:d3:40:40:d1:8a:41:6e:d5:e1:9e:46:
                    0a:fd
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #716: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #717: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #718: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        08:b1:7c:47:66:3b:33:1f:49:3f:e4:0d:f1:a4:04:ef
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:9b:bf:49:42:fd:ec:9f:04:e6:7d:63:65:66:8b:
                    e1:ea
tools.sh: #719: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #720: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #721: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d9:44:91:5c:df:d3:94:9d:de:d4:16:47:1c:51:db:64
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:f8:1d:42:00:9b:e0:bc:1e:16:a7:4f:34:72:4c:
                    9e:1b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #722: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #723: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #724: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f4:8a:e6:e5:4b:fc:5d:9d:86:9e:f4:e8:a0:d1:5d:f6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:69:02:31:9c:d9:05:2c:40:6f:84:62:7e:ba:46:
                    5d:46
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #725: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #726: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #727: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        90:82:59:53:15:28:89:83:c2:e2:e5:dc:d2:c3:1a:6a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:42:64:4a:66:90:64:48:92:a9:e2:cd:c0:30:68:
                    8a:5c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #728: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #729: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #730: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        cd:68:c9:56:25:e5:7b:ce:f0:e3:73:17:ff:74:31:57
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:c7:40:78:89:9d:2c:a0:78:52:ca:4e:48:86:85:
                    3c:b7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #731: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #732: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #733: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        0f:63:47:4e:d4:38:d1:35:b3:9e:42:47:7e:54:04:90
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:79:76:4b:bb:e6:f5:16:37:c7:2c:27:9d:3a:3a:
                    2e:06
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #734: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #735: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #736: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        dc:37:0d:b6:4f:f2:82:5e:db:75:8c:db:8f:33:f1:d0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:87:6f:71:e9:72:b1:14:d2:88:a4:fd:3c:95:94:
                    09:75
tools.sh: #737: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #738: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #739: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                ad:b2:d8:03:f7:de:03:43:de:e6:74:ca:2f:a6:06:51
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #740: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #741: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #742: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                43:2c:09:be:46:19:0b:ed:69:bf:01:bd:e8:b8:dd:6b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #743: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #744: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #745: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                a4:bf:cf:3b:b8:05:7d:80:04:3d:ba:cd:e0:52:0d:cb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #746: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #747: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #748: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                7e:c2:01:6c:34:82:8e:99:33:4f:de:1b:79:bc:94:31
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #749: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #750: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #751: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                74:e5:87:1f:f4:1c:44:05:01:9d:18:94:e4:70:e8:c5
            Iteration Count: 2000 (0x7d0)
tools.sh: #752: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #753: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #754: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                41:f6:32:50:29:96:46:5b:60:00:26:57:e7:5d:a2:2d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #755: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #756: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #757: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                77:be:bc:00:94:94:6f:b4:e2:7d:f2:99:c9:a0:75:3d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #758: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #759: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #760: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                25:77:2d:2b:5f:91:1c:ef:89:56:2d:10:33:2f:bc:a1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #761: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #762: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #763: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                7d:1c:98:eb:3a:42:07:cf:25:23:a2:30:0e:43:fa:6f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #764: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #765: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #766: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                5c:7a:12:2b:cb:85:fc:71:1a:04:68:a7:33:32:6d:54
            Iteration Count: 2000 (0x7d0)
tools.sh: #767: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #768: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #769: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                7e:c0:c8:22:46:bf:10:cb:65:ff:f4:c7:63:4f:75:f7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #770: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #771: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #772: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                ca:33:ed:13:9b:3f:9f:76:7f:68:e8:f4:11:2c:09:91
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #773: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #774: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #775: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                d6:1f:89:5a:83:3c:4e:c1:c6:18:55:99:93:2c:eb:35
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #776: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #777: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #778: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                3f:64:b8:fc:66:88:09:7e:da:fc:6f:a3:3d:b7:01:c1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #779: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #780: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #781: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                19:ea:8d:e9:35:b2:2d:a3:04:f5:a5:99:89:30:cb:9c
            Iteration Count: 2000 (0x7d0)
tools.sh: #782: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #783: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #784: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6f:1d:5b:f8:f8:3c:b2:6f:f5:12:a7:50:f2:3e:c7:21
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #785: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #786: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #787: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b0:27:04:9b:25:48:a3:2a:b2:2f:f7:d6:ac:67:61:be
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #788: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #789: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #790: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                05:39:10:cf:b7:3e:01:81:3a:6b:22:6a:77:f7:d6:16
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #791: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #792: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #793: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                24:01:03:6e:f3:86:54:5d:4d:f8:0c:ca:d6:af:0d:1a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #794: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #795: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #796: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                76:58:c1:de:82:22:3b:79:14:81:7d:d6:77:b4:06:c1
            Iteration Count: 2000 (0x7d0)
tools.sh: #797: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #798: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #799: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                25:8c:a6:c6:b7:d6:e3:ab:c2:bc:69:3d:3d:6a:bf:8a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #800: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #801: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #802: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ad:d9:41:af:83:8c:fd:44:72:ea:58:d5:fd:55:3f:40
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #803: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #804: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #805: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                da:bb:4c:b8:94:e4:14:e3:f0:88:db:c0:b7:5e:0a:6b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #806: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #807: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #808: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e1:4f:31:90:c2:c0:ea:af:f3:07:61:80:6e:e7:5f:61
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #809: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #810: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #811: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ea:b9:ae:47:03:cd:e3:96:ab:aa:c2:53:71:97:cc:53
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #812: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #813: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #814: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1a:d4:26:d9:d8:4a:5e:3b:c0:bb:f4:fc:0f:d7:db:46
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #815: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #816: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #817: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                51:85:b1:44:dc:e4:78:eb:09:0e:dd:76:0d:0d:6f:e2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #818: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #819: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #820: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1c:c8:2c:42:96:fe:75:50:a0:c6:79:80:f2:bb:97:19
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #821: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #822: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #823: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d3:75:0c:b5:91:12:8b:3b:f1:e8:54:fd:d9:5d:c4:30
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #824: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #825: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #826: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                97:30:e9:b7:43:6b:18:36:8b:95:7d:b8:11:94:ed:b6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #827: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #828: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #829: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #830: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #831: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 37%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #832: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #833: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #834: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
--> sign.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 37%)
tree "../tools/html" signed successfully
tools.sh: #835: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #836: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #837: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Wed May 10 11:37:09 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Wed May 10 11:37:09 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #838: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #839: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      5a1cccc0133c9ae553ad98fd1477c2a715fc46f7   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #840: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #841: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #842: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #843: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #844: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #845: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #846: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #847: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #848: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #849: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #850: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      5a1cccc0133c9ae553ad98fd1477c2a715fc46f7   FIPS_PUB_140_Test_Certificate
fips.sh: #851: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #852: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #853: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #854: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #855: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      5a1cccc0133c9ae553ad98fd1477c2a715fc46f7   FIPS_PUB_140_Test_Certificate
fips.sh: #856: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #857: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #858: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
Changing byte 0x000633b0 (406448): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle dbtest -r -d ../fips
fips.sh: #859: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Wed May 10 11:37:19 UTC 2017
Running tests for sdr
TIMESTAMP sdr BEGIN: Wed May 10 11:37:19 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v1.24947 -t "Test1"
sdr.sh: #860: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v2.24947 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #861: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v3.24947 -t "1234567"
sdr.sh: #862: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v1.24947 -t "Test1"
sdr.sh: #863: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v2.24947 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #864: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v3.24947 -t "1234567"
sdr.sh: #865: Decrypt - Value 3  - PASSED
TIMESTAMP sdr END: Wed May 10 11:37:19 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Wed May 10 11:37:19 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #866: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #867: CMMF test . - PASSED
TIMESTAMP crmf END: Wed May 10 11:37:19 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Wed May 10 11:37:19 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #868: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #869: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #870: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #871: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #872: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #873: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #874: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #875: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #876: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #877: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #878: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #879: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #880: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #881: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #882: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #883: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #884: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #885: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #886: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #887: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #888: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #889: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #890: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #891: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #892: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #893: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #894: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #895: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #896: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #897: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #898: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #899: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #900: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #901: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #902: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #903: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #904: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #905: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #906: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #907: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #908: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #909: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #910: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #911: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #912: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #913: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #914: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #915: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #916: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #917: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #918: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #919: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #920: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #921: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #922: Decode Encrypted-Data . - PASSED
smime.sh: #923: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #924: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #925: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #926: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #927: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #928: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Wed May 10 11:37:21 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Wed May 10 11:37:21 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2872 >/dev/null 2>/dev/null
selfserv_9323 with PID 2872 found at Wed May 10 11:37:21 UTC 2017
selfserv_9323 with PID 2872 started at Wed May 10 11:37:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #929: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 2872 at Wed May 10 11:37:21 UTC 2017
kill -USR1 2872
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 2872 killed at Wed May 10 11:37:21 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2928 >/dev/null 2>/dev/null
selfserv_9323 with PID 2928 found at Wed May 10 11:37:21 UTC 2017
selfserv_9323 with PID 2928 started at Wed May 10 11:37:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #930: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 2928 at Wed May 10 11:37:21 UTC 2017
kill -USR1 2928
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 2928 killed at Wed May 10 11:37:21 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2984 >/dev/null 2>/dev/null
selfserv_9323 with PID 2984 found at Wed May 10 11:37:21 UTC 2017
selfserv_9323 with PID 2984 started at Wed May 10 11:37:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #931: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 2984 at Wed May 10 11:37:21 UTC 2017
kill -USR1 2984
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 2984 killed at Wed May 10 11:37:21 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3052 >/dev/null 2>/dev/null
selfserv_9323 with PID 3052 found at Wed May 10 11:37:21 UTC 2017
selfserv_9323 with PID 3052 started at Wed May 10 11:37:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #932: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 3052 at Wed May 10 11:37:21 UTC 2017
kill -USR1 3052
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3052 killed at Wed May 10 11:37:21 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3108 >/dev/null 2>/dev/null
selfserv_9323 with PID 3108 found at Wed May 10 11:37:21 UTC 2017
selfserv_9323 with PID 3108 started at Wed May 10 11:37:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #933: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 3108 at Wed May 10 11:37:22 UTC 2017
kill -USR1 3108
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3108 killed at Wed May 10 11:37:22 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:22 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3164 >/dev/null 2>/dev/null
selfserv_9323 with PID 3164 found at Wed May 10 11:37:22 UTC 2017
selfserv_9323 with PID 3164 started at Wed May 10 11:37:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #934: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 3164 at Wed May 10 11:37:22 UTC 2017
kill -USR1 3164
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3164 killed at Wed May 10 11:37:22 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:22 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3232 >/dev/null 2>/dev/null
selfserv_9323 with PID 3232 found at Wed May 10 11:37:22 UTC 2017
selfserv_9323 with PID 3232 started at Wed May 10 11:37:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #935: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 3232 at Wed May 10 11:37:22 UTC 2017
kill -USR1 3232
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3232 killed at Wed May 10 11:37:22 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:22 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3288 >/dev/null 2>/dev/null
selfserv_9323 with PID 3288 found at Wed May 10 11:37:22 UTC 2017
selfserv_9323 with PID 3288 started at Wed May 10 11:37:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #936: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 3288 at Wed May 10 11:37:22 UTC 2017
kill -USR1 3288
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3288 killed at Wed May 10 11:37:22 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:22 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3344 >/dev/null 2>/dev/null
selfserv_9323 with PID 3344 found at Wed May 10 11:37:22 UTC 2017
selfserv_9323 with PID 3344 started at Wed May 10 11:37:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #937: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 3344 at Wed May 10 11:37:22 UTC 2017
kill -USR1 3344
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3344 killed at Wed May 10 11:37:22 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:22 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3412 >/dev/null 2>/dev/null
selfserv_9323 with PID 3412 found at Wed May 10 11:37:22 UTC 2017
selfserv_9323 with PID 3412 started at Wed May 10 11:37:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #938: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 3412 at Wed May 10 11:37:22 UTC 2017
kill -USR1 3412
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3412 killed at Wed May 10 11:37:22 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:22 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3468 >/dev/null 2>/dev/null
selfserv_9323 with PID 3468 found at Wed May 10 11:37:22 UTC 2017
selfserv_9323 with PID 3468 started at Wed May 10 11:37:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #939: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 3468 at Wed May 10 11:37:23 UTC 2017
kill -USR1 3468
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3468 killed at Wed May 10 11:37:23 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:23 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3524 >/dev/null 2>/dev/null
selfserv_9323 with PID 3524 found at Wed May 10 11:37:23 UTC 2017
selfserv_9323 with PID 3524 started at Wed May 10 11:37:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #940: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 3524 at Wed May 10 11:37:23 UTC 2017
kill -USR1 3524
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3524 killed at Wed May 10 11:37:23 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:23 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3592 >/dev/null 2>/dev/null
selfserv_9323 with PID 3592 found at Wed May 10 11:37:23 UTC 2017
selfserv_9323 with PID 3592 started at Wed May 10 11:37:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #941: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 3592 at Wed May 10 11:37:23 UTC 2017
kill -USR1 3592
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3592 killed at Wed May 10 11:37:23 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:23 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3648 >/dev/null 2>/dev/null
selfserv_9323 with PID 3648 found at Wed May 10 11:37:23 UTC 2017
selfserv_9323 with PID 3648 started at Wed May 10 11:37:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #942: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 3648 at Wed May 10 11:37:23 UTC 2017
kill -USR1 3648
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3648 killed at Wed May 10 11:37:23 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:23 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3704 >/dev/null 2>/dev/null
selfserv_9323 with PID 3704 found at Wed May 10 11:37:23 UTC 2017
selfserv_9323 with PID 3704 started at Wed May 10 11:37:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #943: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 3704 at Wed May 10 11:37:23 UTC 2017
kill -USR1 3704
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3704 killed at Wed May 10 11:37:23 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:23 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3772 >/dev/null 2>/dev/null
selfserv_9323 with PID 3772 found at Wed May 10 11:37:23 UTC 2017
selfserv_9323 with PID 3772 started at Wed May 10 11:37:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #944: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 3772 at Wed May 10 11:37:23 UTC 2017
kill -USR1 3772
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3772 killed at Wed May 10 11:37:23 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:23 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3828 >/dev/null 2>/dev/null
selfserv_9323 with PID 3828 found at Wed May 10 11:37:23 UTC 2017
selfserv_9323 with PID 3828 started at Wed May 10 11:37:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #945: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 3828 at Wed May 10 11:37:23 UTC 2017
kill -USR1 3828
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3828 killed at Wed May 10 11:37:23 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:24 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3884 >/dev/null 2>/dev/null
selfserv_9323 with PID 3884 found at Wed May 10 11:37:24 UTC 2017
selfserv_9323 with PID 3884 started at Wed May 10 11:37:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #946: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 3884 at Wed May 10 11:37:24 UTC 2017
kill -USR1 3884
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3884 killed at Wed May 10 11:37:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:24 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3952 >/dev/null 2>/dev/null
selfserv_9323 with PID 3952 found at Wed May 10 11:37:24 UTC 2017
selfserv_9323 with PID 3952 started at Wed May 10 11:37:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #947: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 3952 at Wed May 10 11:37:24 UTC 2017
kill -USR1 3952
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3952 killed at Wed May 10 11:37:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:24 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4008 >/dev/null 2>/dev/null
selfserv_9323 with PID 4008 found at Wed May 10 11:37:24 UTC 2017
selfserv_9323 with PID 4008 started at Wed May 10 11:37:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #948: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 4008 at Wed May 10 11:37:24 UTC 2017
kill -USR1 4008
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4008 killed at Wed May 10 11:37:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:24 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4064 >/dev/null 2>/dev/null
selfserv_9323 with PID 4064 found at Wed May 10 11:37:24 UTC 2017
selfserv_9323 with PID 4064 started at Wed May 10 11:37:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #949: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 4064 at Wed May 10 11:37:24 UTC 2017
kill -USR1 4064
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4064 killed at Wed May 10 11:37:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:24 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4132 >/dev/null 2>/dev/null
selfserv_9323 with PID 4132 found at Wed May 10 11:37:24 UTC 2017
selfserv_9323 with PID 4132 started at Wed May 10 11:37:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #950: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 4132 at Wed May 10 11:37:24 UTC 2017
kill -USR1 4132
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4132 killed at Wed May 10 11:37:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:24 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4188 >/dev/null 2>/dev/null
selfserv_9323 with PID 4188 found at Wed May 10 11:37:24 UTC 2017
selfserv_9323 with PID 4188 started at Wed May 10 11:37:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #951: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 4188 at Wed May 10 11:37:24 UTC 2017
kill -USR1 4188
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4188 killed at Wed May 10 11:37:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:24 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4244 >/dev/null 2>/dev/null
selfserv_9323 with PID 4244 found at Wed May 10 11:37:24 UTC 2017
selfserv_9323 with PID 4244 started at Wed May 10 11:37:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #952: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 4244 at Wed May 10 11:37:24 UTC 2017
kill -USR1 4244
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4244 killed at Wed May 10 11:37:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:25 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4312 >/dev/null 2>/dev/null
selfserv_9323 with PID 4312 found at Wed May 10 11:37:25 UTC 2017
selfserv_9323 with PID 4312 started at Wed May 10 11:37:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #953: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 4312 at Wed May 10 11:37:25 UTC 2017
kill -USR1 4312
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4312 killed at Wed May 10 11:37:25 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:25 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4368 >/dev/null 2>/dev/null
selfserv_9323 with PID 4368 found at Wed May 10 11:37:25 UTC 2017
selfserv_9323 with PID 4368 started at Wed May 10 11:37:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #954: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 4368 at Wed May 10 11:37:25 UTC 2017
kill -USR1 4368
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4368 killed at Wed May 10 11:37:25 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:25 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4424 >/dev/null 2>/dev/null
selfserv_9323 with PID 4424 found at Wed May 10 11:37:25 UTC 2017
selfserv_9323 with PID 4424 started at Wed May 10 11:37:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #955: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 4424 at Wed May 10 11:37:25 UTC 2017
kill -USR1 4424
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4424 killed at Wed May 10 11:37:25 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:25 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4492 >/dev/null 2>/dev/null
selfserv_9323 with PID 4492 found at Wed May 10 11:37:25 UTC 2017
selfserv_9323 with PID 4492 started at Wed May 10 11:37:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #956: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 4492 at Wed May 10 11:37:25 UTC 2017
kill -USR1 4492
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4492 killed at Wed May 10 11:37:25 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:25 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4548 >/dev/null 2>/dev/null
selfserv_9323 with PID 4548 found at Wed May 10 11:37:25 UTC 2017
selfserv_9323 with PID 4548 started at Wed May 10 11:37:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #957: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 4548 at Wed May 10 11:37:25 UTC 2017
kill -USR1 4548
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4548 killed at Wed May 10 11:37:25 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:25 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4604 >/dev/null 2>/dev/null
selfserv_9323 with PID 4604 found at Wed May 10 11:37:25 UTC 2017
selfserv_9323 with PID 4604 started at Wed May 10 11:37:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #958: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 4604 at Wed May 10 11:37:26 UTC 2017
kill -USR1 4604
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4604 killed at Wed May 10 11:37:26 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4672 >/dev/null 2>/dev/null
selfserv_9323 with PID 4672 found at Wed May 10 11:37:26 UTC 2017
selfserv_9323 with PID 4672 started at Wed May 10 11:37:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #959: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 4672 at Wed May 10 11:37:26 UTC 2017
kill -USR1 4672
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4672 killed at Wed May 10 11:37:26 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4728 >/dev/null 2>/dev/null
selfserv_9323 with PID 4728 found at Wed May 10 11:37:26 UTC 2017
selfserv_9323 with PID 4728 started at Wed May 10 11:37:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #960: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 4728 at Wed May 10 11:37:26 UTC 2017
kill -USR1 4728
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4728 killed at Wed May 10 11:37:26 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4784 >/dev/null 2>/dev/null
selfserv_9323 with PID 4784 found at Wed May 10 11:37:26 UTC 2017
selfserv_9323 with PID 4784 started at Wed May 10 11:37:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #961: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 4784 at Wed May 10 11:37:26 UTC 2017
kill -USR1 4784
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4784 killed at Wed May 10 11:37:26 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4852 >/dev/null 2>/dev/null
selfserv_9323 with PID 4852 found at Wed May 10 11:37:26 UTC 2017
selfserv_9323 with PID 4852 started at Wed May 10 11:37:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #962: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 4852 at Wed May 10 11:37:26 UTC 2017
kill -USR1 4852
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4852 killed at Wed May 10 11:37:26 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4908 >/dev/null 2>/dev/null
selfserv_9323 with PID 4908 found at Wed May 10 11:37:26 UTC 2017
selfserv_9323 with PID 4908 started at Wed May 10 11:37:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #963: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 4908 at Wed May 10 11:37:26 UTC 2017
kill -USR1 4908
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4908 killed at Wed May 10 11:37:27 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4964 >/dev/null 2>/dev/null
selfserv_9323 with PID 4964 found at Wed May 10 11:37:27 UTC 2017
selfserv_9323 with PID 4964 started at Wed May 10 11:37:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #964: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 4964 at Wed May 10 11:37:27 UTC 2017
kill -USR1 4964
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4964 killed at Wed May 10 11:37:27 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5032 >/dev/null 2>/dev/null
selfserv_9323 with PID 5032 found at Wed May 10 11:37:27 UTC 2017
selfserv_9323 with PID 5032 started at Wed May 10 11:37:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #965: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5032 at Wed May 10 11:37:27 UTC 2017
kill -USR1 5032
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5032 killed at Wed May 10 11:37:27 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5088 >/dev/null 2>/dev/null
selfserv_9323 with PID 5088 found at Wed May 10 11:37:27 UTC 2017
selfserv_9323 with PID 5088 started at Wed May 10 11:37:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #966: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5088 at Wed May 10 11:37:27 UTC 2017
kill -USR1 5088
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5088 killed at Wed May 10 11:37:27 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5144 >/dev/null 2>/dev/null
selfserv_9323 with PID 5144 found at Wed May 10 11:37:27 UTC 2017
selfserv_9323 with PID 5144 started at Wed May 10 11:37:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #967: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5144 at Wed May 10 11:37:27 UTC 2017
kill -USR1 5144
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5144 killed at Wed May 10 11:37:27 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5212 >/dev/null 2>/dev/null
selfserv_9323 with PID 5212 found at Wed May 10 11:37:27 UTC 2017
selfserv_9323 with PID 5212 started at Wed May 10 11:37:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #968: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5212 at Wed May 10 11:37:27 UTC 2017
kill -USR1 5212
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5212 killed at Wed May 10 11:37:27 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:28 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5268 >/dev/null 2>/dev/null
selfserv_9323 with PID 5268 found at Wed May 10 11:37:28 UTC 2017
selfserv_9323 with PID 5268 started at Wed May 10 11:37:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #969: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5268 at Wed May 10 11:37:28 UTC 2017
kill -USR1 5268
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5268 killed at Wed May 10 11:37:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:28 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5324 >/dev/null 2>/dev/null
selfserv_9323 with PID 5324 found at Wed May 10 11:37:28 UTC 2017
selfserv_9323 with PID 5324 started at Wed May 10 11:37:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #970: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5324 at Wed May 10 11:37:28 UTC 2017
kill -USR1 5324
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5324 killed at Wed May 10 11:37:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:28 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5392 >/dev/null 2>/dev/null
selfserv_9323 with PID 5392 found at Wed May 10 11:37:28 UTC 2017
selfserv_9323 with PID 5392 started at Wed May 10 11:37:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #971: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5392 at Wed May 10 11:37:28 UTC 2017
kill -USR1 5392
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5392 killed at Wed May 10 11:37:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:28 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5448 >/dev/null 2>/dev/null
selfserv_9323 with PID 5448 found at Wed May 10 11:37:28 UTC 2017
selfserv_9323 with PID 5448 started at Wed May 10 11:37:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #972: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5448 at Wed May 10 11:37:28 UTC 2017
kill -USR1 5448
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5448 killed at Wed May 10 11:37:28 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:28 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5504 >/dev/null 2>/dev/null
selfserv_9323 with PID 5504 found at Wed May 10 11:37:28 UTC 2017
selfserv_9323 with PID 5504 started at Wed May 10 11:37:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #973: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5504 at Wed May 10 11:37:28 UTC 2017
kill -USR1 5504
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5504 killed at Wed May 10 11:37:28 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:29 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5572 >/dev/null 2>/dev/null
selfserv_9323 with PID 5572 found at Wed May 10 11:37:29 UTC 2017
selfserv_9323 with PID 5572 started at Wed May 10 11:37:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #974: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5572 at Wed May 10 11:37:29 UTC 2017
kill -USR1 5572
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5572 killed at Wed May 10 11:37:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:29 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5628 >/dev/null 2>/dev/null
selfserv_9323 with PID 5628 found at Wed May 10 11:37:29 UTC 2017
selfserv_9323 with PID 5628 started at Wed May 10 11:37:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #975: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5628 at Wed May 10 11:37:29 UTC 2017
kill -USR1 5628
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5628 killed at Wed May 10 11:37:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:29 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5684 >/dev/null 2>/dev/null
selfserv_9323 with PID 5684 found at Wed May 10 11:37:29 UTC 2017
selfserv_9323 with PID 5684 started at Wed May 10 11:37:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #976: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5684 at Wed May 10 11:37:29 UTC 2017
kill -USR1 5684
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5684 killed at Wed May 10 11:37:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:29 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5752 >/dev/null 2>/dev/null
selfserv_9323 with PID 5752 found at Wed May 10 11:37:29 UTC 2017
selfserv_9323 with PID 5752 started at Wed May 10 11:37:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #977: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5752 at Wed May 10 11:37:29 UTC 2017
kill -USR1 5752
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5752 killed at Wed May 10 11:37:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:29 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5808 >/dev/null 2>/dev/null
selfserv_9323 with PID 5808 found at Wed May 10 11:37:29 UTC 2017
selfserv_9323 with PID 5808 started at Wed May 10 11:37:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #978: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5808 at Wed May 10 11:37:29 UTC 2017
kill -USR1 5808
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5808 killed at Wed May 10 11:37:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:29 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5864 >/dev/null 2>/dev/null
selfserv_9323 with PID 5864 found at Wed May 10 11:37:29 UTC 2017
selfserv_9323 with PID 5864 started at Wed May 10 11:37:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #979: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5864 at Wed May 10 11:37:30 UTC 2017
kill -USR1 5864
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5864 killed at Wed May 10 11:37:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:30 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5932 >/dev/null 2>/dev/null
selfserv_9323 with PID 5932 found at Wed May 10 11:37:30 UTC 2017
selfserv_9323 with PID 5932 started at Wed May 10 11:37:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #980: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5932 at Wed May 10 11:37:30 UTC 2017
kill -USR1 5932
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5932 killed at Wed May 10 11:37:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:30 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5988 >/dev/null 2>/dev/null
selfserv_9323 with PID 5988 found at Wed May 10 11:37:30 UTC 2017
selfserv_9323 with PID 5988 started at Wed May 10 11:37:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #981: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5988 at Wed May 10 11:37:30 UTC 2017
kill -USR1 5988
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5988 killed at Wed May 10 11:37:30 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:30 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6044 >/dev/null 2>/dev/null
selfserv_9323 with PID 6044 found at Wed May 10 11:37:30 UTC 2017
selfserv_9323 with PID 6044 started at Wed May 10 11:37:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #982: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6044 at Wed May 10 11:37:31 UTC 2017
kill -USR1 6044
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6044 killed at Wed May 10 11:37:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6112 >/dev/null 2>/dev/null
selfserv_9323 with PID 6112 found at Wed May 10 11:37:31 UTC 2017
selfserv_9323 with PID 6112 started at Wed May 10 11:37:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #983: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6112 at Wed May 10 11:37:31 UTC 2017
kill -USR1 6112
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6112 killed at Wed May 10 11:37:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6168 >/dev/null 2>/dev/null
selfserv_9323 with PID 6168 found at Wed May 10 11:37:31 UTC 2017
selfserv_9323 with PID 6168 started at Wed May 10 11:37:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #984: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6168 at Wed May 10 11:37:31 UTC 2017
kill -USR1 6168
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6168 killed at Wed May 10 11:37:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6224 >/dev/null 2>/dev/null
selfserv_9323 with PID 6224 found at Wed May 10 11:37:31 UTC 2017
selfserv_9323 with PID 6224 started at Wed May 10 11:37:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #985: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6224 at Wed May 10 11:37:31 UTC 2017
kill -USR1 6224
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6224 killed at Wed May 10 11:37:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6292 >/dev/null 2>/dev/null
selfserv_9323 with PID 6292 found at Wed May 10 11:37:31 UTC 2017
selfserv_9323 with PID 6292 started at Wed May 10 11:37:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #986: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6292 at Wed May 10 11:37:31 UTC 2017
kill -USR1 6292
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6292 killed at Wed May 10 11:37:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6348 >/dev/null 2>/dev/null
selfserv_9323 with PID 6348 found at Wed May 10 11:37:31 UTC 2017
selfserv_9323 with PID 6348 started at Wed May 10 11:37:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #987: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6348 at Wed May 10 11:37:32 UTC 2017
kill -USR1 6348
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6348 killed at Wed May 10 11:37:32 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6404 >/dev/null 2>/dev/null
selfserv_9323 with PID 6404 found at Wed May 10 11:37:32 UTC 2017
selfserv_9323 with PID 6404 started at Wed May 10 11:37:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #988: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6404 at Wed May 10 11:37:32 UTC 2017
kill -USR1 6404
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6404 killed at Wed May 10 11:37:32 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6472 >/dev/null 2>/dev/null
selfserv_9323 with PID 6472 found at Wed May 10 11:37:32 UTC 2017
selfserv_9323 with PID 6472 started at Wed May 10 11:37:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #989: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6472 at Wed May 10 11:37:32 UTC 2017
kill -USR1 6472
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6472 killed at Wed May 10 11:37:32 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6528 >/dev/null 2>/dev/null
selfserv_9323 with PID 6528 found at Wed May 10 11:37:32 UTC 2017
selfserv_9323 with PID 6528 started at Wed May 10 11:37:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #990: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6528 at Wed May 10 11:37:32 UTC 2017
kill -USR1 6528
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6528 killed at Wed May 10 11:37:32 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6584 >/dev/null 2>/dev/null
selfserv_9323 with PID 6584 found at Wed May 10 11:37:32 UTC 2017
selfserv_9323 with PID 6584 started at Wed May 10 11:37:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #991: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6584 at Wed May 10 11:37:33 UTC 2017
kill -USR1 6584
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6584 killed at Wed May 10 11:37:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6652 >/dev/null 2>/dev/null
selfserv_9323 with PID 6652 found at Wed May 10 11:37:33 UTC 2017
selfserv_9323 with PID 6652 started at Wed May 10 11:37:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #992: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6652 at Wed May 10 11:37:33 UTC 2017
kill -USR1 6652
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6652 killed at Wed May 10 11:37:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6708 >/dev/null 2>/dev/null
selfserv_9323 with PID 6708 found at Wed May 10 11:37:33 UTC 2017
selfserv_9323 with PID 6708 started at Wed May 10 11:37:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #993: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6708 at Wed May 10 11:37:33 UTC 2017
kill -USR1 6708
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6708 killed at Wed May 10 11:37:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6764 >/dev/null 2>/dev/null
selfserv_9323 with PID 6764 found at Wed May 10 11:37:33 UTC 2017
selfserv_9323 with PID 6764 started at Wed May 10 11:37:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #994: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6764 at Wed May 10 11:37:33 UTC 2017
kill -USR1 6764
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6764 killed at Wed May 10 11:37:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6832 >/dev/null 2>/dev/null
selfserv_9323 with PID 6832 found at Wed May 10 11:37:33 UTC 2017
selfserv_9323 with PID 6832 started at Wed May 10 11:37:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #995: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6832 at Wed May 10 11:37:33 UTC 2017
kill -USR1 6832
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6832 killed at Wed May 10 11:37:33 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6888 >/dev/null 2>/dev/null
selfserv_9323 with PID 6888 found at Wed May 10 11:37:33 UTC 2017
selfserv_9323 with PID 6888 started at Wed May 10 11:37:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #996: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6888 at Wed May 10 11:37:34 UTC 2017
kill -USR1 6888
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6888 killed at Wed May 10 11:37:34 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6944 >/dev/null 2>/dev/null
selfserv_9323 with PID 6944 found at Wed May 10 11:37:34 UTC 2017
selfserv_9323 with PID 6944 started at Wed May 10 11:37:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #997: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6944 at Wed May 10 11:37:34 UTC 2017
kill -USR1 6944
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6944 killed at Wed May 10 11:37:34 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7012 >/dev/null 2>/dev/null
selfserv_9323 with PID 7012 found at Wed May 10 11:37:34 UTC 2017
selfserv_9323 with PID 7012 started at Wed May 10 11:37:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #998: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7012 at Wed May 10 11:37:34 UTC 2017
kill -USR1 7012
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7012 killed at Wed May 10 11:37:34 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7068 >/dev/null 2>/dev/null
selfserv_9323 with PID 7068 found at Wed May 10 11:37:34 UTC 2017
selfserv_9323 with PID 7068 started at Wed May 10 11:37:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #999: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7068 at Wed May 10 11:37:34 UTC 2017
kill -USR1 7068
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7068 killed at Wed May 10 11:37:34 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7124 >/dev/null 2>/dev/null
selfserv_9323 with PID 7124 found at Wed May 10 11:37:34 UTC 2017
selfserv_9323 with PID 7124 started at Wed May 10 11:37:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1000: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7124 at Wed May 10 11:37:34 UTC 2017
kill -USR1 7124
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7124 killed at Wed May 10 11:37:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7192 >/dev/null 2>/dev/null
selfserv_9323 with PID 7192 found at Wed May 10 11:37:35 UTC 2017
selfserv_9323 with PID 7192 started at Wed May 10 11:37:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1001: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7192 at Wed May 10 11:37:35 UTC 2017
kill -USR1 7192
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7192 killed at Wed May 10 11:37:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7248 >/dev/null 2>/dev/null
selfserv_9323 with PID 7248 found at Wed May 10 11:37:35 UTC 2017
selfserv_9323 with PID 7248 started at Wed May 10 11:37:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1002: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7248 at Wed May 10 11:37:35 UTC 2017
kill -USR1 7248
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7248 killed at Wed May 10 11:37:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7304 >/dev/null 2>/dev/null
selfserv_9323 with PID 7304 found at Wed May 10 11:37:35 UTC 2017
selfserv_9323 with PID 7304 started at Wed May 10 11:37:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1003: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7304 at Wed May 10 11:37:35 UTC 2017
kill -USR1 7304
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7304 killed at Wed May 10 11:37:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7372 >/dev/null 2>/dev/null
selfserv_9323 with PID 7372 found at Wed May 10 11:37:35 UTC 2017
selfserv_9323 with PID 7372 started at Wed May 10 11:37:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1004: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7372 at Wed May 10 11:37:35 UTC 2017
kill -USR1 7372
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7372 killed at Wed May 10 11:37:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7428 >/dev/null 2>/dev/null
selfserv_9323 with PID 7428 found at Wed May 10 11:37:35 UTC 2017
selfserv_9323 with PID 7428 started at Wed May 10 11:37:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1005: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7428 at Wed May 10 11:37:35 UTC 2017
kill -USR1 7428
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7428 killed at Wed May 10 11:37:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7484 >/dev/null 2>/dev/null
selfserv_9323 with PID 7484 found at Wed May 10 11:37:35 UTC 2017
selfserv_9323 with PID 7484 started at Wed May 10 11:37:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1006: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7484 at Wed May 10 11:37:36 UTC 2017
kill -USR1 7484
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7484 killed at Wed May 10 11:37:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7552 >/dev/null 2>/dev/null
selfserv_9323 with PID 7552 found at Wed May 10 11:37:36 UTC 2017
selfserv_9323 with PID 7552 started at Wed May 10 11:37:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1007: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7552 at Wed May 10 11:37:36 UTC 2017
kill -USR1 7552
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7552 killed at Wed May 10 11:37:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7608 >/dev/null 2>/dev/null
selfserv_9323 with PID 7608 found at Wed May 10 11:37:36 UTC 2017
selfserv_9323 with PID 7608 started at Wed May 10 11:37:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1008: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7608 at Wed May 10 11:37:36 UTC 2017
kill -USR1 7608
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7608 killed at Wed May 10 11:37:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7664 >/dev/null 2>/dev/null
selfserv_9323 with PID 7664 found at Wed May 10 11:37:36 UTC 2017
selfserv_9323 with PID 7664 started at Wed May 10 11:37:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1009: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7664 at Wed May 10 11:37:36 UTC 2017
kill -USR1 7664
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7664 killed at Wed May 10 11:37:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7732 >/dev/null 2>/dev/null
selfserv_9323 with PID 7732 found at Wed May 10 11:37:36 UTC 2017
selfserv_9323 with PID 7732 started at Wed May 10 11:37:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1010: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7732 at Wed May 10 11:37:36 UTC 2017
kill -USR1 7732
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7732 killed at Wed May 10 11:37:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7788 >/dev/null 2>/dev/null
selfserv_9323 with PID 7788 found at Wed May 10 11:37:36 UTC 2017
selfserv_9323 with PID 7788 started at Wed May 10 11:37:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1011: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7788 at Wed May 10 11:37:36 UTC 2017
kill -USR1 7788
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7788 killed at Wed May 10 11:37:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:37:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7844 >/dev/null 2>/dev/null
selfserv_9323 with PID 7844 found at Wed May 10 11:37:36 UTC 2017
selfserv_9323 with PID 7844 started at Wed May 10 11:37:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1012: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7844 at Wed May 10 11:37:37 UTC 2017
kill -USR1 7844
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7844 killed at Wed May 10 11:37:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7912 >/dev/null 2>/dev/null
selfserv_9323 with PID 7912 found at Wed May 10 11:37:37 UTC 2017
selfserv_9323 with PID 7912 started at Wed May 10 11:37:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1013: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7912 at Wed May 10 11:37:37 UTC 2017
kill -USR1 7912
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7912 killed at Wed May 10 11:37:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7975 >/dev/null 2>/dev/null
selfserv_9323 with PID 7975 found at Wed May 10 11:37:37 UTC 2017
selfserv_9323 with PID 7975 started at Wed May 10 11:37:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1014: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7975 at Wed May 10 11:37:37 UTC 2017
kill -USR1 7975
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7975 killed at Wed May 10 11:37:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8031 >/dev/null 2>/dev/null
selfserv_9323 with PID 8031 found at Wed May 10 11:37:37 UTC 2017
selfserv_9323 with PID 8031 started at Wed May 10 11:37:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1015: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 8031 at Wed May 10 11:37:37 UTC 2017
kill -USR1 8031
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8031 killed at Wed May 10 11:37:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8099 >/dev/null 2>/dev/null
selfserv_9323 with PID 8099 found at Wed May 10 11:37:37 UTC 2017
selfserv_9323 with PID 8099 started at Wed May 10 11:37:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1016: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 8099 at Wed May 10 11:37:37 UTC 2017
kill -USR1 8099
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8099 killed at Wed May 10 11:37:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8159 >/dev/null 2>/dev/null
selfserv_9323 with PID 8159 found at Wed May 10 11:37:37 UTC 2017
selfserv_9323 with PID 8159 started at Wed May 10 11:37:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1017: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 8159 at Wed May 10 11:37:37 UTC 2017
kill -USR1 8159
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8159 killed at Wed May 10 11:37:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8216 >/dev/null 2>/dev/null
selfserv_9323 with PID 8216 found at Wed May 10 11:37:37 UTC 2017
selfserv_9323 with PID 8216 started at Wed May 10 11:37:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1018: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 8216 at Wed May 10 11:37:38 UTC 2017
kill -USR1 8216
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8216 killed at Wed May 10 11:37:38 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8293 >/dev/null 2>/dev/null
selfserv_9323 with PID 8293 found at Wed May 10 11:37:38 UTC 2017
selfserv_9323 with PID 8293 started at Wed May 10 11:37:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1019: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 8293 at Wed May 10 11:37:38 UTC 2017
kill -USR1 8293
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8293 killed at Wed May 10 11:37:38 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8350 >/dev/null 2>/dev/null
selfserv_9323 with PID 8350 found at Wed May 10 11:37:38 UTC 2017
selfserv_9323 with PID 8350 started at Wed May 10 11:37:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1020: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 8350 at Wed May 10 11:37:38 UTC 2017
kill -USR1 8350
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8350 killed at Wed May 10 11:37:38 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8412 >/dev/null 2>/dev/null
selfserv_9323 with PID 8412 found at Wed May 10 11:37:38 UTC 2017
selfserv_9323 with PID 8412 started at Wed May 10 11:37:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1021: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 8412 at Wed May 10 11:37:38 UTC 2017
kill -USR1 8412
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8412 killed at Wed May 10 11:37:38 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8482 >/dev/null 2>/dev/null
selfserv_9323 with PID 8482 found at Wed May 10 11:37:38 UTC 2017
selfserv_9323 with PID 8482 started at Wed May 10 11:37:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1022: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 8482 at Wed May 10 11:37:38 UTC 2017
kill -USR1 8482
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8482 killed at Wed May 10 11:37:38 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8538 >/dev/null 2>/dev/null
selfserv_9323 with PID 8538 found at Wed May 10 11:37:38 UTC 2017
selfserv_9323 with PID 8538 started at Wed May 10 11:37:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1023: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 8538 at Wed May 10 11:37:38 UTC 2017
kill -USR1 8538
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8538 killed at Wed May 10 11:37:38 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8594 >/dev/null 2>/dev/null
selfserv_9323 with PID 8594 found at Wed May 10 11:37:39 UTC 2017
selfserv_9323 with PID 8594 started at Wed May 10 11:37:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1024: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 8594 at Wed May 10 11:37:39 UTC 2017
kill -USR1 8594
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8594 killed at Wed May 10 11:37:39 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8662 >/dev/null 2>/dev/null
selfserv_9323 with PID 8662 found at Wed May 10 11:37:39 UTC 2017
selfserv_9323 with PID 8662 started at Wed May 10 11:37:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1025: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 8662 at Wed May 10 11:37:39 UTC 2017
kill -USR1 8662
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8662 killed at Wed May 10 11:37:39 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8721 >/dev/null 2>/dev/null
selfserv_9323 with PID 8721 found at Wed May 10 11:37:39 UTC 2017
selfserv_9323 with PID 8721 started at Wed May 10 11:37:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1026: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 8721 at Wed May 10 11:37:39 UTC 2017
kill -USR1 8721
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8721 killed at Wed May 10 11:37:39 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8777 >/dev/null 2>/dev/null
selfserv_9323 with PID 8777 found at Wed May 10 11:37:39 UTC 2017
selfserv_9323 with PID 8777 started at Wed May 10 11:37:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1027: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 8777 at Wed May 10 11:37:39 UTC 2017
kill -USR1 8777
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8777 killed at Wed May 10 11:37:39 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8845 >/dev/null 2>/dev/null
selfserv_9323 with PID 8845 found at Wed May 10 11:37:39 UTC 2017
selfserv_9323 with PID 8845 started at Wed May 10 11:37:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1028: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 8845 at Wed May 10 11:37:39 UTC 2017
kill -USR1 8845
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8845 killed at Wed May 10 11:37:39 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8901 >/dev/null 2>/dev/null
selfserv_9323 with PID 8901 found at Wed May 10 11:37:39 UTC 2017
selfserv_9323 with PID 8901 started at Wed May 10 11:37:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1029: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 8901 at Wed May 10 11:37:40 UTC 2017
kill -USR1 8901
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8901 killed at Wed May 10 11:37:40 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8957 >/dev/null 2>/dev/null
selfserv_9323 with PID 8957 found at Wed May 10 11:37:40 UTC 2017
selfserv_9323 with PID 8957 started at Wed May 10 11:37:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1030: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 8957 at Wed May 10 11:37:40 UTC 2017
kill -USR1 8957
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8957 killed at Wed May 10 11:37:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9025 >/dev/null 2>/dev/null
selfserv_9323 with PID 9025 found at Wed May 10 11:37:40 UTC 2017
selfserv_9323 with PID 9025 started at Wed May 10 11:37:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1031: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9025 at Wed May 10 11:37:40 UTC 2017
kill -USR1 9025
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9025 killed at Wed May 10 11:37:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9081 >/dev/null 2>/dev/null
selfserv_9323 with PID 9081 found at Wed May 10 11:37:40 UTC 2017
selfserv_9323 with PID 9081 started at Wed May 10 11:37:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1032: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9081 at Wed May 10 11:37:40 UTC 2017
kill -USR1 9081
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9081 killed at Wed May 10 11:37:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9137 >/dev/null 2>/dev/null
selfserv_9323 with PID 9137 found at Wed May 10 11:37:40 UTC 2017
selfserv_9323 with PID 9137 started at Wed May 10 11:37:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1033: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9137 at Wed May 10 11:37:40 UTC 2017
kill -USR1 9137
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9137 killed at Wed May 10 11:37:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9205 >/dev/null 2>/dev/null
selfserv_9323 with PID 9205 found at Wed May 10 11:37:40 UTC 2017
selfserv_9323 with PID 9205 started at Wed May 10 11:37:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1034: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 9205 at Wed May 10 11:37:40 UTC 2017
kill -USR1 9205
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9205 killed at Wed May 10 11:37:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9261 >/dev/null 2>/dev/null
selfserv_9323 with PID 9261 found at Wed May 10 11:37:40 UTC 2017
selfserv_9323 with PID 9261 started at Wed May 10 11:37:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1035: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9261 at Wed May 10 11:37:41 UTC 2017
kill -USR1 9261
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9261 killed at Wed May 10 11:37:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9317 >/dev/null 2>/dev/null
selfserv_9323 with PID 9317 found at Wed May 10 11:37:41 UTC 2017
selfserv_9323 with PID 9317 started at Wed May 10 11:37:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1036: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 9317 at Wed May 10 11:37:41 UTC 2017
kill -USR1 9317
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9317 killed at Wed May 10 11:37:41 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9385 >/dev/null 2>/dev/null
selfserv_9323 with PID 9385 found at Wed May 10 11:37:41 UTC 2017
selfserv_9323 with PID 9385 started at Wed May 10 11:37:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1037: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 9385 at Wed May 10 11:37:41 UTC 2017
kill -USR1 9385
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9385 killed at Wed May 10 11:37:41 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9441 >/dev/null 2>/dev/null
selfserv_9323 with PID 9441 found at Wed May 10 11:37:41 UTC 2017
selfserv_9323 with PID 9441 started at Wed May 10 11:37:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1038: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 9441 at Wed May 10 11:37:41 UTC 2017
kill -USR1 9441
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9441 killed at Wed May 10 11:37:41 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9497 >/dev/null 2>/dev/null
selfserv_9323 with PID 9497 found at Wed May 10 11:37:41 UTC 2017
selfserv_9323 with PID 9497 started at Wed May 10 11:37:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1039: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 9497 at Wed May 10 11:37:41 UTC 2017
kill -USR1 9497
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9497 killed at Wed May 10 11:37:41 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9565 >/dev/null 2>/dev/null
selfserv_9323 with PID 9565 found at Wed May 10 11:37:41 UTC 2017
selfserv_9323 with PID 9565 started at Wed May 10 11:37:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1040: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 9565 at Wed May 10 11:37:41 UTC 2017
kill -USR1 9565
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9565 killed at Wed May 10 11:37:41 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9621 >/dev/null 2>/dev/null
selfserv_9323 with PID 9621 found at Wed May 10 11:37:41 UTC 2017
selfserv_9323 with PID 9621 started at Wed May 10 11:37:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1041: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9621 at Wed May 10 11:37:42 UTC 2017
kill -USR1 9621
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9621 killed at Wed May 10 11:37:42 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9677 >/dev/null 2>/dev/null
selfserv_9323 with PID 9677 found at Wed May 10 11:37:42 UTC 2017
selfserv_9323 with PID 9677 started at Wed May 10 11:37:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1042: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 9677 at Wed May 10 11:37:42 UTC 2017
kill -USR1 9677
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9677 killed at Wed May 10 11:37:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9745 >/dev/null 2>/dev/null
selfserv_9323 with PID 9745 found at Wed May 10 11:37:42 UTC 2017
selfserv_9323 with PID 9745 started at Wed May 10 11:37:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1043: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9745 at Wed May 10 11:37:42 UTC 2017
kill -USR1 9745
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9745 killed at Wed May 10 11:37:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9801 >/dev/null 2>/dev/null
selfserv_9323 with PID 9801 found at Wed May 10 11:37:42 UTC 2017
selfserv_9323 with PID 9801 started at Wed May 10 11:37:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1044: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9801 at Wed May 10 11:37:42 UTC 2017
kill -USR1 9801
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9801 killed at Wed May 10 11:37:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9858 >/dev/null 2>/dev/null
selfserv_9323 with PID 9858 found at Wed May 10 11:37:42 UTC 2017
selfserv_9323 with PID 9858 started at Wed May 10 11:37:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1045: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9858 at Wed May 10 11:37:42 UTC 2017
kill -USR1 9858
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9858 killed at Wed May 10 11:37:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9926 >/dev/null 2>/dev/null
selfserv_9323 with PID 9926 found at Wed May 10 11:37:42 UTC 2017
selfserv_9323 with PID 9926 started at Wed May 10 11:37:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1046: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 9926 at Wed May 10 11:37:43 UTC 2017
kill -USR1 9926
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9926 killed at Wed May 10 11:37:43 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9982 >/dev/null 2>/dev/null
selfserv_9323 with PID 9982 found at Wed May 10 11:37:43 UTC 2017
selfserv_9323 with PID 9982 started at Wed May 10 11:37:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1047: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9982 at Wed May 10 11:37:43 UTC 2017
kill -USR1 9982
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9982 killed at Wed May 10 11:37:43 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10038 >/dev/null 2>/dev/null
selfserv_9323 with PID 10038 found at Wed May 10 11:37:43 UTC 2017
selfserv_9323 with PID 10038 started at Wed May 10 11:37:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1048: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 10038 at Wed May 10 11:37:43 UTC 2017
kill -USR1 10038
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10038 killed at Wed May 10 11:37:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10106 >/dev/null 2>/dev/null
selfserv_9323 with PID 10106 found at Wed May 10 11:37:43 UTC 2017
selfserv_9323 with PID 10106 started at Wed May 10 11:37:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1049: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 10106 at Wed May 10 11:37:43 UTC 2017
kill -USR1 10106
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10106 killed at Wed May 10 11:37:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10162 >/dev/null 2>/dev/null
selfserv_9323 with PID 10162 found at Wed May 10 11:37:43 UTC 2017
selfserv_9323 with PID 10162 started at Wed May 10 11:37:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1050: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 10162 at Wed May 10 11:37:43 UTC 2017
kill -USR1 10162
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10162 killed at Wed May 10 11:37:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10218 >/dev/null 2>/dev/null
selfserv_9323 with PID 10218 found at Wed May 10 11:37:43 UTC 2017
selfserv_9323 with PID 10218 started at Wed May 10 11:37:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1051: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 10218 at Wed May 10 11:37:44 UTC 2017
kill -USR1 10218
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10218 killed at Wed May 10 11:37:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10286 >/dev/null 2>/dev/null
selfserv_9323 with PID 10286 found at Wed May 10 11:37:44 UTC 2017
selfserv_9323 with PID 10286 started at Wed May 10 11:37:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1052: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 10286 at Wed May 10 11:37:44 UTC 2017
kill -USR1 10286
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10286 killed at Wed May 10 11:37:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10342 >/dev/null 2>/dev/null
selfserv_9323 with PID 10342 found at Wed May 10 11:37:44 UTC 2017
selfserv_9323 with PID 10342 started at Wed May 10 11:37:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1053: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 10342 at Wed May 10 11:37:44 UTC 2017
kill -USR1 10342
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10342 killed at Wed May 10 11:37:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10398 >/dev/null 2>/dev/null
selfserv_9323 with PID 10398 found at Wed May 10 11:37:44 UTC 2017
selfserv_9323 with PID 10398 started at Wed May 10 11:37:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1054: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 10398 at Wed May 10 11:37:44 UTC 2017
kill -USR1 10398
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10398 killed at Wed May 10 11:37:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10466 >/dev/null 2>/dev/null
selfserv_9323 with PID 10466 found at Wed May 10 11:37:44 UTC 2017
selfserv_9323 with PID 10466 started at Wed May 10 11:37:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1055: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 10466 at Wed May 10 11:37:44 UTC 2017
kill -USR1 10466
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10466 killed at Wed May 10 11:37:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10522 >/dev/null 2>/dev/null
selfserv_9323 with PID 10522 found at Wed May 10 11:37:45 UTC 2017
selfserv_9323 with PID 10522 started at Wed May 10 11:37:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1056: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 10522 at Wed May 10 11:37:45 UTC 2017
kill -USR1 10522
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10522 killed at Wed May 10 11:37:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10578 >/dev/null 2>/dev/null
selfserv_9323 with PID 10578 found at Wed May 10 11:37:45 UTC 2017
selfserv_9323 with PID 10578 started at Wed May 10 11:37:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1057: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 10578 at Wed May 10 11:37:45 UTC 2017
kill -USR1 10578
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10578 killed at Wed May 10 11:37:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10646 >/dev/null 2>/dev/null
selfserv_9323 with PID 10646 found at Wed May 10 11:37:45 UTC 2017
selfserv_9323 with PID 10646 started at Wed May 10 11:37:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1058: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 10646 at Wed May 10 11:37:45 UTC 2017
kill -USR1 10646
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10646 killed at Wed May 10 11:37:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10702 >/dev/null 2>/dev/null
selfserv_9323 with PID 10702 found at Wed May 10 11:37:45 UTC 2017
selfserv_9323 with PID 10702 started at Wed May 10 11:37:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1059: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 10702 at Wed May 10 11:37:45 UTC 2017
kill -USR1 10702
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10702 killed at Wed May 10 11:37:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10758 >/dev/null 2>/dev/null
selfserv_9323 with PID 10758 found at Wed May 10 11:37:45 UTC 2017
selfserv_9323 with PID 10758 started at Wed May 10 11:37:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1060: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 10758 at Wed May 10 11:37:46 UTC 2017
kill -USR1 10758
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10758 killed at Wed May 10 11:37:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10826 >/dev/null 2>/dev/null
selfserv_9323 with PID 10826 found at Wed May 10 11:37:46 UTC 2017
selfserv_9323 with PID 10826 started at Wed May 10 11:37:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1061: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 10826 at Wed May 10 11:37:46 UTC 2017
kill -USR1 10826
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10826 killed at Wed May 10 11:37:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10882 >/dev/null 2>/dev/null
selfserv_9323 with PID 10882 found at Wed May 10 11:37:46 UTC 2017
selfserv_9323 with PID 10882 started at Wed May 10 11:37:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1062: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 10882 at Wed May 10 11:37:46 UTC 2017
kill -USR1 10882
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10882 killed at Wed May 10 11:37:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 11:37:46 UTC 2017
selfserv_9323 with PID 10938 started at Wed May 10 11:37:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1063: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 10938 at Wed May 10 11:37:46 UTC 2017
kill -USR1 10938
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10938 killed at Wed May 10 11:37:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11006 >/dev/null 2>/dev/null
selfserv_9323 with PID 11006 found at Wed May 10 11:37:46 UTC 2017
selfserv_9323 with PID 11006 started at Wed May 10 11:37:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1064: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 11006 at Wed May 10 11:37:46 UTC 2017
kill -USR1 11006
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11006 killed at Wed May 10 11:37:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11062 >/dev/null 2>/dev/null
selfserv_9323 with PID 11062 found at Wed May 10 11:37:46 UTC 2017
selfserv_9323 with PID 11062 started at Wed May 10 11:37:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1065: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11062 at Wed May 10 11:37:47 UTC 2017
kill -USR1 11062
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11062 killed at Wed May 10 11:37:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11118 >/dev/null 2>/dev/null
selfserv_9323 with PID 11118 found at Wed May 10 11:37:47 UTC 2017
selfserv_9323 with PID 11118 started at Wed May 10 11:37:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1066: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 11118 at Wed May 10 11:37:47 UTC 2017
kill -USR1 11118
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11118 killed at Wed May 10 11:37:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11186 >/dev/null 2>/dev/null
selfserv_9323 with PID 11186 found at Wed May 10 11:37:47 UTC 2017
selfserv_9323 with PID 11186 started at Wed May 10 11:37:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1067: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11186 at Wed May 10 11:37:47 UTC 2017
kill -USR1 11186
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11186 killed at Wed May 10 11:37:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11242 >/dev/null 2>/dev/null
selfserv_9323 with PID 11242 found at Wed May 10 11:37:47 UTC 2017
selfserv_9323 with PID 11242 started at Wed May 10 11:37:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1068: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11242 at Wed May 10 11:37:47 UTC 2017
kill -USR1 11242
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11242 killed at Wed May 10 11:37:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11298 >/dev/null 2>/dev/null
selfserv_9323 with PID 11298 found at Wed May 10 11:37:47 UTC 2017
selfserv_9323 with PID 11298 started at Wed May 10 11:37:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1069: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11298 at Wed May 10 11:37:47 UTC 2017
kill -USR1 11298
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11298 killed at Wed May 10 11:37:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11366 >/dev/null 2>/dev/null
selfserv_9323 with PID 11366 found at Wed May 10 11:37:47 UTC 2017
selfserv_9323 with PID 11366 started at Wed May 10 11:37:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1070: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 11366 at Wed May 10 11:37:48 UTC 2017
kill -USR1 11366
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11366 killed at Wed May 10 11:37:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11422 >/dev/null 2>/dev/null
selfserv_9323 with PID 11422 found at Wed May 10 11:37:48 UTC 2017
selfserv_9323 with PID 11422 started at Wed May 10 11:37:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1071: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11422 at Wed May 10 11:37:48 UTC 2017
kill -USR1 11422
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11422 killed at Wed May 10 11:37:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11478 >/dev/null 2>/dev/null
selfserv_9323 with PID 11478 found at Wed May 10 11:37:48 UTC 2017
selfserv_9323 with PID 11478 started at Wed May 10 11:37:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1072: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 11478 at Wed May 10 11:37:48 UTC 2017
kill -USR1 11478
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11478 killed at Wed May 10 11:37:48 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11546 >/dev/null 2>/dev/null
selfserv_9323 with PID 11546 found at Wed May 10 11:37:48 UTC 2017
selfserv_9323 with PID 11546 started at Wed May 10 11:37:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1073: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 11546 at Wed May 10 11:37:48 UTC 2017
kill -USR1 11546
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11546 killed at Wed May 10 11:37:48 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11602 >/dev/null 2>/dev/null
selfserv_9323 with PID 11602 found at Wed May 10 11:37:48 UTC 2017
selfserv_9323 with PID 11602 started at Wed May 10 11:37:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1074: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 11602 at Wed May 10 11:37:48 UTC 2017
kill -USR1 11602
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11602 killed at Wed May 10 11:37:48 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:37:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11658 >/dev/null 2>/dev/null
selfserv_9323 with PID 11658 found at Wed May 10 11:37:48 UTC 2017
selfserv_9323 with PID 11658 started at Wed May 10 11:37:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1075: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 11658 at Wed May 10 11:37:48 UTC 2017
kill -USR1 11658
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11658 killed at Wed May 10 11:37:48 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11726 >/dev/null 2>/dev/null
selfserv_9323 with PID 11726 found at Wed May 10 11:37:48 UTC 2017
selfserv_9323 with PID 11726 started at Wed May 10 11:37:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1076: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 11726 at Wed May 10 11:37:49 UTC 2017
kill -USR1 11726
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11726 killed at Wed May 10 11:37:49 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11782 >/dev/null 2>/dev/null
selfserv_9323 with PID 11782 found at Wed May 10 11:37:49 UTC 2017
selfserv_9323 with PID 11782 started at Wed May 10 11:37:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1077: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11782 at Wed May 10 11:37:49 UTC 2017
kill -USR1 11782
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11782 killed at Wed May 10 11:37:49 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11838 >/dev/null 2>/dev/null
selfserv_9323 with PID 11838 found at Wed May 10 11:37:49 UTC 2017
selfserv_9323 with PID 11838 started at Wed May 10 11:37:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1078: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 11838 at Wed May 10 11:37:49 UTC 2017
kill -USR1 11838
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11838 killed at Wed May 10 11:37:49 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/authin.tl.tmp
0
selfserv_9323 starting at Wed May 10 11:37:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:49 UTC 2017
selfserv_9323 with PID 11901 started at Wed May 10 11:37:49 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:49 UTC 2017
ssl.sh: #1079: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:49 UTC 2017
ssl.sh: #1080: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:49 UTC 2017
ssl.sh: #1081: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:49 UTC 2017
ssl.sh: #1082: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:49 UTC 2017
ssl.sh: #1083: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:50 UTC 2017
ssl.sh: #1084: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:50 UTC 2017
ssl.sh: #1085: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:50 UTC 2017
ssl.sh: #1086: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:50 UTC 2017
ssl.sh: #1087: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:50 UTC 2017
ssl.sh: #1088: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:50 UTC 2017
ssl.sh: #1089: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:50 UTC 2017
ssl.sh: #1090: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:50 UTC 2017
ssl.sh: #1091: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1092: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:50 UTC 2017
ssl.sh: #1093: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:50 UTC 2017
ssl.sh: #1094: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:50 UTC 2017
ssl.sh: #1095: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:50 UTC 2017
ssl.sh: #1096: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:51 UTC 2017
ssl.sh: #1097: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:51 UTC 2017
ssl.sh: #1098: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:51 UTC 2017
ssl.sh: #1099: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:51 UTC 2017
ssl.sh: #1100: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:51 UTC 2017
ssl.sh: #1101: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:51 UTC 2017
ssl.sh: #1102: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:51 UTC 2017
ssl.sh: #1103: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:51 UTC 2017
ssl.sh: #1104: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:51 UTC 2017
ssl.sh: #1105: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:52 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1106: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:52 UTC 2017
ssl.sh: #1107: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:52 UTC 2017
ssl.sh: #1108: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:52 UTC 2017
ssl.sh: #1109: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:52 UTC 2017
ssl.sh: #1110: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:52 UTC 2017
ssl.sh: #1111: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:52 UTC 2017
ssl.sh: #1112: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:52 UTC 2017
ssl.sh: #1113: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:52 UTC 2017
ssl.sh: #1114: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:52 UTC 2017
ssl.sh: #1115: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:52 UTC 2017
ssl.sh: #1116: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:52 UTC 2017
ssl.sh: #1117: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:53 UTC 2017
ssl.sh: #1118: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11901 >/dev/null 2>/dev/null
selfserv_9323 with PID 11901 found at Wed May 10 11:37:53 UTC 2017
ssl.sh: #1119: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 11901 at Wed May 10 11:37:53 UTC 2017
kill -USR1 11901
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11901 killed at Wed May 10 11:37:53 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:53 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:53 UTC 2017
selfserv_9323 with PID 13326 started at Wed May 10 11:37:53 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:53 UTC 2017
ssl.sh: #1120: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:53 UTC 2017
ssl.sh: #1121: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:53 UTC 2017
ssl.sh: #1122: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:53 UTC 2017
ssl.sh: #1123: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:53 UTC 2017
ssl.sh: #1124: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:53 UTC 2017
ssl.sh: #1125: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:53 UTC 2017
ssl.sh: #1126: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:53 UTC 2017
ssl.sh: #1127: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:53 UTC 2017
ssl.sh: #1128: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:53 UTC 2017
ssl.sh: #1129: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
ssl.sh: #1130: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
ssl.sh: #1131: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
ssl.sh: #1132: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1133: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
ssl.sh: #1134: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
ssl.sh: #1135: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
ssl.sh: #1136: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
ssl.sh: #1137: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
ssl.sh: #1138: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
ssl.sh: #1139: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
ssl.sh: #1140: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
ssl.sh: #1141: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
ssl.sh: #1142: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
ssl.sh: #1143: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:54 UTC 2017
ssl.sh: #1144: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:55 UTC 2017
ssl.sh: #1145: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:55 UTC 2017
ssl.sh: #1146: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1147: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:55 UTC 2017
ssl.sh: #1148: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:55 UTC 2017
ssl.sh: #1149: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:55 UTC 2017
ssl.sh: #1150: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:55 UTC 2017
ssl.sh: #1151: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:55 UTC 2017
ssl.sh: #1152: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:55 UTC 2017
ssl.sh: #1153: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:55 UTC 2017
ssl.sh: #1154: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:55 UTC 2017
ssl.sh: #1155: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:55 UTC 2017
ssl.sh: #1156: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:55 UTC 2017
ssl.sh: #1157: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:55 UTC 2017
ssl.sh: #1158: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:56 UTC 2017
ssl.sh: #1159: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13326 >/dev/null 2>/dev/null
selfserv_9323 with PID 13326 found at Wed May 10 11:37:56 UTC 2017
ssl.sh: #1160: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 13326 at Wed May 10 11:37:56 UTC 2017
kill -USR1 13326
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13326 killed at Wed May 10 11:37:56 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:37:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:37:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:56 UTC 2017
selfserv_9323 with PID 14749 started at Wed May 10 11:37:56 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:56 UTC 2017
ssl.sh: #1161: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:56 UTC 2017
ssl.sh: #1162: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:56 UTC 2017
ssl.sh: #1163: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:56 UTC 2017
ssl.sh: #1164: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:56 UTC 2017
ssl.sh: #1165: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:56 UTC 2017
ssl.sh: #1166: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:56 UTC 2017
ssl.sh: #1167: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:57 UTC 2017
ssl.sh: #1168: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:57 UTC 2017
ssl.sh: #1169: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:57 UTC 2017
ssl.sh: #1170: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:57 UTC 2017
ssl.sh: #1171: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:57 UTC 2017
ssl.sh: #1172: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:57 UTC 2017
ssl.sh: #1173: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1174: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:57 UTC 2017
ssl.sh: #1175: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:57 UTC 2017
ssl.sh: #1176: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:57 UTC 2017
ssl.sh: #1177: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:58 UTC 2017
ssl.sh: #1178: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:58 UTC 2017
ssl.sh: #1179: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:58 UTC 2017
ssl.sh: #1180: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:58 UTC 2017
ssl.sh: #1181: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:58 UTC 2017
ssl.sh: #1182: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:58 UTC 2017
ssl.sh: #1183: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:58 UTC 2017
ssl.sh: #1184: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:58 UTC 2017
ssl.sh: #1185: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:58 UTC 2017
ssl.sh: #1186: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:58 UTC 2017
ssl.sh: #1187: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:58 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1188: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:59 UTC 2017
ssl.sh: #1189: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:59 UTC 2017
ssl.sh: #1190: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:59 UTC 2017
ssl.sh: #1191: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:59 UTC 2017
ssl.sh: #1192: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:59 UTC 2017
ssl.sh: #1193: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:59 UTC 2017
ssl.sh: #1194: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:59 UTC 2017
ssl.sh: #1195: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:59 UTC 2017
ssl.sh: #1196: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:59 UTC 2017
ssl.sh: #1197: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:59 UTC 2017
ssl.sh: #1198: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:59 UTC 2017
ssl.sh: #1199: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:37:59 UTC 2017
ssl.sh: #1200: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14749 >/dev/null 2>/dev/null
selfserv_9323 with PID 14749 found at Wed May 10 11:38:00 UTC 2017
ssl.sh: #1201: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 14749 at Wed May 10 11:38:00 UTC 2017
kill -USR1 14749
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14749 killed at Wed May 10 11:38:00 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:38:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:00 UTC 2017
selfserv_9323 with PID 16173 started at Wed May 10 11:38:00 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:00 UTC 2017
ssl.sh: #1202: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:00 UTC 2017
ssl.sh: #1203: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:00 UTC 2017
ssl.sh: #1204: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:00 UTC 2017
ssl.sh: #1205: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:00 UTC 2017
ssl.sh: #1206: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:00 UTC 2017
ssl.sh: #1207: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:00 UTC 2017
ssl.sh: #1208: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:00 UTC 2017
ssl.sh: #1209: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:00 UTC 2017
ssl.sh: #1210: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:00 UTC 2017
ssl.sh: #1211: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:00 UTC 2017
ssl.sh: #1212: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:01 UTC 2017
ssl.sh: #1213: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:01 UTC 2017
ssl.sh: #1214: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1215: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:01 UTC 2017
ssl.sh: #1216: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:01 UTC 2017
ssl.sh: #1217: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:01 UTC 2017
ssl.sh: #1218: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:01 UTC 2017
ssl.sh: #1219: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:01 UTC 2017
ssl.sh: #1220: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:01 UTC 2017
ssl.sh: #1221: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:01 UTC 2017
ssl.sh: #1222: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:01 UTC 2017
ssl.sh: #1223: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:01 UTC 2017
ssl.sh: #1224: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:02 UTC 2017
ssl.sh: #1225: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:02 UTC 2017
ssl.sh: #1226: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:02 UTC 2017
ssl.sh: #1227: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:02 UTC 2017
ssl.sh: #1228: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1229: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:02 UTC 2017
ssl.sh: #1230: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:02 UTC 2017
ssl.sh: #1231: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:02 UTC 2017
ssl.sh: #1232: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:02 UTC 2017
ssl.sh: #1233: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:02 UTC 2017
ssl.sh: #1234: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:03 UTC 2017
ssl.sh: #1235: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:03 UTC 2017
ssl.sh: #1236: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:03 UTC 2017
ssl.sh: #1237: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:03 UTC 2017
ssl.sh: #1238: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:03 UTC 2017
ssl.sh: #1239: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:03 UTC 2017
ssl.sh: #1240: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:03 UTC 2017
ssl.sh: #1241: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16173 >/dev/null 2>/dev/null
selfserv_9323 with PID 16173 found at Wed May 10 11:38:03 UTC 2017
ssl.sh: #1242: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 16173 at Wed May 10 11:38:03 UTC 2017
kill -USR1 16173
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16173 killed at Wed May 10 11:38:03 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:38:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17597 >/dev/null 2>/dev/null
selfserv_9323 with PID 17597 found at Wed May 10 11:38:03 UTC 2017
selfserv_9323 with PID 17597 started at Wed May 10 11:38:03 UTC 2017
trying to kill selfserv_9323 with PID 17597 at Wed May 10 11:38:03 UTC 2017
kill -USR1 17597
./ssl.sh: line 183: 17597 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9323 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17597 killed at Wed May 10 11:38:03 UTC 2017
selfserv_9323 starting at Wed May 10 11:38:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:03 UTC 2017
selfserv_9323 with PID 17639 started at Wed May 10 11:38:03 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:03 UTC 2017
ssl.sh: #1243: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:03 UTC 2017
ssl.sh: #1244: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:04 UTC 2017
ssl.sh: #1245: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:04 UTC 2017
ssl.sh: #1246: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:04 UTC 2017
ssl.sh: #1247: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:04 UTC 2017
ssl.sh: #1248: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:04 UTC 2017
ssl.sh: #1249: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:04 UTC 2017
ssl.sh: #1250: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:04 UTC 2017
ssl.sh: #1251: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:04 UTC 2017
ssl.sh: #1252: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:04 UTC 2017
ssl.sh: #1253: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:05 UTC 2017
ssl.sh: #1254: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:05 UTC 2017
ssl.sh: #1255: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1256: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:05 UTC 2017
ssl.sh: #1257: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:05 UTC 2017
ssl.sh: #1258: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:05 UTC 2017
ssl.sh: #1259: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:05 UTC 2017
ssl.sh: #1260: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:05 UTC 2017
ssl.sh: #1261: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:05 UTC 2017
ssl.sh: #1262: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:06 UTC 2017
ssl.sh: #1263: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:06 UTC 2017
ssl.sh: #1264: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:06 UTC 2017
ssl.sh: #1265: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:06 UTC 2017
ssl.sh: #1266: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:06 UTC 2017
ssl.sh: #1267: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:06 UTC 2017
ssl.sh: #1268: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:06 UTC 2017
ssl.sh: #1269: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1270: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:07 UTC 2017
ssl.sh: #1271: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:07 UTC 2017
ssl.sh: #1272: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:07 UTC 2017
ssl.sh: #1273: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:07 UTC 2017
ssl.sh: #1274: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:07 UTC 2017
ssl.sh: #1275: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:07 UTC 2017
ssl.sh: #1276: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:07 UTC 2017
ssl.sh: #1277: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:07 UTC 2017
ssl.sh: #1278: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:08 UTC 2017
ssl.sh: #1279: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:08 UTC 2017
ssl.sh: #1280: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:08 UTC 2017
ssl.sh: #1281: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:08 UTC 2017
ssl.sh: #1282: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17639 >/dev/null 2>/dev/null
selfserv_9323 with PID 17639 found at Wed May 10 11:38:08 UTC 2017
ssl.sh: #1283: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17639 at Wed May 10 11:38:08 UTC 2017
kill -USR1 17639
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17639 killed at Wed May 10 11:38:08 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:38:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:08 UTC 2017
selfserv_9323 with PID 19061 started at Wed May 10 11:38:08 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:08 UTC 2017
ssl.sh: #1284: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:08 UTC 2017
ssl.sh: #1285: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:08 UTC 2017
ssl.sh: #1286: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:09 UTC 2017
ssl.sh: #1287: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:09 UTC 2017
ssl.sh: #1288: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:09 UTC 2017
ssl.sh: #1289: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:09 UTC 2017
ssl.sh: #1290: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:09 UTC 2017
ssl.sh: #1291: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:09 UTC 2017
ssl.sh: #1292: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:09 UTC 2017
ssl.sh: #1293: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:09 UTC 2017
ssl.sh: #1294: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:10 UTC 2017
ssl.sh: #1295: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:10 UTC 2017
ssl.sh: #1296: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1297: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:10 UTC 2017
ssl.sh: #1298: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:10 UTC 2017
ssl.sh: #1299: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:10 UTC 2017
ssl.sh: #1300: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:10 UTC 2017
ssl.sh: #1301: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:10 UTC 2017
ssl.sh: #1302: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:10 UTC 2017
ssl.sh: #1303: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:10 UTC 2017
ssl.sh: #1304: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:11 UTC 2017
ssl.sh: #1305: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:11 UTC 2017
ssl.sh: #1306: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:11 UTC 2017
ssl.sh: #1307: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:11 UTC 2017
ssl.sh: #1308: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:11 UTC 2017
ssl.sh: #1309: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:11 UTC 2017
ssl.sh: #1310: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1311: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:11 UTC 2017
ssl.sh: #1312: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:11 UTC 2017
ssl.sh: #1313: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:12 UTC 2017
ssl.sh: #1314: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:12 UTC 2017
ssl.sh: #1315: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:12 UTC 2017
ssl.sh: #1316: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:12 UTC 2017
ssl.sh: #1317: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:12 UTC 2017
ssl.sh: #1318: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:12 UTC 2017
ssl.sh: #1319: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:12 UTC 2017
ssl.sh: #1320: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:12 UTC 2017
ssl.sh: #1321: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:12 UTC 2017
ssl.sh: #1322: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:13 UTC 2017
ssl.sh: #1323: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19061 >/dev/null 2>/dev/null
selfserv_9323 with PID 19061 found at Wed May 10 11:38:13 UTC 2017
ssl.sh: #1324: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 19061 at Wed May 10 11:38:13 UTC 2017
kill -USR1 19061
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19061 killed at Wed May 10 11:38:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:38:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:13 UTC 2017
selfserv_9323 with PID 20485 started at Wed May 10 11:38:13 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:13 UTC 2017
ssl.sh: #1325: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:13 UTC 2017
ssl.sh: #1326: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:13 UTC 2017
ssl.sh: #1327: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:13 UTC 2017
ssl.sh: #1328: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:13 UTC 2017
ssl.sh: #1329: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:13 UTC 2017
ssl.sh: #1330: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:13 UTC 2017
ssl.sh: #1331: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:14 UTC 2017
ssl.sh: #1332: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:14 UTC 2017
ssl.sh: #1333: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:14 UTC 2017
ssl.sh: #1334: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:14 UTC 2017
ssl.sh: #1335: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:14 UTC 2017
ssl.sh: #1336: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:14 UTC 2017
ssl.sh: #1337: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:14 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1338: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:14 UTC 2017
ssl.sh: #1339: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:14 UTC 2017
ssl.sh: #1340: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:14 UTC 2017
ssl.sh: #1341: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:14 UTC 2017
ssl.sh: #1342: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:14 UTC 2017
ssl.sh: #1343: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:15 UTC 2017
ssl.sh: #1344: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:15 UTC 2017
ssl.sh: #1345: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:15 UTC 2017
ssl.sh: #1346: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:15 UTC 2017
ssl.sh: #1347: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:15 UTC 2017
ssl.sh: #1348: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:15 UTC 2017
ssl.sh: #1349: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:15 UTC 2017
ssl.sh: #1350: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:15 UTC 2017
ssl.sh: #1351: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:15 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1352: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:15 UTC 2017
ssl.sh: #1353: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:15 UTC 2017
ssl.sh: #1354: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:16 UTC 2017
ssl.sh: #1355: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:16 UTC 2017
ssl.sh: #1356: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:16 UTC 2017
ssl.sh: #1357: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:16 UTC 2017
ssl.sh: #1358: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:16 UTC 2017
ssl.sh: #1359: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:16 UTC 2017
ssl.sh: #1360: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:16 UTC 2017
ssl.sh: #1361: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:16 UTC 2017
ssl.sh: #1362: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:16 UTC 2017
ssl.sh: #1363: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:16 UTC 2017
ssl.sh: #1364: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20485 >/dev/null 2>/dev/null
selfserv_9323 with PID 20485 found at Wed May 10 11:38:16 UTC 2017
ssl.sh: #1365: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 20485 at Wed May 10 11:38:16 UTC 2017
kill -USR1 20485
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20485 killed at Wed May 10 11:38:16 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:38:16 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:16 UTC 2017
selfserv_9323 with PID 21907 started at Wed May 10 11:38:16 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:17 UTC 2017
ssl.sh: #1366: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:17 UTC 2017
ssl.sh: #1367: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:17 UTC 2017
ssl.sh: #1368: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:17 UTC 2017
ssl.sh: #1369: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:17 UTC 2017
ssl.sh: #1370: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:17 UTC 2017
ssl.sh: #1371: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:17 UTC 2017
ssl.sh: #1372: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:18 UTC 2017
ssl.sh: #1373: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:18 UTC 2017
ssl.sh: #1374: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:18 UTC 2017
ssl.sh: #1375: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:18 UTC 2017
ssl.sh: #1376: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:18 UTC 2017
ssl.sh: #1377: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:18 UTC 2017
ssl.sh: #1378: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1379: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:18 UTC 2017
ssl.sh: #1380: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:19 UTC 2017
ssl.sh: #1381: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:19 UTC 2017
ssl.sh: #1382: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:19 UTC 2017
ssl.sh: #1383: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:19 UTC 2017
ssl.sh: #1384: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:19 UTC 2017
ssl.sh: #1385: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:19 UTC 2017
ssl.sh: #1386: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:19 UTC 2017
ssl.sh: #1387: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:19 UTC 2017
ssl.sh: #1388: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:19 UTC 2017
ssl.sh: #1389: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:20 UTC 2017
ssl.sh: #1390: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:20 UTC 2017
ssl.sh: #1391: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:20 UTC 2017
ssl.sh: #1392: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1393: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:20 UTC 2017
ssl.sh: #1394: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:20 UTC 2017
ssl.sh: #1395: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:20 UTC 2017
ssl.sh: #1396: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:20 UTC 2017
ssl.sh: #1397: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:20 UTC 2017
ssl.sh: #1398: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:21 UTC 2017
ssl.sh: #1399: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:21 UTC 2017
ssl.sh: #1400: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:21 UTC 2017
ssl.sh: #1401: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:21 UTC 2017
ssl.sh: #1402: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:21 UTC 2017
ssl.sh: #1403: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:21 UTC 2017
ssl.sh: #1404: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:21 UTC 2017
ssl.sh: #1405: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21907 >/dev/null 2>/dev/null
selfserv_9323 with PID 21907 found at Wed May 10 11:38:21 UTC 2017
ssl.sh: #1406: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 21907 at Wed May 10 11:38:21 UTC 2017
kill -USR1 21907
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21907 killed at Wed May 10 11:38:21 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:38:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:21 UTC 2017
selfserv_9323 with PID 23339 started at Wed May 10 11:38:21 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:22 UTC 2017
ssl.sh: #1407: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:22 UTC 2017
ssl.sh: #1408: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:22 UTC 2017
ssl.sh: #1409: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:22 UTC 2017
ssl.sh: #1410: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:22 UTC 2017
ssl.sh: #1411: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:22 UTC 2017
ssl.sh: #1412: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:22 UTC 2017
ssl.sh: #1413: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:22 UTC 2017
ssl.sh: #1414: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:23 UTC 2017
ssl.sh: #1415: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:23 UTC 2017
ssl.sh: #1416: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:23 UTC 2017
ssl.sh: #1417: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:23 UTC 2017
ssl.sh: #1418: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:23 UTC 2017
ssl.sh: #1419: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1420: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:23 UTC 2017
ssl.sh: #1421: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:24 UTC 2017
ssl.sh: #1422: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:24 UTC 2017
ssl.sh: #1423: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:24 UTC 2017
ssl.sh: #1424: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:24 UTC 2017
ssl.sh: #1425: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:24 UTC 2017
ssl.sh: #1426: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:24 UTC 2017
ssl.sh: #1427: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:24 UTC 2017
ssl.sh: #1428: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:24 UTC 2017
ssl.sh: #1429: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:25 UTC 2017
ssl.sh: #1430: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:25 UTC 2017
ssl.sh: #1431: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:25 UTC 2017
ssl.sh: #1432: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:25 UTC 2017
ssl.sh: #1433: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1434: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:25 UTC 2017
ssl.sh: #1435: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:25 UTC 2017
ssl.sh: #1436: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:25 UTC 2017
ssl.sh: #1437: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:26 UTC 2017
ssl.sh: #1438: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:26 UTC 2017
ssl.sh: #1439: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:26 UTC 2017
ssl.sh: #1440: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:26 UTC 2017
ssl.sh: #1441: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:26 UTC 2017
ssl.sh: #1442: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:26 UTC 2017
ssl.sh: #1443: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:26 UTC 2017
ssl.sh: #1444: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:26 UTC 2017
ssl.sh: #1445: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:27 UTC 2017
ssl.sh: #1446: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23339 >/dev/null 2>/dev/null
selfserv_9323 with PID 23339 found at Wed May 10 11:38:27 UTC 2017
ssl.sh: #1447: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 23339 at Wed May 10 11:38:27 UTC 2017
kill -USR1 23339
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23339 killed at Wed May 10 11:38:27 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:38:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:27 UTC 2017
selfserv_9323 with PID 24762 started at Wed May 10 11:38:27 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:27 UTC 2017
ssl.sh: #1448: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:27 UTC 2017
ssl.sh: #1449: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:27 UTC 2017
ssl.sh: #1450: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:27 UTC 2017
ssl.sh: #1451: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:27 UTC 2017
ssl.sh: #1452: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:27 UTC 2017
ssl.sh: #1453: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:27 UTC 2017
ssl.sh: #1454: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:27 UTC 2017
ssl.sh: #1455: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:28 UTC 2017
ssl.sh: #1456: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:28 UTC 2017
ssl.sh: #1457: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:28 UTC 2017
ssl.sh: #1458: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:28 UTC 2017
ssl.sh: #1459: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:28 UTC 2017
ssl.sh: #1460: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:28 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1461: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:29 UTC 2017
ssl.sh: #1462: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:29 UTC 2017
ssl.sh: #1463: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:29 UTC 2017
ssl.sh: #1464: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:29 UTC 2017
ssl.sh: #1465: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:29 UTC 2017
ssl.sh: #1466: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:29 UTC 2017
ssl.sh: #1467: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:29 UTC 2017
ssl.sh: #1468: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:29 UTC 2017
ssl.sh: #1469: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:29 UTC 2017
ssl.sh: #1470: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:29 UTC 2017
ssl.sh: #1471: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:29 UTC 2017
ssl.sh: #1472: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:29 UTC 2017
ssl.sh: #1473: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:30 UTC 2017
ssl.sh: #1474: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1475: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:30 UTC 2017
ssl.sh: #1476: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:30 UTC 2017
ssl.sh: #1477: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:30 UTC 2017
ssl.sh: #1478: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:30 UTC 2017
ssl.sh: #1479: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:30 UTC 2017
ssl.sh: #1480: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:30 UTC 2017
ssl.sh: #1481: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:30 UTC 2017
ssl.sh: #1482: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:30 UTC 2017
ssl.sh: #1483: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:30 UTC 2017
ssl.sh: #1484: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:30 UTC 2017
ssl.sh: #1485: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:31 UTC 2017
ssl.sh: #1486: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:31 UTC 2017
ssl.sh: #1487: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24762 >/dev/null 2>/dev/null
selfserv_9323 with PID 24762 found at Wed May 10 11:38:31 UTC 2017
ssl.sh: #1488: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 24762 at Wed May 10 11:38:31 UTC 2017
kill -USR1 24762
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24762 killed at Wed May 10 11:38:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:38:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26188 >/dev/null 2>/dev/null
selfserv_9323 with PID 26188 found at Wed May 10 11:38:31 UTC 2017
selfserv_9323 with PID 26188 started at Wed May 10 11:38:31 UTC 2017
trying to kill selfserv_9323 with PID 26188 at Wed May 10 11:38:31 UTC 2017
kill -USR1 26188
selfserv: 0 cache hits; 0 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26188 killed at Wed May 10 11:38:31 UTC 2017
selfserv_9323 starting at Wed May 10 11:38:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:31 UTC 2017
selfserv_9323 with PID 26230 started at Wed May 10 11:38:31 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:31 UTC 2017
ssl.sh: #1489: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:31 UTC 2017
ssl.sh: #1490: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:31 UTC 2017
ssl.sh: #1491: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:31 UTC 2017
ssl.sh: #1492: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:31 UTC 2017
ssl.sh: #1493: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:32 UTC 2017
ssl.sh: #1494: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:32 UTC 2017
ssl.sh: #1495: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:32 UTC 2017
ssl.sh: #1496: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:32 UTC 2017
ssl.sh: #1497: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:32 UTC 2017
ssl.sh: #1498: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:32 UTC 2017
ssl.sh: #1499: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:32 UTC 2017
ssl.sh: #1500: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:32 UTC 2017
ssl.sh: #1501: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1502: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:32 UTC 2017
ssl.sh: #1503: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:33 UTC 2017
ssl.sh: #1504: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:33 UTC 2017
ssl.sh: #1505: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:33 UTC 2017
ssl.sh: #1506: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:33 UTC 2017
ssl.sh: #1507: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:33 UTC 2017
ssl.sh: #1508: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:33 UTC 2017
ssl.sh: #1509: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:33 UTC 2017
ssl.sh: #1510: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:33 UTC 2017
ssl.sh: #1511: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:33 UTC 2017
ssl.sh: #1512: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:34 UTC 2017
ssl.sh: #1513: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:34 UTC 2017
ssl.sh: #1514: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:34 UTC 2017
ssl.sh: #1515: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1516: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:34 UTC 2017
ssl.sh: #1517: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:34 UTC 2017
ssl.sh: #1518: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:34 UTC 2017
ssl.sh: #1519: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:34 UTC 2017
ssl.sh: #1520: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:34 UTC 2017
ssl.sh: #1521: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:35 UTC 2017
ssl.sh: #1522: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:35 UTC 2017
ssl.sh: #1523: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:35 UTC 2017
ssl.sh: #1524: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:35 UTC 2017
ssl.sh: #1525: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:35 UTC 2017
ssl.sh: #1526: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:35 UTC 2017
ssl.sh: #1527: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:35 UTC 2017
ssl.sh: #1528: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26230 >/dev/null 2>/dev/null
selfserv_9323 with PID 26230 found at Wed May 10 11:38:35 UTC 2017
ssl.sh: #1529: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 26230 at Wed May 10 11:38:35 UTC 2017
kill -USR1 26230
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26230 killed at Wed May 10 11:38:35 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:38:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:35 UTC 2017
selfserv_9323 with PID 27656 started at Wed May 10 11:38:35 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:36 UTC 2017
ssl.sh: #1530: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:36 UTC 2017
ssl.sh: #1531: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:36 UTC 2017
ssl.sh: #1532: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:36 UTC 2017
ssl.sh: #1533: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:36 UTC 2017
ssl.sh: #1534: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:36 UTC 2017
ssl.sh: #1535: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:36 UTC 2017
ssl.sh: #1536: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:36 UTC 2017
ssl.sh: #1537: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:36 UTC 2017
ssl.sh: #1538: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:36 UTC 2017
ssl.sh: #1539: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:37 UTC 2017
ssl.sh: #1540: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:37 UTC 2017
ssl.sh: #1541: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:37 UTC 2017
ssl.sh: #1542: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1543: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:37 UTC 2017
ssl.sh: #1544: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:37 UTC 2017
ssl.sh: #1545: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:37 UTC 2017
ssl.sh: #1546: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:37 UTC 2017
ssl.sh: #1547: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:37 UTC 2017
ssl.sh: #1548: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:38 UTC 2017
ssl.sh: #1549: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:38 UTC 2017
ssl.sh: #1550: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:38 UTC 2017
ssl.sh: #1551: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:38 UTC 2017
ssl.sh: #1552: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:38 UTC 2017
ssl.sh: #1553: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:38 UTC 2017
ssl.sh: #1554: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:38 UTC 2017
ssl.sh: #1555: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:38 UTC 2017
ssl.sh: #1556: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1557: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:39 UTC 2017
ssl.sh: #1558: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:39 UTC 2017
ssl.sh: #1559: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:39 UTC 2017
ssl.sh: #1560: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:39 UTC 2017
ssl.sh: #1561: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:39 UTC 2017
ssl.sh: #1562: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:39 UTC 2017
ssl.sh: #1563: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:39 UTC 2017
ssl.sh: #1564: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:39 UTC 2017
ssl.sh: #1565: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:39 UTC 2017
ssl.sh: #1566: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:40 UTC 2017
ssl.sh: #1567: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:40 UTC 2017
ssl.sh: #1568: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:40 UTC 2017
ssl.sh: #1569: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27656 >/dev/null 2>/dev/null
selfserv_9323 with PID 27656 found at Wed May 10 11:38:40 UTC 2017
ssl.sh: #1570: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 27656 at Wed May 10 11:38:40 UTC 2017
kill -USR1 27656
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27656 killed at Wed May 10 11:38:40 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:38:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:40 UTC 2017
selfserv_9323 with PID 29078 started at Wed May 10 11:38:40 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:40 UTC 2017
ssl.sh: #1571: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:40 UTC 2017
ssl.sh: #1572: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:40 UTC 2017
ssl.sh: #1573: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:40 UTC 2017
ssl.sh: #1574: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:40 UTC 2017
ssl.sh: #1575: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:40 UTC 2017
ssl.sh: #1576: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:41 UTC 2017
ssl.sh: #1577: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:41 UTC 2017
ssl.sh: #1578: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:41 UTC 2017
ssl.sh: #1579: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:41 UTC 2017
ssl.sh: #1580: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:41 UTC 2017
ssl.sh: #1581: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:41 UTC 2017
ssl.sh: #1582: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:41 UTC 2017
ssl.sh: #1583: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1584: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:41 UTC 2017
ssl.sh: #1585: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:41 UTC 2017
ssl.sh: #1586: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:41 UTC 2017
ssl.sh: #1587: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:41 UTC 2017
ssl.sh: #1588: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:41 UTC 2017
ssl.sh: #1589: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:42 UTC 2017
ssl.sh: #1590: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:42 UTC 2017
ssl.sh: #1591: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:42 UTC 2017
ssl.sh: #1592: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:42 UTC 2017
ssl.sh: #1593: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:42 UTC 2017
ssl.sh: #1594: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:42 UTC 2017
ssl.sh: #1595: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:42 UTC 2017
ssl.sh: #1596: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:42 UTC 2017
ssl.sh: #1597: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1598: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:42 UTC 2017
ssl.sh: #1599: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:42 UTC 2017
ssl.sh: #1600: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:43 UTC 2017
ssl.sh: #1601: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:43 UTC 2017
ssl.sh: #1602: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:43 UTC 2017
ssl.sh: #1603: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:43 UTC 2017
ssl.sh: #1604: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:43 UTC 2017
ssl.sh: #1605: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:43 UTC 2017
ssl.sh: #1606: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:43 UTC 2017
ssl.sh: #1607: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:44 UTC 2017
ssl.sh: #1608: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:44 UTC 2017
ssl.sh: #1609: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:44 UTC 2017
ssl.sh: #1610: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9323 with PID 29078 found at Wed May 10 11:38:44 UTC 2017
ssl.sh: #1611: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 29078 at Wed May 10 11:38:44 UTC 2017
kill -USR1 29078
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29078 killed at Wed May 10 11:38:44 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:38:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:44 UTC 2017
selfserv_9323 with PID 30500 started at Wed May 10 11:38:44 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:44 UTC 2017
ssl.sh: #1612: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:44 UTC 2017
ssl.sh: #1613: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:44 UTC 2017
ssl.sh: #1614: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:44 UTC 2017
ssl.sh: #1615: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:45 UTC 2017
ssl.sh: #1616: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:45 UTC 2017
ssl.sh: #1617: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:45 UTC 2017
ssl.sh: #1618: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:45 UTC 2017
ssl.sh: #1619: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:45 UTC 2017
ssl.sh: #1620: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:45 UTC 2017
ssl.sh: #1621: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:45 UTC 2017
ssl.sh: #1622: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:45 UTC 2017
ssl.sh: #1623: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:46 UTC 2017
ssl.sh: #1624: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1625: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:46 UTC 2017
ssl.sh: #1626: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:46 UTC 2017
ssl.sh: #1627: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:46 UTC 2017
ssl.sh: #1628: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:46 UTC 2017
ssl.sh: #1629: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:46 UTC 2017
ssl.sh: #1630: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:46 UTC 2017
ssl.sh: #1631: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:47 UTC 2017
ssl.sh: #1632: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:47 UTC 2017
ssl.sh: #1633: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:47 UTC 2017
ssl.sh: #1634: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:47 UTC 2017
ssl.sh: #1635: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:47 UTC 2017
ssl.sh: #1636: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:47 UTC 2017
ssl.sh: #1637: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:47 UTC 2017
ssl.sh: #1638: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1639: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:47 UTC 2017
ssl.sh: #1640: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:48 UTC 2017
ssl.sh: #1641: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:48 UTC 2017
ssl.sh: #1642: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:48 UTC 2017
ssl.sh: #1643: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:48 UTC 2017
ssl.sh: #1644: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:48 UTC 2017
ssl.sh: #1645: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:48 UTC 2017
ssl.sh: #1646: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:48 UTC 2017
ssl.sh: #1647: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:48 UTC 2017
ssl.sh: #1648: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:49 UTC 2017
ssl.sh: #1649: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:49 UTC 2017
ssl.sh: #1650: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:49 UTC 2017
ssl.sh: #1651: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30500 >/dev/null 2>/dev/null
selfserv_9323 with PID 30500 found at Wed May 10 11:38:49 UTC 2017
ssl.sh: #1652: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 30500 at Wed May 10 11:38:49 UTC 2017
kill -USR1 30500
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30500 killed at Wed May 10 11:38:49 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:38:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:49 UTC 2017
selfserv_9323 with PID 31922 started at Wed May 10 11:38:49 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:49 UTC 2017
ssl.sh: #1653: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:49 UTC 2017
ssl.sh: #1654: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:49 UTC 2017
ssl.sh: #1655: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:50 UTC 2017
ssl.sh: #1656: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:50 UTC 2017
ssl.sh: #1657: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:50 UTC 2017
ssl.sh: #1658: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:50 UTC 2017
ssl.sh: #1659: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:50 UTC 2017
ssl.sh: #1660: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:50 UTC 2017
ssl.sh: #1661: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:50 UTC 2017
ssl.sh: #1662: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:50 UTC 2017
ssl.sh: #1663: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:51 UTC 2017
ssl.sh: #1664: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:51 UTC 2017
ssl.sh: #1665: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1666: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:51 UTC 2017
ssl.sh: #1667: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:51 UTC 2017
ssl.sh: #1668: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:51 UTC 2017
ssl.sh: #1669: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:51 UTC 2017
ssl.sh: #1670: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:51 UTC 2017
ssl.sh: #1671: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:52 UTC 2017
ssl.sh: #1672: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:52 UTC 2017
ssl.sh: #1673: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:52 UTC 2017
ssl.sh: #1674: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:52 UTC 2017
ssl.sh: #1675: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:52 UTC 2017
ssl.sh: #1676: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:52 UTC 2017
ssl.sh: #1677: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:52 UTC 2017
ssl.sh: #1678: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:52 UTC 2017
ssl.sh: #1679: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1680: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:53 UTC 2017
ssl.sh: #1681: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:53 UTC 2017
ssl.sh: #1682: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:53 UTC 2017
ssl.sh: #1683: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:53 UTC 2017
ssl.sh: #1684: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:53 UTC 2017
ssl.sh: #1685: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:53 UTC 2017
ssl.sh: #1686: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:53 UTC 2017
ssl.sh: #1687: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:53 UTC 2017
ssl.sh: #1688: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:54 UTC 2017
ssl.sh: #1689: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:54 UTC 2017
ssl.sh: #1690: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:54 UTC 2017
ssl.sh: #1691: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:54 UTC 2017
ssl.sh: #1692: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31922 >/dev/null 2>/dev/null
selfserv_9323 with PID 31922 found at Wed May 10 11:38:54 UTC 2017
ssl.sh: #1693: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 31922 at Wed May 10 11:38:54 UTC 2017
kill -USR1 31922
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31922 killed at Wed May 10 11:38:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:38:54 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:54 UTC 2017
selfserv_9323 with PID 880 started at Wed May 10 11:38:54 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:54 UTC 2017
ssl.sh: #1694: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:54 UTC 2017
ssl.sh: #1695: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:54 UTC 2017
ssl.sh: #1696: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:54 UTC 2017
ssl.sh: #1697: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:55 UTC 2017
ssl.sh: #1698: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:55 UTC 2017
ssl.sh: #1699: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:55 UTC 2017
ssl.sh: #1700: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:55 UTC 2017
ssl.sh: #1701: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:55 UTC 2017
ssl.sh: #1702: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:55 UTC 2017
ssl.sh: #1703: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:55 UTC 2017
ssl.sh: #1704: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:55 UTC 2017
ssl.sh: #1705: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:55 UTC 2017
ssl.sh: #1706: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1707: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:56 UTC 2017
ssl.sh: #1708: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:56 UTC 2017
ssl.sh: #1709: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:56 UTC 2017
ssl.sh: #1710: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:56 UTC 2017
ssl.sh: #1711: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:56 UTC 2017
ssl.sh: #1712: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:56 UTC 2017
ssl.sh: #1713: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:56 UTC 2017
ssl.sh: #1714: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:56 UTC 2017
ssl.sh: #1715: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:56 UTC 2017
ssl.sh: #1716: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:56 UTC 2017
ssl.sh: #1717: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:56 UTC 2017
ssl.sh: #1718: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:57 UTC 2017
ssl.sh: #1719: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:57 UTC 2017
ssl.sh: #1720: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1721: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:57 UTC 2017
ssl.sh: #1722: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:57 UTC 2017
ssl.sh: #1723: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:57 UTC 2017
ssl.sh: #1724: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:57 UTC 2017
ssl.sh: #1725: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:57 UTC 2017
ssl.sh: #1726: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:57 UTC 2017
ssl.sh: #1727: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:57 UTC 2017
ssl.sh: #1728: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:58 UTC 2017
ssl.sh: #1729: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:58 UTC 2017
ssl.sh: #1730: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:58 UTC 2017
ssl.sh: #1731: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:58 UTC 2017
ssl.sh: #1732: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:58 UTC 2017
ssl.sh: #1733: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 880 >/dev/null 2>/dev/null
selfserv_9323 with PID 880 found at Wed May 10 11:38:58 UTC 2017
ssl.sh: #1734: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 880 at Wed May 10 11:38:58 UTC 2017
kill -USR1 880
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 880 killed at Wed May 10 11:38:58 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:38:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2371 >/dev/null 2>/dev/null
selfserv_9323 with PID 2371 found at Wed May 10 11:38:58 UTC 2017
selfserv_9323 with PID 2371 started at Wed May 10 11:38:58 UTC 2017
trying to kill selfserv_9323 with PID 2371 at Wed May 10 11:38:58 UTC 2017
kill -USR1 2371
./ssl.sh: line 183:  2371 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9323 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 2371 killed at Wed May 10 11:38:58 UTC 2017
ssl.sh: SSL - FIPS mode on for server ===============================
ssl.sh: Turning FIPS on for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -fips true -force
FIPS mode enabled.
ssl.sh: #1735:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -list
ssl.sh: #1736:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1737:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -fips true -force
FIPS mode enabled.
ssl.sh: #1738:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -list
ssl.sh: #1739:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1740:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server fips/client normal  - with ECC ===============================
selfserv_9323 starting at Wed May 10 11:38:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:38:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2481 >/dev/null 2>/dev/null
selfserv_9323 with PID 2481 found at Wed May 10 11:38:58 UTC 2017
selfserv_9323 with PID 2481 started at Wed May 10 11:38:58 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1741: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1742: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1743: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1744: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1745: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1746: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1747: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1748: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1749: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1750: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1751: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1752: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1753: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1754: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1755: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1756: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1757: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1758: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1759: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1760: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1761: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1762: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1763: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1764: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1765: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1766: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1767: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1768: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1769: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1770: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1771: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1772: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1773: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1774: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1775: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1776: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1777: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1778: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1779: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1780: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1781: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1782: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1783: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1784: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1785: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1786: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1787: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1788: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1789: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1790: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1791: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1792: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1793: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1794: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1795: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1796: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1797: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1798: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1799: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1800: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1801: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1802: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1803: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1804: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1805: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1806: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1807: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1808: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1809: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1810: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1811: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1812: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1813: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1814: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1815: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1816: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1817: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1818: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1819: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1820: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1821: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1822: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1823: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1824: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1825: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1826: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1827: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1828: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1829: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1830: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1831: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1832: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1833: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1834: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1835: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1836: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1837: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1838: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1839: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1840: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1841: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1842: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1843: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1844: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1845: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1846: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1847: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1848: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1849: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1850: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1851: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1852: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1853: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1854: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1855: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1856: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1857: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1858: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1859: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1860: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1861: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 2481 at Wed May 10 11:39:04 UTC 2017
kill -USR1 2481
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 2481 killed at Wed May 10 11:39:04 UTC 2017
ssl.sh: SSL Client Authentication  - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:39:04 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4744 >/dev/null 2>/dev/null
selfserv_9323 with PID 4744 found at Wed May 10 11:39:04 UTC 2017
selfserv_9323 with PID 4744 started at Wed May 10 11:39:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1862: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 4744 at Wed May 10 11:39:04 UTC 2017
kill -USR1 4744
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4744 killed at Wed May 10 11:39:04 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:04 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4801 >/dev/null 2>/dev/null
selfserv_9323 with PID 4801 found at Wed May 10 11:39:04 UTC 2017
selfserv_9323 with PID 4801 started at Wed May 10 11:39:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1863: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 4801 at Wed May 10 11:39:04 UTC 2017
kill -USR1 4801
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4801 killed at Wed May 10 11:39:04 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:04 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4858 >/dev/null 2>/dev/null
selfserv_9323 with PID 4858 found at Wed May 10 11:39:04 UTC 2017
selfserv_9323 with PID 4858 started at Wed May 10 11:39:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1864: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 4858 at Wed May 10 11:39:04 UTC 2017
kill -USR1 4858
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4858 killed at Wed May 10 11:39:04 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:39:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4915 >/dev/null 2>/dev/null
selfserv_9323 with PID 4915 found at Wed May 10 11:39:05 UTC 2017
selfserv_9323 with PID 4915 started at Wed May 10 11:39:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1865: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 4915 at Wed May 10 11:39:05 UTC 2017
kill -USR1 4915
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4915 killed at Wed May 10 11:39:05 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4972 >/dev/null 2>/dev/null
selfserv_9323 with PID 4972 found at Wed May 10 11:39:05 UTC 2017
selfserv_9323 with PID 4972 started at Wed May 10 11:39:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1866: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 4972 at Wed May 10 11:39:05 UTC 2017
kill -USR1 4972
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4972 killed at Wed May 10 11:39:05 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5029 >/dev/null 2>/dev/null
selfserv_9323 with PID 5029 found at Wed May 10 11:39:05 UTC 2017
selfserv_9323 with PID 5029 started at Wed May 10 11:39:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1867: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5029 at Wed May 10 11:39:05 UTC 2017
kill -USR1 5029
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5029 killed at Wed May 10 11:39:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:39:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5086 >/dev/null 2>/dev/null
selfserv_9323 with PID 5086 found at Wed May 10 11:39:05 UTC 2017
selfserv_9323 with PID 5086 started at Wed May 10 11:39:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1868: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5086 at Wed May 10 11:39:05 UTC 2017
kill -USR1 5086
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5086 killed at Wed May 10 11:39:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5143 >/dev/null 2>/dev/null
selfserv_9323 with PID 5143 found at Wed May 10 11:39:05 UTC 2017
selfserv_9323 with PID 5143 started at Wed May 10 11:39:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1869: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5143 at Wed May 10 11:39:05 UTC 2017
kill -USR1 5143
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5143 killed at Wed May 10 11:39:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5200 >/dev/null 2>/dev/null
selfserv_9323 with PID 5200 found at Wed May 10 11:39:05 UTC 2017
selfserv_9323 with PID 5200 started at Wed May 10 11:39:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1870: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5200 at Wed May 10 11:39:06 UTC 2017
kill -USR1 5200
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5200 killed at Wed May 10 11:39:06 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:39:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5257 >/dev/null 2>/dev/null
selfserv_9323 with PID 5257 found at Wed May 10 11:39:06 UTC 2017
selfserv_9323 with PID 5257 started at Wed May 10 11:39:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1871: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5257 at Wed May 10 11:39:06 UTC 2017
kill -USR1 5257
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5257 killed at Wed May 10 11:39:06 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5314 >/dev/null 2>/dev/null
selfserv_9323 with PID 5314 found at Wed May 10 11:39:06 UTC 2017
selfserv_9323 with PID 5314 started at Wed May 10 11:39:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1872: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5314 at Wed May 10 11:39:06 UTC 2017
kill -USR1 5314
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5314 killed at Wed May 10 11:39:06 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5371 >/dev/null 2>/dev/null
selfserv_9323 with PID 5371 found at Wed May 10 11:39:06 UTC 2017
selfserv_9323 with PID 5371 started at Wed May 10 11:39:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1873: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5371 at Wed May 10 11:39:06 UTC 2017
kill -USR1 5371
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5371 killed at Wed May 10 11:39:06 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:39:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5428 >/dev/null 2>/dev/null
selfserv_9323 with PID 5428 found at Wed May 10 11:39:06 UTC 2017
selfserv_9323 with PID 5428 started at Wed May 10 11:39:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1874: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5428 at Wed May 10 11:39:06 UTC 2017
kill -USR1 5428
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5428 killed at Wed May 10 11:39:06 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5485 >/dev/null 2>/dev/null
selfserv_9323 with PID 5485 found at Wed May 10 11:39:06 UTC 2017
selfserv_9323 with PID 5485 started at Wed May 10 11:39:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1875: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5485 at Wed May 10 11:39:07 UTC 2017
kill -USR1 5485
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5485 killed at Wed May 10 11:39:07 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5542 >/dev/null 2>/dev/null
selfserv_9323 with PID 5542 found at Wed May 10 11:39:07 UTC 2017
selfserv_9323 with PID 5542 started at Wed May 10 11:39:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1876: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5542 at Wed May 10 11:39:07 UTC 2017
kill -USR1 5542
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5542 killed at Wed May 10 11:39:07 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:39:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5599 >/dev/null 2>/dev/null
selfserv_9323 with PID 5599 found at Wed May 10 11:39:07 UTC 2017
selfserv_9323 with PID 5599 started at Wed May 10 11:39:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1877: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5599 at Wed May 10 11:39:07 UTC 2017
kill -USR1 5599
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5599 killed at Wed May 10 11:39:07 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5656 >/dev/null 2>/dev/null
selfserv_9323 with PID 5656 found at Wed May 10 11:39:07 UTC 2017
selfserv_9323 with PID 5656 started at Wed May 10 11:39:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1878: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5656 at Wed May 10 11:39:07 UTC 2017
kill -USR1 5656
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5656 killed at Wed May 10 11:39:07 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5713 >/dev/null 2>/dev/null
selfserv_9323 with PID 5713 found at Wed May 10 11:39:07 UTC 2017
selfserv_9323 with PID 5713 started at Wed May 10 11:39:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1879: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5713 at Wed May 10 11:39:07 UTC 2017
kill -USR1 5713
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5713 killed at Wed May 10 11:39:07 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:39:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5770 >/dev/null 2>/dev/null
selfserv_9323 with PID 5770 found at Wed May 10 11:39:08 UTC 2017
selfserv_9323 with PID 5770 started at Wed May 10 11:39:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1880: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5770 at Wed May 10 11:39:08 UTC 2017
kill -USR1 5770
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5770 killed at Wed May 10 11:39:08 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5827 >/dev/null 2>/dev/null
selfserv_9323 with PID 5827 found at Wed May 10 11:39:08 UTC 2017
selfserv_9323 with PID 5827 started at Wed May 10 11:39:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1881: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5827 at Wed May 10 11:39:08 UTC 2017
kill -USR1 5827
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5827 killed at Wed May 10 11:39:08 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5884 >/dev/null 2>/dev/null
selfserv_9323 with PID 5884 found at Wed May 10 11:39:08 UTC 2017
selfserv_9323 with PID 5884 started at Wed May 10 11:39:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1882: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 5884 at Wed May 10 11:39:08 UTC 2017
kill -USR1 5884
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5884 killed at Wed May 10 11:39:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:39:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5941 >/dev/null 2>/dev/null
selfserv_9323 with PID 5941 found at Wed May 10 11:39:08 UTC 2017
selfserv_9323 with PID 5941 started at Wed May 10 11:39:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1883: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5941 at Wed May 10 11:39:08 UTC 2017
kill -USR1 5941
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5941 killed at Wed May 10 11:39:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5998 >/dev/null 2>/dev/null
selfserv_9323 with PID 5998 found at Wed May 10 11:39:08 UTC 2017
selfserv_9323 with PID 5998 started at Wed May 10 11:39:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1884: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5998 at Wed May 10 11:39:09 UTC 2017
kill -USR1 5998
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5998 killed at Wed May 10 11:39:09 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6055 >/dev/null 2>/dev/null
selfserv_9323 with PID 6055 found at Wed May 10 11:39:09 UTC 2017
selfserv_9323 with PID 6055 started at Wed May 10 11:39:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1885: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6055 at Wed May 10 11:39:09 UTC 2017
kill -USR1 6055
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6055 killed at Wed May 10 11:39:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:39:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6112 >/dev/null 2>/dev/null
selfserv_9323 with PID 6112 found at Wed May 10 11:39:09 UTC 2017
selfserv_9323 with PID 6112 started at Wed May 10 11:39:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1886: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6112 at Wed May 10 11:39:09 UTC 2017
kill -USR1 6112
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6112 killed at Wed May 10 11:39:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6169 >/dev/null 2>/dev/null
selfserv_9323 with PID 6169 found at Wed May 10 11:39:09 UTC 2017
selfserv_9323 with PID 6169 started at Wed May 10 11:39:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1887: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6169 at Wed May 10 11:39:09 UTC 2017
kill -USR1 6169
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6169 killed at Wed May 10 11:39:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9323 with PID 6226 found at Wed May 10 11:39:09 UTC 2017
selfserv_9323 with PID 6226 started at Wed May 10 11:39:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1888: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6226 at Wed May 10 11:39:09 UTC 2017
kill -USR1 6226
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6226 killed at Wed May 10 11:39:09 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:39:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6283 >/dev/null 2>/dev/null
selfserv_9323 with PID 6283 found at Wed May 10 11:39:09 UTC 2017
selfserv_9323 with PID 6283 started at Wed May 10 11:39:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1889: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6283 at Wed May 10 11:39:10 UTC 2017
kill -USR1 6283
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6283 killed at Wed May 10 11:39:10 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6340 >/dev/null 2>/dev/null
selfserv_9323 with PID 6340 found at Wed May 10 11:39:10 UTC 2017
selfserv_9323 with PID 6340 started at Wed May 10 11:39:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1890: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6340 at Wed May 10 11:39:10 UTC 2017
kill -USR1 6340
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6340 killed at Wed May 10 11:39:10 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6397 >/dev/null 2>/dev/null
selfserv_9323 with PID 6397 found at Wed May 10 11:39:10 UTC 2017
selfserv_9323 with PID 6397 started at Wed May 10 11:39:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1891: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6397 at Wed May 10 11:39:10 UTC 2017
kill -USR1 6397
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6397 killed at Wed May 10 11:39:10 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6469 >/dev/null 2>/dev/null
selfserv_9323 with PID 6469 found at Wed May 10 11:39:10 UTC 2017
selfserv_9323 with PID 6469 started at Wed May 10 11:39:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1892: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6469 at Wed May 10 11:39:10 UTC 2017
kill -USR1 6469
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6469 killed at Wed May 10 11:39:10 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6526 >/dev/null 2>/dev/null
selfserv_9323 with PID 6526 found at Wed May 10 11:39:10 UTC 2017
selfserv_9323 with PID 6526 started at Wed May 10 11:39:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1893: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6526 at Wed May 10 11:39:10 UTC 2017
kill -USR1 6526
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6526 killed at Wed May 10 11:39:10 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6583 >/dev/null 2>/dev/null
selfserv_9323 with PID 6583 found at Wed May 10 11:39:10 UTC 2017
selfserv_9323 with PID 6583 started at Wed May 10 11:39:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1894: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6583 at Wed May 10 11:39:11 UTC 2017
kill -USR1 6583
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6583 killed at Wed May 10 11:39:11 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:11 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6640 >/dev/null 2>/dev/null
selfserv_9323 with PID 6640 found at Wed May 10 11:39:11 UTC 2017
selfserv_9323 with PID 6640 started at Wed May 10 11:39:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1895: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6640 at Wed May 10 11:39:11 UTC 2017
kill -USR1 6640
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6640 killed at Wed May 10 11:39:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:11 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6697 >/dev/null 2>/dev/null
selfserv_9323 with PID 6697 found at Wed May 10 11:39:11 UTC 2017
selfserv_9323 with PID 6697 started at Wed May 10 11:39:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1896: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6697 at Wed May 10 11:39:11 UTC 2017
kill -USR1 6697
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6697 killed at Wed May 10 11:39:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:11 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6754 >/dev/null 2>/dev/null
selfserv_9323 with PID 6754 found at Wed May 10 11:39:11 UTC 2017
selfserv_9323 with PID 6754 started at Wed May 10 11:39:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1897: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6754 at Wed May 10 11:39:11 UTC 2017
kill -USR1 6754
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6754 killed at Wed May 10 11:39:11 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:11 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6811 >/dev/null 2>/dev/null
selfserv_9323 with PID 6811 found at Wed May 10 11:39:11 UTC 2017
selfserv_9323 with PID 6811 started at Wed May 10 11:39:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1898: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6811 at Wed May 10 11:39:11 UTC 2017
kill -USR1 6811
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6811 killed at Wed May 10 11:39:11 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:11 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6868 >/dev/null 2>/dev/null
selfserv_9323 with PID 6868 found at Wed May 10 11:39:11 UTC 2017
selfserv_9323 with PID 6868 started at Wed May 10 11:39:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1899: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6868 at Wed May 10 11:39:12 UTC 2017
kill -USR1 6868
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6868 killed at Wed May 10 11:39:12 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:12 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6925 >/dev/null 2>/dev/null
selfserv_9323 with PID 6925 found at Wed May 10 11:39:12 UTC 2017
selfserv_9323 with PID 6925 started at Wed May 10 11:39:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1900: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6925 at Wed May 10 11:39:12 UTC 2017
kill -USR1 6925
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6925 killed at Wed May 10 11:39:12 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:12 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6982 >/dev/null 2>/dev/null
selfserv_9323 with PID 6982 found at Wed May 10 11:39:12 UTC 2017
selfserv_9323 with PID 6982 started at Wed May 10 11:39:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1901: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 6982 at Wed May 10 11:39:12 UTC 2017
kill -USR1 6982
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6982 killed at Wed May 10 11:39:12 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:12 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7039 >/dev/null 2>/dev/null
selfserv_9323 with PID 7039 found at Wed May 10 11:39:12 UTC 2017
selfserv_9323 with PID 7039 started at Wed May 10 11:39:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1902: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7039 at Wed May 10 11:39:12 UTC 2017
kill -USR1 7039
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7039 killed at Wed May 10 11:39:12 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:12 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7096 >/dev/null 2>/dev/null
selfserv_9323 with PID 7096 found at Wed May 10 11:39:12 UTC 2017
selfserv_9323 with PID 7096 started at Wed May 10 11:39:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1903: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7096 at Wed May 10 11:39:12 UTC 2017
kill -USR1 7096
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7096 killed at Wed May 10 11:39:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7153 >/dev/null 2>/dev/null
selfserv_9323 with PID 7153 found at Wed May 10 11:39:13 UTC 2017
selfserv_9323 with PID 7153 started at Wed May 10 11:39:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1904: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7153 at Wed May 10 11:39:13 UTC 2017
kill -USR1 7153
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7153 killed at Wed May 10 11:39:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7210 >/dev/null 2>/dev/null
selfserv_9323 with PID 7210 found at Wed May 10 11:39:13 UTC 2017
selfserv_9323 with PID 7210 started at Wed May 10 11:39:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1905: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7210 at Wed May 10 11:39:13 UTC 2017
kill -USR1 7210
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7210 killed at Wed May 10 11:39:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7267 >/dev/null 2>/dev/null
selfserv_9323 with PID 7267 found at Wed May 10 11:39:13 UTC 2017
selfserv_9323 with PID 7267 started at Wed May 10 11:39:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1906: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7267 at Wed May 10 11:39:13 UTC 2017
kill -USR1 7267
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7267 killed at Wed May 10 11:39:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7324 >/dev/null 2>/dev/null
selfserv_9323 with PID 7324 found at Wed May 10 11:39:13 UTC 2017
selfserv_9323 with PID 7324 started at Wed May 10 11:39:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1907: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7324 at Wed May 10 11:39:13 UTC 2017
kill -USR1 7324
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7324 killed at Wed May 10 11:39:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7381 >/dev/null 2>/dev/null
selfserv_9323 with PID 7381 found at Wed May 10 11:39:14 UTC 2017
selfserv_9323 with PID 7381 started at Wed May 10 11:39:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1908: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7381 at Wed May 10 11:39:14 UTC 2017
kill -USR1 7381
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7381 killed at Wed May 10 11:39:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:14 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7438 >/dev/null 2>/dev/null
selfserv_9323 with PID 7438 found at Wed May 10 11:39:14 UTC 2017
selfserv_9323 with PID 7438 started at Wed May 10 11:39:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1909: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7438 at Wed May 10 11:39:14 UTC 2017
kill -USR1 7438
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7438 killed at Wed May 10 11:39:14 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:39:14 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7495 >/dev/null 2>/dev/null
selfserv_9323 with PID 7495 found at Wed May 10 11:39:14 UTC 2017
selfserv_9323 with PID 7495 started at Wed May 10 11:39:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1910: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7495 at Wed May 10 11:39:14 UTC 2017
kill -USR1 7495
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7495 killed at Wed May 10 11:39:14 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:14 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7552 >/dev/null 2>/dev/null
selfserv_9323 with PID 7552 found at Wed May 10 11:39:14 UTC 2017
selfserv_9323 with PID 7552 started at Wed May 10 11:39:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1911: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7552 at Wed May 10 11:39:14 UTC 2017
kill -USR1 7552
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7552 killed at Wed May 10 11:39:14 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9323 starting at Wed May 10 11:39:14 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7630 >/dev/null 2>/dev/null
selfserv_9323 with PID 7630 found at Wed May 10 11:39:14 UTC 2017
selfserv_9323 with PID 7630 started at Wed May 10 11:39:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1912: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7630 at Wed May 10 11:39:14 UTC 2017
kill -USR1 7630
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7630 killed at Wed May 10 11:39:14 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9323 starting at Wed May 10 11:39:15 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7693 >/dev/null 2>/dev/null
selfserv_9323 with PID 7693 found at Wed May 10 11:39:15 UTC 2017
selfserv_9323 with PID 7693 started at Wed May 10 11:39:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1913: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7693 at Wed May 10 11:39:15 UTC 2017
kill -USR1 7693
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7693 killed at Wed May 10 11:39:15 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9323 starting at Wed May 10 11:39:15 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7756 >/dev/null 2>/dev/null
selfserv_9323 with PID 7756 found at Wed May 10 11:39:15 UTC 2017
selfserv_9323 with PID 7756 started at Wed May 10 11:39:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1914: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7756 at Wed May 10 11:39:15 UTC 2017
kill -USR1 7756
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7756 killed at Wed May 10 11:39:15 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9323 starting at Wed May 10 11:39:15 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7819 >/dev/null 2>/dev/null
selfserv_9323 with PID 7819 found at Wed May 10 11:39:15 UTC 2017
selfserv_9323 with PID 7819 started at Wed May 10 11:39:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1915: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7819 at Wed May 10 11:39:15 UTC 2017
kill -USR1 7819
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7819 killed at Wed May 10 11:39:15 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9323 starting at Wed May 10 11:39:15 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7882 >/dev/null 2>/dev/null
selfserv_9323 with PID 7882 found at Wed May 10 11:39:15 UTC 2017
selfserv_9323 with PID 7882 started at Wed May 10 11:39:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #1916: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7882 at Wed May 10 11:39:15 UTC 2017
kill -USR1 7882
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7882 killed at Wed May 10 11:39:15 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9323 starting at Wed May 10 11:39:15 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7952 >/dev/null 2>/dev/null
selfserv_9323 with PID 7952 found at Wed May 10 11:39:15 UTC 2017
selfserv_9323 with PID 7952 started at Wed May 10 11:39:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1917: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 7952 at Wed May 10 11:39:15 UTC 2017
kill -USR1 7952
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7952 killed at Wed May 10 11:39:15 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9323 starting at Wed May 10 11:39:15 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8015 >/dev/null 2>/dev/null
selfserv_9323 with PID 8015 found at Wed May 10 11:39:15 UTC 2017
selfserv_9323 with PID 8015 started at Wed May 10 11:39:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1918: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 8015 at Wed May 10 11:39:16 UTC 2017
kill -USR1 8015
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8015 killed at Wed May 10 11:39:16 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9323 starting at Wed May 10 11:39:16 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8078 >/dev/null 2>/dev/null
selfserv_9323 with PID 8078 found at Wed May 10 11:39:16 UTC 2017
selfserv_9323 with PID 8078 started at Wed May 10 11:39:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #1919: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 8078 at Wed May 10 11:39:16 UTC 2017
kill -USR1 8078
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8078 killed at Wed May 10 11:39:16 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9323 starting at Wed May 10 11:39:16 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8145 >/dev/null 2>/dev/null
selfserv_9323 with PID 8145 found at Wed May 10 11:39:16 UTC 2017
selfserv_9323 with PID 8145 started at Wed May 10 11:39:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1920: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 8145 at Wed May 10 11:39:16 UTC 2017
kill -USR1 8145
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8145 killed at Wed May 10 11:39:16 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9323 starting at Wed May 10 11:39:16 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8209 >/dev/null 2>/dev/null
selfserv_9323 with PID 8209 found at Wed May 10 11:39:16 UTC 2017
selfserv_9323 with PID 8209 started at Wed May 10 11:39:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1921: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 8209 at Wed May 10 11:39:16 UTC 2017
kill -USR1 8209
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8209 killed at Wed May 10 11:39:16 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9323 starting at Wed May 10 11:39:16 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8317 >/dev/null 2>/dev/null
selfserv_9323 with PID 8317 found at Wed May 10 11:39:16 UTC 2017
selfserv_9323 with PID 8317 started at Wed May 10 11:39:16 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:39:16 UTC 2017
ssl.sh: #1922: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 8317 at Wed May 10 11:39:16 UTC 2017
kill -USR1 8317
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8317 killed at Wed May 10 11:39:16 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9323 starting at Wed May 10 11:39:16 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8394 >/dev/null 2>/dev/null
selfserv_9323 with PID 8394 found at Wed May 10 11:39:16 UTC 2017
selfserv_9323 with PID 8394 started at Wed May 10 11:39:16 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:39:17 UTC 2017
ssl.sh: #1923: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 8394 at Wed May 10 11:39:17 UTC 2017
kill -USR1 8394
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8394 killed at Wed May 10 11:39:17 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9323 starting at Wed May 10 11:39:17 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:17 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8467 >/dev/null 2>/dev/null
selfserv_9323 with PID 8467 found at Wed May 10 11:39:17 UTC 2017
selfserv_9323 with PID 8467 started at Wed May 10 11:39:17 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:39:17 UTC 2017
ssl.sh: #1924: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 8467 at Wed May 10 11:39:17 UTC 2017
kill -USR1 8467
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8467 killed at Wed May 10 11:39:17 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9323 starting at Wed May 10 11:39:17 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:17 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8538 >/dev/null 2>/dev/null
selfserv_9323 with PID 8538 found at Wed May 10 11:39:17 UTC 2017
selfserv_9323 with PID 8538 started at Wed May 10 11:39:17 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:39:17 UTC 2017
ssl.sh: #1925: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 8538 at Wed May 10 11:39:17 UTC 2017
kill -USR1 8538
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8538 killed at Wed May 10 11:39:17 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9323 starting at Wed May 10 11:39:18 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:18 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8609 >/dev/null 2>/dev/null
selfserv_9323 with PID 8609 found at Wed May 10 11:39:18 UTC 2017
selfserv_9323 with PID 8609 started at Wed May 10 11:39:18 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:18 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:39:18 UTC 2017
ssl.sh: #1926: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 8609 at Wed May 10 11:39:18 UTC 2017
kill -USR1 8609
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8609 killed at Wed May 10 11:39:18 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9323 starting at Wed May 10 11:39:18 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:18 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8680 >/dev/null 2>/dev/null
selfserv_9323 with PID 8680 found at Wed May 10 11:39:18 UTC 2017
selfserv_9323 with PID 8680 started at Wed May 10 11:39:18 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:18 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:39:18 UTC 2017
ssl.sh: #1927: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 8680 at Wed May 10 11:39:18 UTC 2017
kill -USR1 8680
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8680 killed at Wed May 10 11:39:18 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9323 starting at Wed May 10 11:39:18 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:18 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8754 >/dev/null 2>/dev/null
selfserv_9323 with PID 8754 found at Wed May 10 11:39:18 UTC 2017
selfserv_9323 with PID 8754 started at Wed May 10 11:39:18 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:18 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:39:19 UTC 2017
ssl.sh: #1928: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 8754 at Wed May 10 11:39:19 UTC 2017
kill -USR1 8754
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8754 killed at Wed May 10 11:39:19 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI) ----
selfserv_9323 starting at Wed May 10 11:39:19 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8831 >/dev/null 2>/dev/null
selfserv_9323 with PID 8831 found at Wed May 10 11:39:19 UTC 2017
selfserv_9323 with PID 8831 started at Wed May 10 11:39:19 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:19 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:39:19 UTC 2017
ssl.sh: #1929: Stress TLS RC4 128 with MD5 (session ticket, SNI) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 8831 at Wed May 10 11:39:19 UTC 2017
kill -USR1 8831
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8831 killed at Wed May 10 11:39:19 UTC 2017
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:39:19 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8917 >/dev/null 2>/dev/null
selfserv_9323 with PID 8917 found at Wed May 10 11:39:19 UTC 2017
selfserv_9323 with PID 8917 started at Wed May 10 11:39:19 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:19 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:39:20 UTC 2017
ssl.sh: #1930: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 8917 at Wed May 10 11:39:20 UTC 2017
kill -USR1 8917
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8917 killed at Wed May 10 11:39:20 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:39:20 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:20 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8987 >/dev/null 2>/dev/null
selfserv_9323 with PID 8987 found at Wed May 10 11:39:20 UTC 2017
selfserv_9323 with PID 8987 started at Wed May 10 11:39:20 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:20 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:39:21 UTC 2017
ssl.sh: #1931: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 8987 at Wed May 10 11:39:21 UTC 2017
kill -USR1 8987
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8987 killed at Wed May 10 11:39:21 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9323 starting at Wed May 10 11:39:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9057 >/dev/null 2>/dev/null
selfserv_9323 with PID 9057 found at Wed May 10 11:39:21 UTC 2017
selfserv_9323 with PID 9057 started at Wed May 10 11:39:21 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:39:21 UTC 2017
ssl.sh: #1932: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 9057 at Wed May 10 11:39:21 UTC 2017
kill -USR1 9057
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9057 killed at Wed May 10 11:39:21 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9323 starting at Wed May 10 11:39:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9128 >/dev/null 2>/dev/null
selfserv_9323 with PID 9128 found at Wed May 10 11:39:21 UTC 2017
selfserv_9323 with PID 9128 started at Wed May 10 11:39:21 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:39:21 UTC 2017
ssl.sh: #1933: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 9128 at Wed May 10 11:39:21 UTC 2017
kill -USR1 9128
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9128 killed at Wed May 10 11:39:21 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9323 starting at Wed May 10 11:39:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9199 >/dev/null 2>/dev/null
selfserv_9323 with PID 9199 found at Wed May 10 11:39:21 UTC 2017
selfserv_9323 with PID 9199 started at Wed May 10 11:39:21 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:39:21 UTC 2017
ssl.sh: #1934: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 9199 at Wed May 10 11:39:21 UTC 2017
kill -USR1 9199
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9199 killed at Wed May 10 11:39:21 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9323 starting at Wed May 10 11:39:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9270 >/dev/null 2>/dev/null
selfserv_9323 with PID 9270 found at Wed May 10 11:39:21 UTC 2017
selfserv_9323 with PID 9270 started at Wed May 10 11:39:21 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:39:21 UTC 2017
ssl.sh: #1935: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 9270 at Wed May 10 11:39:21 UTC 2017
kill -USR1 9270
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9270 killed at Wed May 10 11:39:21 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9323 starting at Wed May 10 11:39:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9341 >/dev/null 2>/dev/null
selfserv_9323 with PID 9341 found at Wed May 10 11:39:21 UTC 2017
selfserv_9323 with PID 9341 started at Wed May 10 11:39:21 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:39:22 UTC 2017
ssl.sh: #1936: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 9341 at Wed May 10 11:39:22 UTC 2017
kill -USR1 9341
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9341 killed at Wed May 10 11:39:22 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9323 starting at Wed May 10 11:39:22 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9418 >/dev/null 2>/dev/null
selfserv_9323 with PID 9418 found at Wed May 10 11:39:22 UTC 2017
selfserv_9323 with PID 9418 started at Wed May 10 11:39:22 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:39:22 UTC 2017
ssl.sh: #1937: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 9418 at Wed May 10 11:39:22 UTC 2017
kill -USR1 9418
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9418 killed at Wed May 10 11:39:22 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9323 starting at Wed May 10 11:39:22 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9495 >/dev/null 2>/dev/null
selfserv_9323 with PID 9495 found at Wed May 10 11:39:22 UTC 2017
selfserv_9323 with PID 9495 started at Wed May 10 11:39:22 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:39:23 UTC 2017
ssl.sh: #1938: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 9495 at Wed May 10 11:39:23 UTC 2017
kill -USR1 9495
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9495 killed at Wed May 10 11:39:23 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9323 starting at Wed May 10 11:39:23 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9581 >/dev/null 2>/dev/null
selfserv_9323 with PID 9581 found at Wed May 10 11:39:23 UTC 2017
selfserv_9323 with PID 9581 started at Wed May 10 11:39:23 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:39:24 UTC 2017
ssl.sh: #1939: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 9581 at Wed May 10 11:39:24 UTC 2017
kill -USR1 9581
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9581 killed at Wed May 10 11:39:24 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9323 starting at Wed May 10 11:39:24 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9651 >/dev/null 2>/dev/null
selfserv_9323 with PID 9651 found at Wed May 10 11:39:24 UTC 2017
selfserv_9323 with PID 9651 started at Wed May 10 11:39:24 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:39:26 UTC 2017
ssl.sh: #1940: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 9651 at Wed May 10 11:39:26 UTC 2017
kill -USR1 9651
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9651 killed at Wed May 10 11:39:26 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9323 starting at Wed May 10 11:39:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9721 >/dev/null 2>/dev/null
selfserv_9323 with PID 9721 found at Wed May 10 11:39:26 UTC 2017
selfserv_9323 with PID 9721 started at Wed May 10 11:39:26 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:39:28 UTC 2017
ssl.sh: #1941: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 9721 at Wed May 10 11:39:28 UTC 2017
kill -USR1 9721
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9721 killed at Wed May 10 11:39:28 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9323 starting at Wed May 10 11:39:28 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9791 >/dev/null 2>/dev/null
selfserv_9323 with PID 9791 found at Wed May 10 11:39:28 UTC 2017
selfserv_9323 with PID 9791 started at Wed May 10 11:39:28 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:39:29 UTC 2017
ssl.sh: #1942: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 9791 at Wed May 10 11:39:29 UTC 2017
kill -USR1 9791
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9791 killed at Wed May 10 11:39:29 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9323 starting at Wed May 10 11:39:29 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9862 >/dev/null 2>/dev/null
selfserv_9323 with PID 9862 found at Wed May 10 11:39:29 UTC 2017
selfserv_9323 with PID 9862 started at Wed May 10 11:39:29 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:39:30 UTC 2017
ssl.sh: #1943: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 9862 at Wed May 10 11:39:30 UTC 2017
kill -USR1 9862
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9862 killed at Wed May 10 11:39:30 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9323 starting at Wed May 10 11:39:30 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9932 >/dev/null 2>/dev/null
selfserv_9323 with PID 9932 found at Wed May 10 11:39:30 UTC 2017
selfserv_9323 with PID 9932 started at Wed May 10 11:39:30 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:39:30 UTC 2017
ssl.sh: #1944: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 9932 at Wed May 10 11:39:30 UTC 2017
kill -USR1 9932
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9932 killed at Wed May 10 11:39:30 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9323 starting at Wed May 10 11:39:30 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10003 >/dev/null 2>/dev/null
selfserv_9323 with PID 10003 found at Wed May 10 11:39:30 UTC 2017
selfserv_9323 with PID 10003 started at Wed May 10 11:39:30 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:39:31 UTC 2017
ssl.sh: #1945: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 10003 at Wed May 10 11:39:31 UTC 2017
kill -USR1 10003
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10003 killed at Wed May 10 11:39:31 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9323 starting at Wed May 10 11:39:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10074 >/dev/null 2>/dev/null
selfserv_9323 with PID 10074 found at Wed May 10 11:39:31 UTC 2017
selfserv_9323 with PID 10074 started at Wed May 10 11:39:31 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:39:31 UTC 2017
ssl.sh: #1946: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 10074 at Wed May 10 11:39:31 UTC 2017
kill -USR1 10074
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10074 killed at Wed May 10 11:39:31 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9323 starting at Wed May 10 11:39:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10145 >/dev/null 2>/dev/null
selfserv_9323 with PID 10145 found at Wed May 10 11:39:31 UTC 2017
selfserv_9323 with PID 10145 started at Wed May 10 11:39:31 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:39:31 UTC 2017
ssl.sh: #1947: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 10145 at Wed May 10 11:39:31 UTC 2017
kill -USR1 10145
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10145 killed at Wed May 10 11:39:31 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9323 starting at Wed May 10 11:39:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10216 >/dev/null 2>/dev/null
selfserv_9323 with PID 10216 found at Wed May 10 11:39:32 UTC 2017
selfserv_9323 with PID 10216 started at Wed May 10 11:39:32 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:39:32 UTC 2017
ssl.sh: #1948: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 10216 at Wed May 10 11:39:32 UTC 2017
kill -USR1 10216
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10216 killed at Wed May 10 11:39:32 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:39:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10302 >/dev/null 2>/dev/null
selfserv_9323 with PID 10302 found at Wed May 10 11:39:32 UTC 2017
selfserv_9323 with PID 10302 started at Wed May 10 11:39:32 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:39:32 UTC 2017
ssl.sh: #1949: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 10302 at Wed May 10 11:39:32 UTC 2017
kill -USR1 10302
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10302 killed at Wed May 10 11:39:32 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10372 >/dev/null 2>/dev/null
selfserv_9323 with PID 10372 found at Wed May 10 11:39:33 UTC 2017
selfserv_9323 with PID 10372 started at Wed May 10 11:39:33 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:39:33 UTC 2017
ssl.sh: #1950: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 10372 at Wed May 10 11:39:33 UTC 2017
kill -USR1 10372
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10372 killed at Wed May 10 11:39:33 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:39:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10443 >/dev/null 2>/dev/null
selfserv_9323 with PID 10443 found at Wed May 10 11:39:33 UTC 2017
selfserv_9323 with PID 10443 started at Wed May 10 11:39:33 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:39:34 UTC 2017
ssl.sh: #1951: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 10443 at Wed May 10 11:39:34 UTC 2017
kill -USR1 10443
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10443 killed at Wed May 10 11:39:34 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:39:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10513 >/dev/null 2>/dev/null
selfserv_9323 with PID 10513 found at Wed May 10 11:39:34 UTC 2017
selfserv_9323 with PID 10513 started at Wed May 10 11:39:34 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:39:34 UTC 2017
ssl.sh: #1952: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 10513 at Wed May 10 11:39:34 UTC 2017
kill -USR1 10513
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10513 killed at Wed May 10 11:39:34 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9323 starting at Wed May 10 11:39:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10583 >/dev/null 2>/dev/null
selfserv_9323 with PID 10583 found at Wed May 10 11:39:34 UTC 2017
selfserv_9323 with PID 10583 started at Wed May 10 11:39:34 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:39:34 UTC 2017
ssl.sh: #1953: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 10583 at Wed May 10 11:39:34 UTC 2017
kill -USR1 10583
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10583 killed at Wed May 10 11:39:34 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9323 starting at Wed May 10 11:39:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10654 >/dev/null 2>/dev/null
selfserv_9323 with PID 10654 found at Wed May 10 11:39:34 UTC 2017
selfserv_9323 with PID 10654 started at Wed May 10 11:39:34 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:39:35 UTC 2017
ssl.sh: #1954: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 10654 at Wed May 10 11:39:35 UTC 2017
kill -USR1 10654
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10654 killed at Wed May 10 11:39:35 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9323 starting at Wed May 10 11:39:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10740 >/dev/null 2>/dev/null
selfserv_9323 with PID 10740 found at Wed May 10 11:39:35 UTC 2017
selfserv_9323 with PID 10740 started at Wed May 10 11:39:35 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:35 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 5 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:39:35 UTC 2017
ssl.sh: #1955: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 10740 at Wed May 10 11:39:35 UTC 2017
kill -USR1 10740
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10740 killed at Wed May 10 11:39:35 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9323 starting at Wed May 10 11:39:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10810 >/dev/null 2>/dev/null
selfserv_9323 with PID 10810 found at Wed May 10 11:39:36 UTC 2017
selfserv_9323 with PID 10810 started at Wed May 10 11:39:36 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:39:37 UTC 2017
ssl.sh: #1956: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 10810 at Wed May 10 11:39:37 UTC 2017
kill -USR1 10810
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10810 killed at Wed May 10 11:39:37 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9323 starting at Wed May 10 11:39:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10881 >/dev/null 2>/dev/null
selfserv_9323 with PID 10881 found at Wed May 10 11:39:37 UTC 2017
selfserv_9323 with PID 10881 started at Wed May 10 11:39:37 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 4 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:39:37 UTC 2017
ssl.sh: #1957: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 10881 at Wed May 10 11:39:37 UTC 2017
kill -USR1 10881
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10881 killed at Wed May 10 11:39:37 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9323 starting at Wed May 10 11:39:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10951 >/dev/null 2>/dev/null
selfserv_9323 with PID 10951 found at Wed May 10 11:39:37 UTC 2017
selfserv_9323 with PID 10951 started at Wed May 10 11:39:37 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:39:38 UTC 2017
ssl.sh: #1958: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 10951 at Wed May 10 11:39:38 UTC 2017
kill -USR1 10951
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10951 killed at Wed May 10 11:39:38 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9323 starting at Wed May 10 11:39:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11031 >/dev/null 2>/dev/null
selfserv_9323 with PID 11031 found at Wed May 10 11:39:38 UTC 2017
selfserv_9323 with PID 11031 started at Wed May 10 11:39:38 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:39:47 UTC 2017
ssl.sh: #1959: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 11031 at Wed May 10 11:39:47 UTC 2017
kill -USR1 11031
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11031 killed at Wed May 10 11:39:47 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9323 starting at Wed May 10 11:39:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11111 >/dev/null 2>/dev/null
selfserv_9323 with PID 11111 found at Wed May 10 11:39:47 UTC 2017
selfserv_9323 with PID 11111 started at Wed May 10 11:39:47 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:39:56 UTC 2017
ssl.sh: #1960: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 11111 at Wed May 10 11:39:56 UTC 2017
kill -USR1 11111
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11111 killed at Wed May 10 11:39:56 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9323 starting at Wed May 10 11:39:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11181 >/dev/null 2>/dev/null
selfserv_9323 with PID 11181 found at Wed May 10 11:39:56 UTC 2017
selfserv_9323 with PID 11181 started at Wed May 10 11:39:56 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:56 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 4 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:39:56 UTC 2017
ssl.sh: #1961: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 11181 at Wed May 10 11:39:56 UTC 2017
kill -USR1 11181
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11181 killed at Wed May 10 11:39:56 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9323 starting at Wed May 10 11:39:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9323 with PID 11251 found at Wed May 10 11:39:56 UTC 2017
selfserv_9323 with PID 11251 started at Wed May 10 11:39:56 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:56 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:39:57 UTC 2017
ssl.sh: #1962: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 11251 at Wed May 10 11:39:57 UTC 2017
kill -USR1 11251
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11251 killed at Wed May 10 11:39:57 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9323 starting at Wed May 10 11:39:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11321 >/dev/null 2>/dev/null
selfserv_9323 with PID 11321 found at Wed May 10 11:39:57 UTC 2017
selfserv_9323 with PID 11321 started at Wed May 10 11:39:57 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:57 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:39:58 UTC 2017
ssl.sh: #1963: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 11321 at Wed May 10 11:39:58 UTC 2017
kill -USR1 11321
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11321 killed at Wed May 10 11:39:58 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:39:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11406 >/dev/null 2>/dev/null
selfserv_9323 with PID 11406 found at Wed May 10 11:39:58 UTC 2017
selfserv_9323 with PID 11406 started at Wed May 10 11:39:58 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:39:59 UTC 2017
ssl.sh: #1964: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 11406 at Wed May 10 11:39:59 UTC 2017
kill -USR1 11406
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11406 killed at Wed May 10 11:39:59 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9323 starting at Wed May 10 11:39:59 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:39:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11476 >/dev/null 2>/dev/null
selfserv_9323 with PID 11476 found at Wed May 10 11:39:59 UTC 2017
selfserv_9323 with PID 11476 started at Wed May 10 11:39:59 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:39:59 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:40:00 UTC 2017
ssl.sh: #1965: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 11476 at Wed May 10 11:40:00 UTC 2017
kill -USR1 11476
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11476 killed at Wed May 10 11:40:00 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:40:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11562 >/dev/null 2>/dev/null
selfserv_9323 with PID 11562 found at Wed May 10 11:40:01 UTC 2017
selfserv_9323 with PID 11562 started at Wed May 10 11:40:01 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:01 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:40:13 UTC 2017
ssl.sh: #1966: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 11562 at Wed May 10 11:40:13 UTC 2017
kill -USR1 11562
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11562 killed at Wed May 10 11:40:13 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:40:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11633 >/dev/null 2>/dev/null
selfserv_9323 with PID 11633 found at Wed May 10 11:40:13 UTC 2017
selfserv_9323 with PID 11633 started at Wed May 10 11:40:13 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:13 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:40:25 UTC 2017
ssl.sh: #1967: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 11633 at Wed May 10 11:40:25 UTC 2017
kill -USR1 11633
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11633 killed at Wed May 10 11:40:25 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server fips/client normal  - with ECC ===============================
selfserv_9323 starting at Wed May 10 11:40:25 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11695 >/dev/null 2>/dev/null
selfserv_9323 with PID 11695 found at Wed May 10 11:40:25 UTC 2017
selfserv_9323 with PID 11695 started at Wed May 10 11:40:25 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1968: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1969: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1970: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1971: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1972: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1973: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1974: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1975: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1976: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1977: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1978: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1979: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1980: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1981: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1982: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1983: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1984: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1985: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1986: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1987: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1988: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1989: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1990: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1991: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1992: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1993: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1994: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1995: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1996: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1997: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1998: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1999: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2000: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2001: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2002: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2003: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2004: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2005: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2006: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2007: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2008: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2009: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2010: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2011: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2012: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2013: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2014: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2015: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2016: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2017: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2018: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2019: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2020: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2021: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2022: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2023: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2024: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2025: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2026: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2027: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2028: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2029: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2030: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2031: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2032: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2033: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2034: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2035: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2036: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2037: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2038: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2039: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2040: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2041: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2042: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2043: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2044: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2045: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2046: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2047: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2048: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2049: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2050: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2051: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2052: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2053: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2054: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2055: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2056: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2057: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2058: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2059: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2060: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2061: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2062: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2063: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2064: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2065: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2066: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2067: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2068: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2069: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2070: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2071: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2072: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2073: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2074: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2075: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2076: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2077: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2078: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2079: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2080: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2081: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2082: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2083: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2084: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2085: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2086: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2087: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2088: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11695 at Wed May 10 11:40:31 UTC 2017
kill -USR1 11695
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11695 killed at Wed May 10 11:40:31 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:40:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13961 >/dev/null 2>/dev/null
selfserv_9323 with PID 13961 found at Wed May 10 11:40:31 UTC 2017
selfserv_9323 with PID 13961 started at Wed May 10 11:40:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2089: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13961 at Wed May 10 11:40:31 UTC 2017
kill -USR1 13961
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13961 killed at Wed May 10 11:40:31 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 11:40:31 UTC 2017
selfserv_9323 with PID 14018 started at Wed May 10 11:40:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2090: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14018 at Wed May 10 11:40:31 UTC 2017
kill -USR1 14018
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14018 killed at Wed May 10 11:40:31 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14075 >/dev/null 2>/dev/null
selfserv_9323 with PID 14075 found at Wed May 10 11:40:31 UTC 2017
selfserv_9323 with PID 14075 started at Wed May 10 11:40:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2091: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14075 at Wed May 10 11:40:31 UTC 2017
kill -USR1 14075
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14075 killed at Wed May 10 11:40:31 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:40:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14132 >/dev/null 2>/dev/null
selfserv_9323 with PID 14132 found at Wed May 10 11:40:31 UTC 2017
selfserv_9323 with PID 14132 started at Wed May 10 11:40:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2092: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14132 at Wed May 10 11:40:31 UTC 2017
kill -USR1 14132
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14132 killed at Wed May 10 11:40:31 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14189 >/dev/null 2>/dev/null
selfserv_9323 with PID 14189 found at Wed May 10 11:40:31 UTC 2017
selfserv_9323 with PID 14189 started at Wed May 10 11:40:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2093: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14189 at Wed May 10 11:40:32 UTC 2017
kill -USR1 14189
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14189 killed at Wed May 10 11:40:32 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14246 >/dev/null 2>/dev/null
selfserv_9323 with PID 14246 found at Wed May 10 11:40:32 UTC 2017
selfserv_9323 with PID 14246 started at Wed May 10 11:40:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2094: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14246 at Wed May 10 11:40:32 UTC 2017
kill -USR1 14246
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14246 killed at Wed May 10 11:40:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:40:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14303 >/dev/null 2>/dev/null
selfserv_9323 with PID 14303 found at Wed May 10 11:40:32 UTC 2017
selfserv_9323 with PID 14303 started at Wed May 10 11:40:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2095: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14303 at Wed May 10 11:40:32 UTC 2017
kill -USR1 14303
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14303 killed at Wed May 10 11:40:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14360 >/dev/null 2>/dev/null
selfserv_9323 with PID 14360 found at Wed May 10 11:40:32 UTC 2017
selfserv_9323 with PID 14360 started at Wed May 10 11:40:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2096: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14360 at Wed May 10 11:40:32 UTC 2017
kill -USR1 14360
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14360 killed at Wed May 10 11:40:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14417 >/dev/null 2>/dev/null
selfserv_9323 with PID 14417 found at Wed May 10 11:40:32 UTC 2017
selfserv_9323 with PID 14417 started at Wed May 10 11:40:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2097: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14417 at Wed May 10 11:40:32 UTC 2017
kill -USR1 14417
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14417 killed at Wed May 10 11:40:32 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:40:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14474 >/dev/null 2>/dev/null
selfserv_9323 with PID 14474 found at Wed May 10 11:40:32 UTC 2017
selfserv_9323 with PID 14474 started at Wed May 10 11:40:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2098: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14474 at Wed May 10 11:40:33 UTC 2017
kill -USR1 14474
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14474 killed at Wed May 10 11:40:33 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14531 >/dev/null 2>/dev/null
selfserv_9323 with PID 14531 found at Wed May 10 11:40:33 UTC 2017
selfserv_9323 with PID 14531 started at Wed May 10 11:40:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2099: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14531 at Wed May 10 11:40:33 UTC 2017
kill -USR1 14531
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14531 killed at Wed May 10 11:40:33 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14588 >/dev/null 2>/dev/null
selfserv_9323 with PID 14588 found at Wed May 10 11:40:33 UTC 2017
selfserv_9323 with PID 14588 started at Wed May 10 11:40:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2100: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14588 at Wed May 10 11:40:33 UTC 2017
kill -USR1 14588
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14588 killed at Wed May 10 11:40:33 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:40:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14645 >/dev/null 2>/dev/null
selfserv_9323 with PID 14645 found at Wed May 10 11:40:33 UTC 2017
selfserv_9323 with PID 14645 started at Wed May 10 11:40:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2101: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14645 at Wed May 10 11:40:33 UTC 2017
kill -USR1 14645
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14645 killed at Wed May 10 11:40:33 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14702 >/dev/null 2>/dev/null
selfserv_9323 with PID 14702 found at Wed May 10 11:40:33 UTC 2017
selfserv_9323 with PID 14702 started at Wed May 10 11:40:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2102: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14702 at Wed May 10 11:40:33 UTC 2017
kill -USR1 14702
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14702 killed at Wed May 10 11:40:34 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14759 >/dev/null 2>/dev/null
selfserv_9323 with PID 14759 found at Wed May 10 11:40:34 UTC 2017
selfserv_9323 with PID 14759 started at Wed May 10 11:40:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2103: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14759 at Wed May 10 11:40:34 UTC 2017
kill -USR1 14759
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14759 killed at Wed May 10 11:40:34 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:40:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14816 >/dev/null 2>/dev/null
selfserv_9323 with PID 14816 found at Wed May 10 11:40:34 UTC 2017
selfserv_9323 with PID 14816 started at Wed May 10 11:40:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2104: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14816 at Wed May 10 11:40:34 UTC 2017
kill -USR1 14816
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14816 killed at Wed May 10 11:40:34 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14873 >/dev/null 2>/dev/null
selfserv_9323 with PID 14873 found at Wed May 10 11:40:34 UTC 2017
selfserv_9323 with PID 14873 started at Wed May 10 11:40:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2105: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14873 at Wed May 10 11:40:34 UTC 2017
kill -USR1 14873
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14873 killed at Wed May 10 11:40:34 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14930 >/dev/null 2>/dev/null
selfserv_9323 with PID 14930 found at Wed May 10 11:40:34 UTC 2017
selfserv_9323 with PID 14930 started at Wed May 10 11:40:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2106: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14930 at Wed May 10 11:40:35 UTC 2017
kill -USR1 14930
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14930 killed at Wed May 10 11:40:35 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:40:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14987 >/dev/null 2>/dev/null
selfserv_9323 with PID 14987 found at Wed May 10 11:40:35 UTC 2017
selfserv_9323 with PID 14987 started at Wed May 10 11:40:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2107: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14987 at Wed May 10 11:40:35 UTC 2017
kill -USR1 14987
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14987 killed at Wed May 10 11:40:35 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15044 >/dev/null 2>/dev/null
selfserv_9323 with PID 15044 found at Wed May 10 11:40:35 UTC 2017
selfserv_9323 with PID 15044 started at Wed May 10 11:40:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2108: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15044 at Wed May 10 11:40:35 UTC 2017
kill -USR1 15044
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15044 killed at Wed May 10 11:40:35 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15101 >/dev/null 2>/dev/null
selfserv_9323 with PID 15101 found at Wed May 10 11:40:35 UTC 2017
selfserv_9323 with PID 15101 started at Wed May 10 11:40:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2109: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15101 at Wed May 10 11:40:35 UTC 2017
kill -USR1 15101
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15101 killed at Wed May 10 11:40:35 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:40:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15158 >/dev/null 2>/dev/null
selfserv_9323 with PID 15158 found at Wed May 10 11:40:35 UTC 2017
selfserv_9323 with PID 15158 started at Wed May 10 11:40:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2110: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15158 at Wed May 10 11:40:36 UTC 2017
kill -USR1 15158
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15158 killed at Wed May 10 11:40:36 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15215 >/dev/null 2>/dev/null
selfserv_9323 with PID 15215 found at Wed May 10 11:40:36 UTC 2017
selfserv_9323 with PID 15215 started at Wed May 10 11:40:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2111: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15215 at Wed May 10 11:40:36 UTC 2017
kill -USR1 15215
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15215 killed at Wed May 10 11:40:36 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15272 >/dev/null 2>/dev/null
selfserv_9323 with PID 15272 found at Wed May 10 11:40:36 UTC 2017
selfserv_9323 with PID 15272 started at Wed May 10 11:40:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2112: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15272 at Wed May 10 11:40:36 UTC 2017
kill -USR1 15272
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15272 killed at Wed May 10 11:40:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:40:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15330 >/dev/null 2>/dev/null
selfserv_9323 with PID 15330 found at Wed May 10 11:40:36 UTC 2017
selfserv_9323 with PID 15330 started at Wed May 10 11:40:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2113: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15330 at Wed May 10 11:40:36 UTC 2017
kill -USR1 15330
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15330 killed at Wed May 10 11:40:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15387 >/dev/null 2>/dev/null
selfserv_9323 with PID 15387 found at Wed May 10 11:40:36 UTC 2017
selfserv_9323 with PID 15387 started at Wed May 10 11:40:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2114: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15387 at Wed May 10 11:40:36 UTC 2017
kill -USR1 15387
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15387 killed at Wed May 10 11:40:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15444 >/dev/null 2>/dev/null
selfserv_9323 with PID 15444 found at Wed May 10 11:40:36 UTC 2017
selfserv_9323 with PID 15444 started at Wed May 10 11:40:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2115: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15444 at Wed May 10 11:40:37 UTC 2017
kill -USR1 15444
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15444 killed at Wed May 10 11:40:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:40:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15501 >/dev/null 2>/dev/null
selfserv_9323 with PID 15501 found at Wed May 10 11:40:37 UTC 2017
selfserv_9323 with PID 15501 started at Wed May 10 11:40:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2116: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15501 at Wed May 10 11:40:37 UTC 2017
kill -USR1 15501
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15501 killed at Wed May 10 11:40:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15558 >/dev/null 2>/dev/null
selfserv_9323 with PID 15558 found at Wed May 10 11:40:37 UTC 2017
selfserv_9323 with PID 15558 started at Wed May 10 11:40:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2117: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15558 at Wed May 10 11:40:37 UTC 2017
kill -USR1 15558
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15558 killed at Wed May 10 11:40:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15615 >/dev/null 2>/dev/null
selfserv_9323 with PID 15615 found at Wed May 10 11:40:37 UTC 2017
selfserv_9323 with PID 15615 started at Wed May 10 11:40:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2118: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15615 at Wed May 10 11:40:37 UTC 2017
kill -USR1 15615
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15615 killed at Wed May 10 11:40:37 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15687 >/dev/null 2>/dev/null
selfserv_9323 with PID 15687 found at Wed May 10 11:40:37 UTC 2017
selfserv_9323 with PID 15687 started at Wed May 10 11:40:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2119: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15687 at Wed May 10 11:40:37 UTC 2017
kill -USR1 15687
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15687 killed at Wed May 10 11:40:37 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15744 >/dev/null 2>/dev/null
selfserv_9323 with PID 15744 found at Wed May 10 11:40:37 UTC 2017
selfserv_9323 with PID 15744 started at Wed May 10 11:40:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2120: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15744 at Wed May 10 11:40:38 UTC 2017
kill -USR1 15744
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15744 killed at Wed May 10 11:40:38 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15801 >/dev/null 2>/dev/null
selfserv_9323 with PID 15801 found at Wed May 10 11:40:38 UTC 2017
selfserv_9323 with PID 15801 started at Wed May 10 11:40:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2121: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15801 at Wed May 10 11:40:38 UTC 2017
kill -USR1 15801
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15801 killed at Wed May 10 11:40:38 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15858 >/dev/null 2>/dev/null
selfserv_9323 with PID 15858 found at Wed May 10 11:40:38 UTC 2017
selfserv_9323 with PID 15858 started at Wed May 10 11:40:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2122: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15858 at Wed May 10 11:40:38 UTC 2017
kill -USR1 15858
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15858 killed at Wed May 10 11:40:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15915 >/dev/null 2>/dev/null
selfserv_9323 with PID 15915 found at Wed May 10 11:40:38 UTC 2017
selfserv_9323 with PID 15915 started at Wed May 10 11:40:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2123: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15915 at Wed May 10 11:40:38 UTC 2017
kill -USR1 15915
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15915 killed at Wed May 10 11:40:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15972 >/dev/null 2>/dev/null
selfserv_9323 with PID 15972 found at Wed May 10 11:40:38 UTC 2017
selfserv_9323 with PID 15972 started at Wed May 10 11:40:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2124: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15972 at Wed May 10 11:40:38 UTC 2017
kill -USR1 15972
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15972 killed at Wed May 10 11:40:38 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16030 >/dev/null 2>/dev/null
selfserv_9323 with PID 16030 found at Wed May 10 11:40:38 UTC 2017
selfserv_9323 with PID 16030 started at Wed May 10 11:40:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2125: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16030 at Wed May 10 11:40:39 UTC 2017
kill -USR1 16030
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16030 killed at Wed May 10 11:40:39 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16087 >/dev/null 2>/dev/null
selfserv_9323 with PID 16087 found at Wed May 10 11:40:39 UTC 2017
selfserv_9323 with PID 16087 started at Wed May 10 11:40:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2126: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16087 at Wed May 10 11:40:39 UTC 2017
kill -USR1 16087
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16087 killed at Wed May 10 11:40:39 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16144 >/dev/null 2>/dev/null
selfserv_9323 with PID 16144 found at Wed May 10 11:40:39 UTC 2017
selfserv_9323 with PID 16144 started at Wed May 10 11:40:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2127: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16144 at Wed May 10 11:40:39 UTC 2017
kill -USR1 16144
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16144 killed at Wed May 10 11:40:39 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16201 >/dev/null 2>/dev/null
selfserv_9323 with PID 16201 found at Wed May 10 11:40:39 UTC 2017
selfserv_9323 with PID 16201 started at Wed May 10 11:40:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2128: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16201 at Wed May 10 11:40:39 UTC 2017
kill -USR1 16201
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16201 killed at Wed May 10 11:40:39 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16258 >/dev/null 2>/dev/null
selfserv_9323 with PID 16258 found at Wed May 10 11:40:39 UTC 2017
selfserv_9323 with PID 16258 started at Wed May 10 11:40:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2129: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16258 at Wed May 10 11:40:40 UTC 2017
kill -USR1 16258
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16258 killed at Wed May 10 11:40:40 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16315 >/dev/null 2>/dev/null
selfserv_9323 with PID 16315 found at Wed May 10 11:40:40 UTC 2017
selfserv_9323 with PID 16315 started at Wed May 10 11:40:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2130: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16315 at Wed May 10 11:40:40 UTC 2017
kill -USR1 16315
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16315 killed at Wed May 10 11:40:40 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16373 >/dev/null 2>/dev/null
selfserv_9323 with PID 16373 found at Wed May 10 11:40:40 UTC 2017
selfserv_9323 with PID 16373 started at Wed May 10 11:40:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2131: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16373 at Wed May 10 11:40:40 UTC 2017
kill -USR1 16373
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16373 killed at Wed May 10 11:40:40 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16430 >/dev/null 2>/dev/null
selfserv_9323 with PID 16430 found at Wed May 10 11:40:40 UTC 2017
selfserv_9323 with PID 16430 started at Wed May 10 11:40:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2132: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16430 at Wed May 10 11:40:40 UTC 2017
kill -USR1 16430
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16430 killed at Wed May 10 11:40:40 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16487 >/dev/null 2>/dev/null
selfserv_9323 with PID 16487 found at Wed May 10 11:40:40 UTC 2017
selfserv_9323 with PID 16487 started at Wed May 10 11:40:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2133: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16487 at Wed May 10 11:40:41 UTC 2017
kill -USR1 16487
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16487 killed at Wed May 10 11:40:41 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16544 >/dev/null 2>/dev/null
selfserv_9323 with PID 16544 found at Wed May 10 11:40:41 UTC 2017
selfserv_9323 with PID 16544 started at Wed May 10 11:40:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2134: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16544 at Wed May 10 11:40:41 UTC 2017
kill -USR1 16544
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16544 killed at Wed May 10 11:40:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16602 >/dev/null 2>/dev/null
selfserv_9323 with PID 16602 found at Wed May 10 11:40:41 UTC 2017
selfserv_9323 with PID 16602 started at Wed May 10 11:40:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2135: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16602 at Wed May 10 11:40:41 UTC 2017
kill -USR1 16602
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16602 killed at Wed May 10 11:40:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16659 >/dev/null 2>/dev/null
selfserv_9323 with PID 16659 found at Wed May 10 11:40:41 UTC 2017
selfserv_9323 with PID 16659 started at Wed May 10 11:40:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2136: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16659 at Wed May 10 11:40:41 UTC 2017
kill -USR1 16659
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16659 killed at Wed May 10 11:40:41 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:40:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16716 >/dev/null 2>/dev/null
selfserv_9323 with PID 16716 found at Wed May 10 11:40:41 UTC 2017
selfserv_9323 with PID 16716 started at Wed May 10 11:40:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2137: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16716 at Wed May 10 11:40:41 UTC 2017
kill -USR1 16716
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16716 killed at Wed May 10 11:40:41 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16773 >/dev/null 2>/dev/null
selfserv_9323 with PID 16773 found at Wed May 10 11:40:41 UTC 2017
selfserv_9323 with PID 16773 started at Wed May 10 11:40:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2138: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16773 at Wed May 10 11:40:42 UTC 2017
kill -USR1 16773
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16773 killed at Wed May 10 11:40:42 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9323 starting at Wed May 10 11:40:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16915 >/dev/null 2>/dev/null
selfserv_9323 with PID 16915 found at Wed May 10 11:40:42 UTC 2017
selfserv_9323 with PID 16915 started at Wed May 10 11:40:42 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:40:42 UTC 2017
ssl.sh: #2139: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 16915 at Wed May 10 11:40:42 UTC 2017
kill -USR1 16915
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16915 killed at Wed May 10 11:40:42 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9323 starting at Wed May 10 11:40:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16986 >/dev/null 2>/dev/null
selfserv_9323 with PID 16986 found at Wed May 10 11:40:42 UTC 2017
selfserv_9323 with PID 16986 started at Wed May 10 11:40:42 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:40:42 UTC 2017
ssl.sh: #2140: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 16986 at Wed May 10 11:40:42 UTC 2017
kill -USR1 16986
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16986 killed at Wed May 10 11:40:42 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9323 starting at Wed May 10 11:40:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17057 >/dev/null 2>/dev/null
selfserv_9323 with PID 17057 found at Wed May 10 11:40:42 UTC 2017
selfserv_9323 with PID 17057 started at Wed May 10 11:40:42 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:40:43 UTC 2017
ssl.sh: #2141: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 17057 at Wed May 10 11:40:43 UTC 2017
kill -USR1 17057
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17057 killed at Wed May 10 11:40:43 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9323 starting at Wed May 10 11:40:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17128 >/dev/null 2>/dev/null
selfserv_9323 with PID 17128 found at Wed May 10 11:40:43 UTC 2017
selfserv_9323 with PID 17128 started at Wed May 10 11:40:43 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:40:43 UTC 2017
ssl.sh: #2142: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 17128 at Wed May 10 11:40:43 UTC 2017
kill -USR1 17128
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17128 killed at Wed May 10 11:40:43 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9323 starting at Wed May 10 11:40:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17199 >/dev/null 2>/dev/null
selfserv_9323 with PID 17199 found at Wed May 10 11:40:43 UTC 2017
selfserv_9323 with PID 17199 started at Wed May 10 11:40:43 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:40:44 UTC 2017
ssl.sh: #2143: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 17199 at Wed May 10 11:40:44 UTC 2017
kill -USR1 17199
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17199 killed at Wed May 10 11:40:44 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9323 starting at Wed May 10 11:40:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17270 >/dev/null 2>/dev/null
selfserv_9323 with PID 17270 found at Wed May 10 11:40:44 UTC 2017
selfserv_9323 with PID 17270 started at Wed May 10 11:40:44 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:40:44 UTC 2017
ssl.sh: #2144: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 17270 at Wed May 10 11:40:44 UTC 2017
kill -USR1 17270
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17270 killed at Wed May 10 11:40:44 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9323 starting at Wed May 10 11:40:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17341 >/dev/null 2>/dev/null
selfserv_9323 with PID 17341 found at Wed May 10 11:40:44 UTC 2017
selfserv_9323 with PID 17341 started at Wed May 10 11:40:44 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:40:44 UTC 2017
ssl.sh: #2145: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 17341 at Wed May 10 11:40:44 UTC 2017
kill -USR1 17341
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17341 killed at Wed May 10 11:40:44 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:40:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17429 >/dev/null 2>/dev/null
selfserv_9323 with PID 17429 found at Wed May 10 11:40:44 UTC 2017
selfserv_9323 with PID 17429 started at Wed May 10 11:40:44 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:40:45 UTC 2017
ssl.sh: #2146: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 17429 at Wed May 10 11:40:45 UTC 2017
kill -USR1 17429
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17429 killed at Wed May 10 11:40:45 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:40:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17499 >/dev/null 2>/dev/null
selfserv_9323 with PID 17499 found at Wed May 10 11:40:45 UTC 2017
selfserv_9323 with PID 17499 started at Wed May 10 11:40:45 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:40:46 UTC 2017
ssl.sh: #2147: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 17499 at Wed May 10 11:40:46 UTC 2017
kill -USR1 17499
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17499 killed at Wed May 10 11:40:46 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9323 starting at Wed May 10 11:40:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17569 >/dev/null 2>/dev/null
selfserv_9323 with PID 17569 found at Wed May 10 11:40:46 UTC 2017
selfserv_9323 with PID 17569 started at Wed May 10 11:40:46 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:40:46 UTC 2017
ssl.sh: #2148: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 17569 at Wed May 10 11:40:46 UTC 2017
kill -USR1 17569
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17569 killed at Wed May 10 11:40:46 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9323 starting at Wed May 10 11:40:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17640 >/dev/null 2>/dev/null
selfserv_9323 with PID 17640 found at Wed May 10 11:40:46 UTC 2017
selfserv_9323 with PID 17640 started at Wed May 10 11:40:46 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:40:46 UTC 2017
ssl.sh: #2149: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 17640 at Wed May 10 11:40:46 UTC 2017
kill -USR1 17640
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17640 killed at Wed May 10 11:40:46 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9323 starting at Wed May 10 11:40:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17711 >/dev/null 2>/dev/null
selfserv_9323 with PID 17711 found at Wed May 10 11:40:47 UTC 2017
selfserv_9323 with PID 17711 started at Wed May 10 11:40:47 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:40:47 UTC 2017
ssl.sh: #2150: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 17711 at Wed May 10 11:40:47 UTC 2017
kill -USR1 17711
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17711 killed at Wed May 10 11:40:47 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9323 starting at Wed May 10 11:40:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17782 >/dev/null 2>/dev/null
selfserv_9323 with PID 17782 found at Wed May 10 11:40:47 UTC 2017
selfserv_9323 with PID 17782 started at Wed May 10 11:40:47 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:40:47 UTC 2017
ssl.sh: #2151: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 17782 at Wed May 10 11:40:47 UTC 2017
kill -USR1 17782
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17782 killed at Wed May 10 11:40:47 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9323 starting at Wed May 10 11:40:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17853 >/dev/null 2>/dev/null
selfserv_9323 with PID 17853 found at Wed May 10 11:40:47 UTC 2017
selfserv_9323 with PID 17853 started at Wed May 10 11:40:47 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:40:47 UTC 2017
ssl.sh: #2152: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 17853 at Wed May 10 11:40:47 UTC 2017
kill -USR1 17853
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17853 killed at Wed May 10 11:40:47 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9323 starting at Wed May 10 11:40:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17943 >/dev/null 2>/dev/null
selfserv_9323 with PID 17943 found at Wed May 10 11:40:47 UTC 2017
selfserv_9323 with PID 17943 started at Wed May 10 11:40:47 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:40:49 UTC 2017
ssl.sh: #2153: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 17943 at Wed May 10 11:40:49 UTC 2017
kill -USR1 17943
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17943 killed at Wed May 10 11:40:49 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9323 starting at Wed May 10 11:40:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18013 >/dev/null 2>/dev/null
selfserv_9323 with PID 18013 found at Wed May 10 11:40:49 UTC 2017
selfserv_9323 with PID 18013 started at Wed May 10 11:40:49 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:40:52 UTC 2017
ssl.sh: #2154: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 18013 at Wed May 10 11:40:52 UTC 2017
kill -USR1 18013
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18013 killed at Wed May 10 11:40:52 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9323 starting at Wed May 10 11:40:52 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18083 >/dev/null 2>/dev/null
selfserv_9323 with PID 18083 found at Wed May 10 11:40:52 UTC 2017
selfserv_9323 with PID 18083 started at Wed May 10 11:40:52 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:52 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:40:54 UTC 2017
ssl.sh: #2155: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 18083 at Wed May 10 11:40:54 UTC 2017
kill -USR1 18083
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18083 killed at Wed May 10 11:40:54 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9323 starting at Wed May 10 11:40:54 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18153 >/dev/null 2>/dev/null
selfserv_9323 with PID 18153 found at Wed May 10 11:40:54 UTC 2017
selfserv_9323 with PID 18153 started at Wed May 10 11:40:54 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:54 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:40:56 UTC 2017
ssl.sh: #2156: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 18153 at Wed May 10 11:40:56 UTC 2017
kill -USR1 18153
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18153 killed at Wed May 10 11:40:56 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9323 starting at Wed May 10 11:40:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18223 >/dev/null 2>/dev/null
selfserv_9323 with PID 18223 found at Wed May 10 11:40:56 UTC 2017
selfserv_9323 with PID 18223 started at Wed May 10 11:40:56 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:56 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:40:56 UTC 2017
ssl.sh: #2157: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 18223 at Wed May 10 11:40:56 UTC 2017
kill -USR1 18223
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18223 killed at Wed May 10 11:40:56 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9323 starting at Wed May 10 11:40:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18293 >/dev/null 2>/dev/null
selfserv_9323 with PID 18293 found at Wed May 10 11:40:56 UTC 2017
selfserv_9323 with PID 18293 started at Wed May 10 11:40:56 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:56 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:40:57 UTC 2017
ssl.sh: #2158: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 18293 at Wed May 10 11:40:57 UTC 2017
kill -USR1 18293
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18293 killed at Wed May 10 11:40:57 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9323 starting at Wed May 10 11:40:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18364 >/dev/null 2>/dev/null
selfserv_9323 with PID 18364 found at Wed May 10 11:40:57 UTC 2017
selfserv_9323 with PID 18364 started at Wed May 10 11:40:57 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:57 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:40:57 UTC 2017
ssl.sh: #2159: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 18364 at Wed May 10 11:40:57 UTC 2017
kill -USR1 18364
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18364 killed at Wed May 10 11:40:57 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9323 starting at Wed May 10 11:40:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18435 >/dev/null 2>/dev/null
selfserv_9323 with PID 18435 found at Wed May 10 11:40:57 UTC 2017
selfserv_9323 with PID 18435 started at Wed May 10 11:40:57 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:57 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:40:57 UTC 2017
ssl.sh: #2160: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 18435 at Wed May 10 11:40:57 UTC 2017
kill -USR1 18435
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18435 killed at Wed May 10 11:40:57 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9323 starting at Wed May 10 11:40:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18506 >/dev/null 2>/dev/null
selfserv_9323 with PID 18506 found at Wed May 10 11:40:57 UTC 2017
selfserv_9323 with PID 18506 started at Wed May 10 11:40:57 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:57 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:40:58 UTC 2017
ssl.sh: #2161: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 18506 at Wed May 10 11:40:58 UTC 2017
kill -USR1 18506
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18506 killed at Wed May 10 11:40:58 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9323 starting at Wed May 10 11:40:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18577 >/dev/null 2>/dev/null
selfserv_9323 with PID 18577 found at Wed May 10 11:40:58 UTC 2017
selfserv_9323 with PID 18577 started at Wed May 10 11:40:58 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:40:58 UTC 2017
ssl.sh: #2162: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 18577 at Wed May 10 11:40:58 UTC 2017
kill -USR1 18577
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18577 killed at Wed May 10 11:40:58 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:40:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18663 >/dev/null 2>/dev/null
selfserv_9323 with PID 18663 found at Wed May 10 11:40:58 UTC 2017
selfserv_9323 with PID 18663 started at Wed May 10 11:40:58 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:40:59 UTC 2017
ssl.sh: #2163: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 18663 at Wed May 10 11:40:59 UTC 2017
kill -USR1 18663
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18663 killed at Wed May 10 11:40:59 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9323 starting at Wed May 10 11:40:59 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18733 >/dev/null 2>/dev/null
selfserv_9323 with PID 18733 found at Wed May 10 11:40:59 UTC 2017
selfserv_9323 with PID 18733 started at Wed May 10 11:40:59 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:59 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:40:59 UTC 2017
ssl.sh: #2164: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 18733 at Wed May 10 11:40:59 UTC 2017
kill -USR1 18733
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18733 killed at Wed May 10 11:40:59 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:40:59 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18804 >/dev/null 2>/dev/null
selfserv_9323 with PID 18804 found at Wed May 10 11:40:59 UTC 2017
selfserv_9323 with PID 18804 started at Wed May 10 11:40:59 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:59 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:40:59 UTC 2017
ssl.sh: #2165: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 18804 at Wed May 10 11:40:59 UTC 2017
kill -USR1 18804
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18804 killed at Wed May 10 11:40:59 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:40:59 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:40:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18874 >/dev/null 2>/dev/null
selfserv_9323 with PID 18874 found at Wed May 10 11:40:59 UTC 2017
selfserv_9323 with PID 18874 started at Wed May 10 11:40:59 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:40:59 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:41:00 UTC 2017
ssl.sh: #2166: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 18874 at Wed May 10 11:41:00 UTC 2017
kill -USR1 18874
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18874 killed at Wed May 10 11:41:00 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9323 starting at Wed May 10 11:41:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18944 >/dev/null 2>/dev/null
selfserv_9323 with PID 18944 found at Wed May 10 11:41:00 UTC 2017
selfserv_9323 with PID 18944 started at Wed May 10 11:41:00 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:41:00 UTC 2017
ssl.sh: #2167: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 18944 at Wed May 10 11:41:00 UTC 2017
kill -USR1 18944
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18944 killed at Wed May 10 11:41:00 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9323 starting at Wed May 10 11:41:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19015 >/dev/null 2>/dev/null
selfserv_9323 with PID 19015 found at Wed May 10 11:41:00 UTC 2017
selfserv_9323 with PID 19015 started at Wed May 10 11:41:00 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:41:00 UTC 2017
ssl.sh: #2168: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 19015 at Wed May 10 11:41:00 UTC 2017
kill -USR1 19015
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19015 killed at Wed May 10 11:41:00 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9323 starting at Wed May 10 11:41:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19101 >/dev/null 2>/dev/null
selfserv_9323 with PID 19101 found at Wed May 10 11:41:00 UTC 2017
selfserv_9323 with PID 19101 started at Wed May 10 11:41:00 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:41:01 UTC 2017
ssl.sh: #2169: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 19101 at Wed May 10 11:41:01 UTC 2017
kill -USR1 19101
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19101 killed at Wed May 10 11:41:01 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9323 starting at Wed May 10 11:41:01 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19171 >/dev/null 2>/dev/null
selfserv_9323 with PID 19171 found at Wed May 10 11:41:01 UTC 2017
selfserv_9323 with PID 19171 started at Wed May 10 11:41:01 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:01 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:41:01 UTC 2017
ssl.sh: #2170: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 19171 at Wed May 10 11:41:01 UTC 2017
kill -USR1 19171
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19171 killed at Wed May 10 11:41:01 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9323 starting at Wed May 10 11:41:01 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19242 >/dev/null 2>/dev/null
selfserv_9323 with PID 19242 found at Wed May 10 11:41:01 UTC 2017
selfserv_9323 with PID 19242 started at Wed May 10 11:41:01 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:01 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 5 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:41:02 UTC 2017
ssl.sh: #2171: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 19242 at Wed May 10 11:41:02 UTC 2017
kill -USR1 19242
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19242 killed at Wed May 10 11:41:02 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9323 starting at Wed May 10 11:41:02 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19312 >/dev/null 2>/dev/null
selfserv_9323 with PID 19312 found at Wed May 10 11:41:02 UTC 2017
selfserv_9323 with PID 19312 started at Wed May 10 11:41:02 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:02 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:41:03 UTC 2017
ssl.sh: #2172: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 19312 at Wed May 10 11:41:03 UTC 2017
kill -USR1 19312
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19312 killed at Wed May 10 11:41:03 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9323 starting at Wed May 10 11:41:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19392 >/dev/null 2>/dev/null
selfserv_9323 with PID 19392 found at Wed May 10 11:41:03 UTC 2017
selfserv_9323 with PID 19392 started at Wed May 10 11:41:03 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:03 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:41:15 UTC 2017
ssl.sh: #2173: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 19392 at Wed May 10 11:41:15 UTC 2017
kill -USR1 19392
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19392 killed at Wed May 10 11:41:15 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9323 starting at Wed May 10 11:41:15 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19474 >/dev/null 2>/dev/null
selfserv_9323 with PID 19474 found at Wed May 10 11:41:15 UTC 2017
selfserv_9323 with PID 19474 started at Wed May 10 11:41:15 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:41:26 UTC 2017
ssl.sh: #2174: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 19474 at Wed May 10 11:41:26 UTC 2017
kill -USR1 19474
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19474 killed at Wed May 10 11:41:26 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9323 starting at Wed May 10 11:41:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19544 >/dev/null 2>/dev/null
selfserv_9323 with PID 19544 found at Wed May 10 11:41:26 UTC 2017
selfserv_9323 with PID 19544 started at Wed May 10 11:41:26 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 5 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:41:27 UTC 2017
ssl.sh: #2175: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 19544 at Wed May 10 11:41:27 UTC 2017
kill -USR1 19544
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19544 killed at Wed May 10 11:41:27 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9323 starting at Wed May 10 11:41:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19614 >/dev/null 2>/dev/null
selfserv_9323 with PID 19614 found at Wed May 10 11:41:27 UTC 2017
selfserv_9323 with PID 19614 started at Wed May 10 11:41:27 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:41:28 UTC 2017
ssl.sh: #2176: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 19614 at Wed May 10 11:41:28 UTC 2017
kill -USR1 19614
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19614 killed at Wed May 10 11:41:28 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9323 starting at Wed May 10 11:41:28 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19684 >/dev/null 2>/dev/null
selfserv_9323 with PID 19684 found at Wed May 10 11:41:28 UTC 2017
selfserv_9323 with PID 19684 started at Wed May 10 11:41:28 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:41:28 UTC 2017
ssl.sh: #2177: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 19684 at Wed May 10 11:41:28 UTC 2017
kill -USR1 19684
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19684 killed at Wed May 10 11:41:28 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:41:28 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19769 >/dev/null 2>/dev/null
selfserv_9323 with PID 19769 found at Wed May 10 11:41:28 UTC 2017
selfserv_9323 with PID 19769 started at Wed May 10 11:41:28 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:41:30 UTC 2017
ssl.sh: #2178: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 19769 at Wed May 10 11:41:30 UTC 2017
kill -USR1 19769
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19769 killed at Wed May 10 11:41:30 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9323 starting at Wed May 10 11:41:30 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19839 >/dev/null 2>/dev/null
selfserv_9323 with PID 19839 found at Wed May 10 11:41:30 UTC 2017
selfserv_9323 with PID 19839 started at Wed May 10 11:41:30 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:41:31 UTC 2017
ssl.sh: #2179: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 19839 at Wed May 10 11:41:31 UTC 2017
kill -USR1 19839
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19839 killed at Wed May 10 11:41:31 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:41:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19925 >/dev/null 2>/dev/null
selfserv_9323 with PID 19925 found at Wed May 10 11:41:31 UTC 2017
selfserv_9323 with PID 19925 started at Wed May 10 11:41:31 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:41:49 UTC 2017
ssl.sh: #2180: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 19925 at Wed May 10 11:41:49 UTC 2017
kill -USR1 19925
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19925 killed at Wed May 10 11:41:49 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:41:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:41:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19995 >/dev/null 2>/dev/null
selfserv_9323 with PID 19995 found at Wed May 10 11:41:49 UTC 2017
selfserv_9323 with PID 19995 started at Wed May 10 11:41:49 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:41:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:42:07 UTC 2017
ssl.sh: #2181: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 19995 at Wed May 10 11:42:07 UTC 2017
kill -USR1 19995
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19995 killed at Wed May 10 11:42:07 UTC 2017
ssl.sh: SSL - FIPS mode off for server ===============================
ssl.sh: Turning FIPS off for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -fips false -force
FIPS mode disabled.
ssl.sh: #2182:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -list
ssl.sh: #2183:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2184:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -fips false -force
FIPS mode disabled.
ssl.sh: #2185:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -list
ssl.sh: #2186:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2187:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: SSL - FIPS mode on for client ===============================
ssl.sh: Turning FIPS on for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -fips true -force
FIPS mode enabled.
ssl.sh: #2188:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -list
ssl.sh: #2189:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2190:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -fips true -force
FIPS mode enabled.
ssl.sh: #2191:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2192:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2193:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server normal/client fips  - with ECC ===============================
selfserv_9323 starting at Wed May 10 11:42:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:42:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20187 >/dev/null 2>/dev/null
selfserv_9323 with PID 20187 found at Wed May 10 11:42:07 UTC 2017
selfserv_9323 with PID 20187 started at Wed May 10 11:42:07 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2194: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2195: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2196: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2197: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2198: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2199: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2200: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2201: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2202: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2203: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2204: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2205: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2206: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2207: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2208: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2209: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2210: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2211: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2212: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2213: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2214: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2215: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2216: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2217: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2218: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2219: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2220: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2221: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2222: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2223: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2224: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2225: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2226: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2227: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2228: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2229: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2230: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2231: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2232: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2233: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2234: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2235: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2236: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2237: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2238: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2239: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2240: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2241: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2242: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2243: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2244: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2245: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2246: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2247: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2248: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2249: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2250: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2251: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2252: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2253: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2254: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2255: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2256: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2257: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2258: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2259: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2260: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2261: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2262: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2263: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2264: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2265: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2266: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2267: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2268: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2269: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2270: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2271: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2272: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2273: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2274: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2275: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2276: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2277: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2278: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2279: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2280: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2281: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2282: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2283: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2284: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2285: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2286: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2287: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2288: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2289: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2290: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2291: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2292: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2293: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2294: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2295: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2296: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2297: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2298: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2299: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2300: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2301: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2302: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2303: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2304: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2305: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2306: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2307: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2308: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2309: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2310: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2311: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2312: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2313: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2314: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 20187 at Wed May 10 11:42:19 UTC 2017
kill -USR1 20187
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20187 killed at Wed May 10 11:42:19 UTC 2017
ssl.sh: SSL Client Authentication  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:42:19 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:42:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22456 >/dev/null 2>/dev/null
selfserv_9323 with PID 22456 found at Wed May 10 11:42:19 UTC 2017
selfserv_9323 with PID 22456 started at Wed May 10 11:42:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2315: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 22456 at Wed May 10 11:42:19 UTC 2017
kill -USR1 22456
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 22456 killed at Wed May 10 11:42:19 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:42:19 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:42:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22513 >/dev/null 2>/dev/null
selfserv_9323 with PID 22513 found at Wed May 10 11:42:19 UTC 2017
selfserv_9323 with PID 22513 started at Wed May 10 11:42:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2316: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 22513 at Wed May 10 11:42:45 UTC 2017
kill -USR1 22513
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 22513 killed at Wed May 10 11:42:45 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:42:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:42:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22570 >/dev/null 2>/dev/null
selfserv_9323 with PID 22570 found at Wed May 10 11:42:45 UTC 2017
selfserv_9323 with PID 22570 started at Wed May 10 11:42:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2317: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 22570 at Wed May 10 11:42:45 UTC 2017
kill -USR1 22570
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 22570 killed at Wed May 10 11:42:46 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:42:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:42:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22633 >/dev/null 2>/dev/null
selfserv_9323 with PID 22633 found at Wed May 10 11:42:46 UTC 2017
selfserv_9323 with PID 22633 started at Wed May 10 11:42:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2318: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 22633 at Wed May 10 11:42:46 UTC 2017
kill -USR1 22633
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 22633 killed at Wed May 10 11:42:46 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:42:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:42:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22690 >/dev/null 2>/dev/null
selfserv_9323 with PID 22690 found at Wed May 10 11:42:46 UTC 2017
selfserv_9323 with PID 22690 started at Wed May 10 11:42:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2319: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 22690 at Wed May 10 11:43:09 UTC 2017
kill -USR1 22690
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 22690 killed at Wed May 10 11:43:09 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:43:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:43:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22747 >/dev/null 2>/dev/null
selfserv_9323 with PID 22747 found at Wed May 10 11:43:09 UTC 2017
selfserv_9323 with PID 22747 started at Wed May 10 11:43:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2320: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 22747 at Wed May 10 11:43:09 UTC 2017
kill -USR1 22747
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 22747 killed at Wed May 10 11:43:09 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:43:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:43:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22810 >/dev/null 2>/dev/null
selfserv_9323 with PID 22810 found at Wed May 10 11:43:09 UTC 2017
selfserv_9323 with PID 22810 started at Wed May 10 11:43:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2321: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 22810 at Wed May 10 11:43:09 UTC 2017
kill -USR1 22810
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 22810 killed at Wed May 10 11:43:09 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:43:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:43:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22867 >/dev/null 2>/dev/null
selfserv_9323 with PID 22867 found at Wed May 10 11:43:09 UTC 2017
selfserv_9323 with PID 22867 started at Wed May 10 11:43:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2322: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 22867 at Wed May 10 11:43:36 UTC 2017
kill -USR1 22867
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 22867 killed at Wed May 10 11:43:36 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:43:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:43:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22924 >/dev/null 2>/dev/null
selfserv_9323 with PID 22924 found at Wed May 10 11:43:36 UTC 2017
selfserv_9323 with PID 22924 started at Wed May 10 11:43:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2323: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 22924 at Wed May 10 11:43:36 UTC 2017
kill -USR1 22924
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 22924 killed at Wed May 10 11:43:36 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:43:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:43:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22987 >/dev/null 2>/dev/null
selfserv_9323 with PID 22987 found at Wed May 10 11:43:36 UTC 2017
selfserv_9323 with PID 22987 started at Wed May 10 11:43:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2324: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 22987 at Wed May 10 11:43:36 UTC 2017
kill -USR1 22987
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 22987 killed at Wed May 10 11:43:36 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:43:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:43:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23044 >/dev/null 2>/dev/null
selfserv_9323 with PID 23044 found at Wed May 10 11:43:36 UTC 2017
selfserv_9323 with PID 23044 started at Wed May 10 11:43:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2325: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 23044 at Wed May 10 11:44:02 UTC 2017
kill -USR1 23044
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23044 killed at Wed May 10 11:44:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:44:02 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:44:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23101 >/dev/null 2>/dev/null
selfserv_9323 with PID 23101 found at Wed May 10 11:44:02 UTC 2017
selfserv_9323 with PID 23101 started at Wed May 10 11:44:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2326: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23101 at Wed May 10 11:44:03 UTC 2017
kill -USR1 23101
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23101 killed at Wed May 10 11:44:03 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:44:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:44:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23164 >/dev/null 2>/dev/null
selfserv_9323 with PID 23164 found at Wed May 10 11:44:03 UTC 2017
selfserv_9323 with PID 23164 started at Wed May 10 11:44:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2327: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 23164 at Wed May 10 11:44:03 UTC 2017
kill -USR1 23164
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23164 killed at Wed May 10 11:44:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:44:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:44:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23221 >/dev/null 2>/dev/null
selfserv_9323 with PID 23221 found at Wed May 10 11:44:03 UTC 2017
selfserv_9323 with PID 23221 started at Wed May 10 11:44:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2328: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 23221 at Wed May 10 11:44:26 UTC 2017
kill -USR1 23221
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23221 killed at Wed May 10 11:44:26 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:44:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:44:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23282 >/dev/null 2>/dev/null
selfserv_9323 with PID 23282 found at Wed May 10 11:44:26 UTC 2017
selfserv_9323 with PID 23282 started at Wed May 10 11:44:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2329: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23282 at Wed May 10 11:44:26 UTC 2017
kill -USR1 23282
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23282 killed at Wed May 10 11:44:26 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:44:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:44:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23363 >/dev/null 2>/dev/null
selfserv_9323 with PID 23363 found at Wed May 10 11:44:26 UTC 2017
selfserv_9323 with PID 23363 started at Wed May 10 11:44:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2330: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 23363 at Wed May 10 11:44:52 UTC 2017
kill -USR1 23363
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23363 killed at Wed May 10 11:44:52 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:44:52 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:44:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23429 >/dev/null 2>/dev/null
selfserv_9323 with PID 23429 found at Wed May 10 11:44:52 UTC 2017
selfserv_9323 with PID 23429 started at Wed May 10 11:44:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2331: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23429 at Wed May 10 11:44:53 UTC 2017
kill -USR1 23429
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23429 killed at Wed May 10 11:44:53 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:44:53 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:44:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23490 >/dev/null 2>/dev/null
selfserv_9323 with PID 23490 found at Wed May 10 11:44:53 UTC 2017
selfserv_9323 with PID 23490 started at Wed May 10 11:44:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2332: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 23490 at Wed May 10 11:45:16 UTC 2017
kill -USR1 23490
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23490 killed at Wed May 10 11:45:16 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:45:16 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:45:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23547 >/dev/null 2>/dev/null
selfserv_9323 with PID 23547 found at Wed May 10 11:45:16 UTC 2017
selfserv_9323 with PID 23547 started at Wed May 10 11:45:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2333: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23547 at Wed May 10 11:45:16 UTC 2017
kill -USR1 23547
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23547 killed at Wed May 10 11:45:16 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:45:16 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:45:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23608 >/dev/null 2>/dev/null
selfserv_9323 with PID 23608 found at Wed May 10 11:45:16 UTC 2017
selfserv_9323 with PID 23608 started at Wed May 10 11:45:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2334: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 23608 at Wed May 10 11:45:42 UTC 2017
kill -USR1 23608
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23608 killed at Wed May 10 11:45:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:45:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:45:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23666 >/dev/null 2>/dev/null
selfserv_9323 with PID 23666 found at Wed May 10 11:45:43 UTC 2017
selfserv_9323 with PID 23666 started at Wed May 10 11:45:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2335: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23666 at Wed May 10 11:45:43 UTC 2017
kill -USR1 23666
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23666 killed at Wed May 10 11:45:43 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:45:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:45:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23727 >/dev/null 2>/dev/null
selfserv_9323 with PID 23727 found at Wed May 10 11:45:43 UTC 2017
selfserv_9323 with PID 23727 started at Wed May 10 11:45:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2336: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 23727 at Wed May 10 11:46:09 UTC 2017
kill -USR1 23727
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23727 killed at Wed May 10 11:46:09 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:46:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23784 >/dev/null 2>/dev/null
selfserv_9323 with PID 23784 found at Wed May 10 11:46:09 UTC 2017
selfserv_9323 with PID 23784 started at Wed May 10 11:46:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2337: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23784 at Wed May 10 11:46:09 UTC 2017
kill -USR1 23784
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23784 killed at Wed May 10 11:46:09 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:46:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23845 >/dev/null 2>/dev/null
selfserv_9323 with PID 23845 found at Wed May 10 11:46:09 UTC 2017
selfserv_9323 with PID 23845 started at Wed May 10 11:46:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2338: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 23845 at Wed May 10 11:46:32 UTC 2017
kill -USR1 23845
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23845 killed at Wed May 10 11:46:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:46:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23902 >/dev/null 2>/dev/null
selfserv_9323 with PID 23902 found at Wed May 10 11:46:32 UTC 2017
selfserv_9323 with PID 23902 started at Wed May 10 11:46:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2339: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23902 at Wed May 10 11:46:33 UTC 2017
kill -USR1 23902
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23902 killed at Wed May 10 11:46:33 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9323 starting at Wed May 10 11:46:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23980 >/dev/null 2>/dev/null
selfserv_9323 with PID 23980 found at Wed May 10 11:46:33 UTC 2017
selfserv_9323 with PID 23980 started at Wed May 10 11:46:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2340: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23980 at Wed May 10 11:46:33 UTC 2017
kill -USR1 23980
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23980 killed at Wed May 10 11:46:33 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9323 starting at Wed May 10 11:46:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24043 >/dev/null 2>/dev/null
selfserv_9323 with PID 24043 found at Wed May 10 11:46:33 UTC 2017
selfserv_9323 with PID 24043 started at Wed May 10 11:46:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2341: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 24043 at Wed May 10 11:46:33 UTC 2017
kill -USR1 24043
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24043 killed at Wed May 10 11:46:33 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9323 starting at Wed May 10 11:46:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24106 >/dev/null 2>/dev/null
selfserv_9323 with PID 24106 found at Wed May 10 11:46:33 UTC 2017
selfserv_9323 with PID 24106 started at Wed May 10 11:46:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2342: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 24106 at Wed May 10 11:46:33 UTC 2017
kill -USR1 24106
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24106 killed at Wed May 10 11:46:33 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9323 starting at Wed May 10 11:46:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24169 >/dev/null 2>/dev/null
selfserv_9323 with PID 24169 found at Wed May 10 11:46:33 UTC 2017
selfserv_9323 with PID 24169 started at Wed May 10 11:46:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2343: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 24169 at Wed May 10 11:46:34 UTC 2017
kill -USR1 24169
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24169 killed at Wed May 10 11:46:34 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9323 starting at Wed May 10 11:46:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24232 >/dev/null 2>/dev/null
selfserv_9323 with PID 24232 found at Wed May 10 11:46:34 UTC 2017
selfserv_9323 with PID 24232 started at Wed May 10 11:46:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #2344: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 24232 at Wed May 10 11:46:34 UTC 2017
kill -USR1 24232
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24232 killed at Wed May 10 11:46:34 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9323 starting at Wed May 10 11:46:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24295 >/dev/null 2>/dev/null
selfserv_9323 with PID 24295 found at Wed May 10 11:46:34 UTC 2017
selfserv_9323 with PID 24295 started at Wed May 10 11:46:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2345: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 24295 at Wed May 10 11:46:34 UTC 2017
kill -USR1 24295
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24295 killed at Wed May 10 11:46:34 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9323 starting at Wed May 10 11:46:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24358 >/dev/null 2>/dev/null
selfserv_9323 with PID 24358 found at Wed May 10 11:46:34 UTC 2017
selfserv_9323 with PID 24358 started at Wed May 10 11:46:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2346: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 24358 at Wed May 10 11:46:34 UTC 2017
kill -USR1 24358
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24358 killed at Wed May 10 11:46:34 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9323 starting at Wed May 10 11:46:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24421 >/dev/null 2>/dev/null
selfserv_9323 with PID 24421 found at Wed May 10 11:46:34 UTC 2017
selfserv_9323 with PID 24421 started at Wed May 10 11:46:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #2347: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 24421 at Wed May 10 11:46:34 UTC 2017
kill -USR1 24421
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24421 killed at Wed May 10 11:46:34 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9323 starting at Wed May 10 11:46:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24484 >/dev/null 2>/dev/null
selfserv_9323 with PID 24484 found at Wed May 10 11:46:34 UTC 2017
selfserv_9323 with PID 24484 started at Wed May 10 11:46:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2348: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 24484 at Wed May 10 11:46:35 UTC 2017
kill -USR1 24484
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24484 killed at Wed May 10 11:46:35 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9323 starting at Wed May 10 11:46:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24547 >/dev/null 2>/dev/null
selfserv_9323 with PID 24547 found at Wed May 10 11:46:35 UTC 2017
selfserv_9323 with PID 24547 started at Wed May 10 11:46:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2349: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 24547 at Wed May 10 11:46:35 UTC 2017
kill -USR1 24547
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24547 killed at Wed May 10 11:46:35 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:46:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24646 >/dev/null 2>/dev/null
selfserv_9323 with PID 24646 found at Wed May 10 11:46:35 UTC 2017
selfserv_9323 with PID 24646 started at Wed May 10 11:46:35 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:35 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:46:36 UTC 2017
ssl.sh: #2350: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 24646 at Wed May 10 11:46:36 UTC 2017
kill -USR1 24646
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24646 killed at Wed May 10 11:46:36 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:46:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24716 >/dev/null 2>/dev/null
selfserv_9323 with PID 24716 found at Wed May 10 11:46:36 UTC 2017
selfserv_9323 with PID 24716 started at Wed May 10 11:46:36 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:46:36 UTC 2017
ssl.sh: #2351: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 24716 at Wed May 10 11:46:36 UTC 2017
kill -USR1 24716
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24716 killed at Wed May 10 11:46:36 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9323 starting at Wed May 10 11:46:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24786 >/dev/null 2>/dev/null
selfserv_9323 with PID 24786 found at Wed May 10 11:46:36 UTC 2017
selfserv_9323 with PID 24786 started at Wed May 10 11:46:36 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:46:36 UTC 2017
ssl.sh: #2352: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 24786 at Wed May 10 11:46:36 UTC 2017
kill -USR1 24786
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24786 killed at Wed May 10 11:46:37 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9323 starting at Wed May 10 11:46:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24857 >/dev/null 2>/dev/null
selfserv_9323 with PID 24857 found at Wed May 10 11:46:37 UTC 2017
selfserv_9323 with PID 24857 started at Wed May 10 11:46:37 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:46:37 UTC 2017
ssl.sh: #2353: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 24857 at Wed May 10 11:46:37 UTC 2017
kill -USR1 24857
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24857 killed at Wed May 10 11:46:37 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9323 starting at Wed May 10 11:46:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24929 >/dev/null 2>/dev/null
selfserv_9323 with PID 24929 found at Wed May 10 11:46:37 UTC 2017
selfserv_9323 with PID 24929 started at Wed May 10 11:46:37 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:46:37 UTC 2017
ssl.sh: #2354: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 24929 at Wed May 10 11:46:37 UTC 2017
kill -USR1 24929
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24929 killed at Wed May 10 11:46:37 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9323 starting at Wed May 10 11:46:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25001 >/dev/null 2>/dev/null
selfserv_9323 with PID 25001 found at Wed May 10 11:46:37 UTC 2017
selfserv_9323 with PID 25001 started at Wed May 10 11:46:37 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:46:37 UTC 2017
ssl.sh: #2355: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 25001 at Wed May 10 11:46:37 UTC 2017
kill -USR1 25001
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25001 killed at Wed May 10 11:46:37 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9323 starting at Wed May 10 11:46:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25074 >/dev/null 2>/dev/null
selfserv_9323 with PID 25074 found at Wed May 10 11:46:37 UTC 2017
selfserv_9323 with PID 25074 started at Wed May 10 11:46:37 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:46:37 UTC 2017
ssl.sh: #2356: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 25074 at Wed May 10 11:46:37 UTC 2017
kill -USR1 25074
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25074 killed at Wed May 10 11:46:38 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9323 starting at Wed May 10 11:46:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25151 >/dev/null 2>/dev/null
selfserv_9323 with PID 25151 found at Wed May 10 11:46:38 UTC 2017
selfserv_9323 with PID 25151 started at Wed May 10 11:46:38 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:46:38 UTC 2017
ssl.sh: #2357: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 25151 at Wed May 10 11:46:38 UTC 2017
kill -USR1 25151
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25151 killed at Wed May 10 11:46:38 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9323 starting at Wed May 10 11:46:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25228 >/dev/null 2>/dev/null
selfserv_9323 with PID 25228 found at Wed May 10 11:46:38 UTC 2017
selfserv_9323 with PID 25228 started at Wed May 10 11:46:38 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:46:39 UTC 2017
ssl.sh: #2358: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 25228 at Wed May 10 11:46:39 UTC 2017
kill -USR1 25228
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25228 killed at Wed May 10 11:46:39 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:46:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25331 >/dev/null 2>/dev/null
selfserv_9323 with PID 25331 found at Wed May 10 11:46:39 UTC 2017
selfserv_9323 with PID 25331 started at Wed May 10 11:46:39 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:46:39 UTC 2017
ssl.sh: #2359: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 25331 at Wed May 10 11:46:39 UTC 2017
kill -USR1 25331
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25331 killed at Wed May 10 11:46:39 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9323 starting at Wed May 10 11:46:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25401 >/dev/null 2>/dev/null
selfserv_9323 with PID 25401 found at Wed May 10 11:46:39 UTC 2017
selfserv_9323 with PID 25401 started at Wed May 10 11:46:39 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:46:39 UTC 2017
ssl.sh: #2360: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 25401 at Wed May 10 11:46:39 UTC 2017
kill -USR1 25401
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25401 killed at Wed May 10 11:46:39 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:46:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25472 >/dev/null 2>/dev/null
selfserv_9323 with PID 25472 found at Wed May 10 11:46:39 UTC 2017
selfserv_9323 with PID 25472 started at Wed May 10 11:46:39 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:46:40 UTC 2017
ssl.sh: #2361: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 25472 at Wed May 10 11:46:40 UTC 2017
kill -USR1 25472
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25472 killed at Wed May 10 11:46:40 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:46:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25542 >/dev/null 2>/dev/null
selfserv_9323 with PID 25542 found at Wed May 10 11:46:40 UTC 2017
selfserv_9323 with PID 25542 started at Wed May 10 11:46:40 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:46:40 UTC 2017
ssl.sh: #2362: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 25542 at Wed May 10 11:46:40 UTC 2017
kill -USR1 25542
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25542 killed at Wed May 10 11:46:40 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9323 starting at Wed May 10 11:46:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25612 >/dev/null 2>/dev/null
selfserv_9323 with PID 25612 found at Wed May 10 11:46:40 UTC 2017
selfserv_9323 with PID 25612 started at Wed May 10 11:46:40 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:46:40 UTC 2017
ssl.sh: #2363: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 25612 at Wed May 10 11:46:40 UTC 2017
kill -USR1 25612
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25612 killed at Wed May 10 11:46:40 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9323 starting at Wed May 10 11:46:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25683 >/dev/null 2>/dev/null
selfserv_9323 with PID 25683 found at Wed May 10 11:46:40 UTC 2017
selfserv_9323 with PID 25683 started at Wed May 10 11:46:40 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:46:41 UTC 2017
ssl.sh: #2364: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 25683 at Wed May 10 11:46:41 UTC 2017
kill -USR1 25683
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25683 killed at Wed May 10 11:46:41 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:46:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25792 >/dev/null 2>/dev/null
selfserv_9323 with PID 25792 found at Wed May 10 11:46:41 UTC 2017
selfserv_9323 with PID 25792 started at Wed May 10 11:46:41 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:46:42 UTC 2017
ssl.sh: #2365: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 25792 at Wed May 10 11:46:42 UTC 2017
kill -USR1 25792
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25792 killed at Wed May 10 11:46:42 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9323 starting at Wed May 10 11:46:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25862 >/dev/null 2>/dev/null
selfserv_9323 with PID 25862 found at Wed May 10 11:46:42 UTC 2017
selfserv_9323 with PID 25862 started at Wed May 10 11:46:42 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:46:43 UTC 2017
ssl.sh: #2366: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 25862 at Wed May 10 11:46:43 UTC 2017
kill -USR1 25862
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25862 killed at Wed May 10 11:46:43 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:46:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25945 >/dev/null 2>/dev/null
selfserv_9323 with PID 25945 found at Wed May 10 11:46:43 UTC 2017
selfserv_9323 with PID 25945 started at Wed May 10 11:46:43 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:46:55 UTC 2017
ssl.sh: #2367: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 25945 at Wed May 10 11:46:55 UTC 2017
kill -USR1 25945
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25945 killed at Wed May 10 11:46:55 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:46:55 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:46:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26015 >/dev/null 2>/dev/null
selfserv_9323 with PID 26015 found at Wed May 10 11:46:55 UTC 2017
selfserv_9323 with PID 26015 started at Wed May 10 11:46:55 UTC 2017
strsclnt -q -p 9323 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:55 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:47:07 UTC 2017
ssl.sh: #2368: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 26015 at Wed May 10 11:47:07 UTC 2017
kill -USR1 26015
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26015 killed at Wed May 10 11:47:07 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server normal/client fips  - with ECC ===============================
selfserv_9323 starting at Wed May 10 11:47:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:47:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26077 >/dev/null 2>/dev/null
selfserv_9323 with PID 26077 found at Wed May 10 11:47:07 UTC 2017
selfserv_9323 with PID 26077 started at Wed May 10 11:47:07 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2369: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2370: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2371: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2372: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2373: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2374: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2375: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2376: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2377: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2378: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2379: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2380: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2381: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2382: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2383: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2384: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2385: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2386: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2387: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2388: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2389: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2390: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2391: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2392: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2393: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2394: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2395: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2396: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2397: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2398: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2399: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2400: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2401: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2402: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2403: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2404: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2405: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2406: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2407: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2408: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2409: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2410: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2411: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2412: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2413: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2414: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2415: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2416: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2417: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2418: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2419: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2420: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2421: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2422: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2423: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2424: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2425: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2426: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2427: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2428: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2429: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2430: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2431: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2432: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2433: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2434: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2435: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2436: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2437: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2438: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2439: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2440: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2441: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2442: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2443: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2444: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2445: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2446: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2447: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2448: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2449: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2450: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2451: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2452: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2453: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2454: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2455: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2456: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2457: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2458: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2459: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2460: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2461: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2462: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2463: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2464: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2465: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2466: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2467: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2468: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2469: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2470: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2471: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2472: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2473: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2474: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2475: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2476: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2477: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2478: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2479: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2480: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2481: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2482: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2483: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2484: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2485: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2486: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2487: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2488: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9323 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2489: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 26077 at Wed May 10 11:47:19 UTC 2017
kill -USR1 26077
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26077 killed at Wed May 10 11:47:19 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:47:19 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:47:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28349 >/dev/null 2>/dev/null
selfserv_9323 with PID 28349 found at Wed May 10 11:47:19 UTC 2017
selfserv_9323 with PID 28349 started at Wed May 10 11:47:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2490: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28349 at Wed May 10 11:47:19 UTC 2017
kill -USR1 28349
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28349 killed at Wed May 10 11:47:19 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:47:19 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:47:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28406 >/dev/null 2>/dev/null
selfserv_9323 with PID 28406 found at Wed May 10 11:47:19 UTC 2017
selfserv_9323 with PID 28406 started at Wed May 10 11:47:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2491: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28406 at Wed May 10 11:47:46 UTC 2017
kill -USR1 28406
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28406 killed at Wed May 10 11:47:46 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:47:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:47:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28463 >/dev/null 2>/dev/null
selfserv_9323 with PID 28463 found at Wed May 10 11:47:46 UTC 2017
selfserv_9323 with PID 28463 started at Wed May 10 11:47:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2492: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 28463 at Wed May 10 11:47:47 UTC 2017
kill -USR1 28463
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28463 killed at Wed May 10 11:47:47 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:47:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:47:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28526 >/dev/null 2>/dev/null
selfserv_9323 with PID 28526 found at Wed May 10 11:47:47 UTC 2017
selfserv_9323 with PID 28526 started at Wed May 10 11:47:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2493: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28526 at Wed May 10 11:47:47 UTC 2017
kill -USR1 28526
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28526 killed at Wed May 10 11:47:47 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:47:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:47:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28583 >/dev/null 2>/dev/null
selfserv_9323 with PID 28583 found at Wed May 10 11:47:47 UTC 2017
selfserv_9323 with PID 28583 started at Wed May 10 11:47:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2494: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28583 at Wed May 10 11:48:10 UTC 2017
kill -USR1 28583
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28583 killed at Wed May 10 11:48:10 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:48:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:48:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28640 >/dev/null 2>/dev/null
selfserv_9323 with PID 28640 found at Wed May 10 11:48:10 UTC 2017
selfserv_9323 with PID 28640 started at Wed May 10 11:48:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2495: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 28640 at Wed May 10 11:48:10 UTC 2017
kill -USR1 28640
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28640 killed at Wed May 10 11:48:10 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:48:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:48:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28703 >/dev/null 2>/dev/null
selfserv_9323 with PID 28703 found at Wed May 10 11:48:10 UTC 2017
selfserv_9323 with PID 28703 started at Wed May 10 11:48:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2496: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28703 at Wed May 10 11:48:11 UTC 2017
kill -USR1 28703
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28703 killed at Wed May 10 11:48:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:48:11 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:48:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28760 >/dev/null 2>/dev/null
selfserv_9323 with PID 28760 found at Wed May 10 11:48:11 UTC 2017
selfserv_9323 with PID 28760 started at Wed May 10 11:48:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2497: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28760 at Wed May 10 11:48:38 UTC 2017
kill -USR1 28760
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28760 killed at Wed May 10 11:48:38 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:48:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:48:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28817 >/dev/null 2>/dev/null
selfserv_9323 with PID 28817 found at Wed May 10 11:48:38 UTC 2017
selfserv_9323 with PID 28817 started at Wed May 10 11:48:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2498: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 28817 at Wed May 10 11:48:38 UTC 2017
kill -USR1 28817
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28817 killed at Wed May 10 11:48:38 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:48:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:48:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28880 >/dev/null 2>/dev/null
selfserv_9323 with PID 28880 found at Wed May 10 11:48:38 UTC 2017
selfserv_9323 with PID 28880 started at Wed May 10 11:48:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2499: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28880 at Wed May 10 11:48:38 UTC 2017
kill -USR1 28880
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28880 killed at Wed May 10 11:48:38 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:48:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:48:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28937 >/dev/null 2>/dev/null
selfserv_9323 with PID 28937 found at Wed May 10 11:48:38 UTC 2017
selfserv_9323 with PID 28937 started at Wed May 10 11:48:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2500: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28937 at Wed May 10 11:49:05 UTC 2017
kill -USR1 28937
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28937 killed at Wed May 10 11:49:05 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:49:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:49:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28994 >/dev/null 2>/dev/null
selfserv_9323 with PID 28994 found at Wed May 10 11:49:06 UTC 2017
selfserv_9323 with PID 28994 started at Wed May 10 11:49:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2501: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 28994 at Wed May 10 11:49:06 UTC 2017
kill -USR1 28994
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28994 killed at Wed May 10 11:49:06 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:49:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:49:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29057 >/dev/null 2>/dev/null
selfserv_9323 with PID 29057 found at Wed May 10 11:49:06 UTC 2017
selfserv_9323 with PID 29057 started at Wed May 10 11:49:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2502: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 29057 at Wed May 10 11:49:06 UTC 2017
kill -USR1 29057
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29057 killed at Wed May 10 11:49:06 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:49:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:49:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29114 >/dev/null 2>/dev/null
selfserv_9323 with PID 29114 found at Wed May 10 11:49:06 UTC 2017
selfserv_9323 with PID 29114 started at Wed May 10 11:49:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2503: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 29114 at Wed May 10 11:49:29 UTC 2017
kill -USR1 29114
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29114 killed at Wed May 10 11:49:29 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:49:29 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:49:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29171 >/dev/null 2>/dev/null
selfserv_9323 with PID 29171 found at Wed May 10 11:49:29 UTC 2017
selfserv_9323 with PID 29171 started at Wed May 10 11:49:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2504: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 29171 at Wed May 10 11:49:29 UTC 2017
kill -USR1 29171
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29171 killed at Wed May 10 11:49:29 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:49:29 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:49:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29247 >/dev/null 2>/dev/null
selfserv_9323 with PID 29247 found at Wed May 10 11:49:29 UTC 2017
selfserv_9323 with PID 29247 started at Wed May 10 11:49:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2505: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 29247 at Wed May 10 11:49:57 UTC 2017
kill -USR1 29247
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29247 killed at Wed May 10 11:49:57 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:49:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:49:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29304 >/dev/null 2>/dev/null
selfserv_9323 with PID 29304 found at Wed May 10 11:49:57 UTC 2017
selfserv_9323 with PID 29304 started at Wed May 10 11:49:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2506: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 29304 at Wed May 10 11:49:57 UTC 2017
kill -USR1 29304
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29304 killed at Wed May 10 11:49:57 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:49:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:49:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29365 >/dev/null 2>/dev/null
selfserv_9323 with PID 29365 found at Wed May 10 11:49:57 UTC 2017
selfserv_9323 with PID 29365 started at Wed May 10 11:49:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2507: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 29365 at Wed May 10 11:50:20 UTC 2017
kill -USR1 29365
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29365 killed at Wed May 10 11:50:20 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:50:20 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:50:20 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29422 >/dev/null 2>/dev/null
selfserv_9323 with PID 29422 found at Wed May 10 11:50:20 UTC 2017
selfserv_9323 with PID 29422 started at Wed May 10 11:50:20 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2508: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 29422 at Wed May 10 11:50:21 UTC 2017
kill -USR1 29422
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29422 killed at Wed May 10 11:50:21 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:50:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:50:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29483 >/dev/null 2>/dev/null
selfserv_9323 with PID 29483 found at Wed May 10 11:50:21 UTC 2017
selfserv_9323 with PID 29483 started at Wed May 10 11:50:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2509: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 29483 at Wed May 10 11:50:48 UTC 2017
kill -USR1 29483
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29483 killed at Wed May 10 11:50:48 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:50:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:50:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29541 >/dev/null 2>/dev/null
selfserv_9323 with PID 29541 found at Wed May 10 11:50:48 UTC 2017
selfserv_9323 with PID 29541 started at Wed May 10 11:50:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2510: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 29541 at Wed May 10 11:50:48 UTC 2017
kill -USR1 29541
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29541 killed at Wed May 10 11:50:48 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:50:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:50:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29602 >/dev/null 2>/dev/null
selfserv_9323 with PID 29602 found at Wed May 10 11:50:48 UTC 2017
selfserv_9323 with PID 29602 started at Wed May 10 11:50:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2511: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 29602 at Wed May 10 11:51:15 UTC 2017
kill -USR1 29602
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29602 killed at Wed May 10 11:51:15 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:51:15 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29659 >/dev/null 2>/dev/null
selfserv_9323 with PID 29659 found at Wed May 10 11:51:16 UTC 2017
selfserv_9323 with PID 29659 started at Wed May 10 11:51:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2512: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 29659 at Wed May 10 11:51:16 UTC 2017
kill -USR1 29659
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29659 killed at Wed May 10 11:51:16 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:51:16 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29720 >/dev/null 2>/dev/null
selfserv_9323 with PID 29720 found at Wed May 10 11:51:16 UTC 2017
selfserv_9323 with PID 29720 started at Wed May 10 11:51:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2513: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 29720 at Wed May 10 11:51:39 UTC 2017
kill -USR1 29720
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29720 killed at Wed May 10 11:51:39 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:51:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29777 >/dev/null 2>/dev/null
selfserv_9323 with PID 29777 found at Wed May 10 11:51:39 UTC 2017
selfserv_9323 with PID 29777 started at Wed May 10 11:51:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2514: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 29777 at Wed May 10 11:51:39 UTC 2017
kill -USR1 29777
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29777 killed at Wed May 10 11:51:39 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:51:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29911 >/dev/null 2>/dev/null
selfserv_9323 with PID 29911 found at Wed May 10 11:51:39 UTC 2017
selfserv_9323 with PID 29911 started at Wed May 10 11:51:39 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:51:40 UTC 2017
ssl.sh: #2515: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 29911 at Wed May 10 11:51:40 UTC 2017
kill -USR1 29911
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29911 killed at Wed May 10 11:51:40 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:51:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29981 >/dev/null 2>/dev/null
selfserv_9323 with PID 29981 found at Wed May 10 11:51:40 UTC 2017
selfserv_9323 with PID 29981 started at Wed May 10 11:51:40 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:51:41 UTC 2017
ssl.sh: #2516: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 29981 at Wed May 10 11:51:41 UTC 2017
kill -USR1 29981
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29981 killed at Wed May 10 11:51:41 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9323 starting at Wed May 10 11:51:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30051 >/dev/null 2>/dev/null
selfserv_9323 with PID 30051 found at Wed May 10 11:51:41 UTC 2017
selfserv_9323 with PID 30051 started at Wed May 10 11:51:41 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:51:41 UTC 2017
ssl.sh: #2517: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 30051 at Wed May 10 11:51:41 UTC 2017
kill -USR1 30051
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30051 killed at Wed May 10 11:51:41 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9323 starting at Wed May 10 11:51:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30122 >/dev/null 2>/dev/null
selfserv_9323 with PID 30122 found at Wed May 10 11:51:41 UTC 2017
selfserv_9323 with PID 30122 started at Wed May 10 11:51:41 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:51:42 UTC 2017
ssl.sh: #2518: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 30122 at Wed May 10 11:51:42 UTC 2017
kill -USR1 30122
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30122 killed at Wed May 10 11:51:42 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9323 starting at Wed May 10 11:51:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30193 >/dev/null 2>/dev/null
selfserv_9323 with PID 30193 found at Wed May 10 11:51:42 UTC 2017
selfserv_9323 with PID 30193 started at Wed May 10 11:51:42 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:51:42 UTC 2017
ssl.sh: #2519: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 30193 at Wed May 10 11:51:42 UTC 2017
kill -USR1 30193
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30193 killed at Wed May 10 11:51:42 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9323 starting at Wed May 10 11:51:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30264 >/dev/null 2>/dev/null
selfserv_9323 with PID 30264 found at Wed May 10 11:51:42 UTC 2017
selfserv_9323 with PID 30264 started at Wed May 10 11:51:42 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:51:42 UTC 2017
ssl.sh: #2520: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 30264 at Wed May 10 11:51:42 UTC 2017
kill -USR1 30264
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30264 killed at Wed May 10 11:51:42 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9323 starting at Wed May 10 11:51:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30335 >/dev/null 2>/dev/null
selfserv_9323 with PID 30335 found at Wed May 10 11:51:42 UTC 2017
selfserv_9323 with PID 30335 started at Wed May 10 11:51:42 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:51:42 UTC 2017
ssl.sh: #2521: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 30335 at Wed May 10 11:51:43 UTC 2017
kill -USR1 30335
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30335 killed at Wed May 10 11:51:43 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:51:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30442 >/dev/null 2>/dev/null
selfserv_9323 with PID 30442 found at Wed May 10 11:51:43 UTC 2017
selfserv_9323 with PID 30442 started at Wed May 10 11:51:43 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:51:43 UTC 2017
ssl.sh: #2522: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 30442 at Wed May 10 11:51:43 UTC 2017
kill -USR1 30442
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30442 killed at Wed May 10 11:51:43 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9323 starting at Wed May 10 11:51:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30512 >/dev/null 2>/dev/null
selfserv_9323 with PID 30512 found at Wed May 10 11:51:43 UTC 2017
selfserv_9323 with PID 30512 started at Wed May 10 11:51:43 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:51:43 UTC 2017
ssl.sh: #2523: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 30512 at Wed May 10 11:51:43 UTC 2017
kill -USR1 30512
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30512 killed at Wed May 10 11:51:43 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:51:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30583 >/dev/null 2>/dev/null
selfserv_9323 with PID 30583 found at Wed May 10 11:51:43 UTC 2017
selfserv_9323 with PID 30583 started at Wed May 10 11:51:43 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:51:44 UTC 2017
ssl.sh: #2524: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 30583 at Wed May 10 11:51:44 UTC 2017
kill -USR1 30583
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30583 killed at Wed May 10 11:51:44 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:51:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30653 >/dev/null 2>/dev/null
selfserv_9323 with PID 30653 found at Wed May 10 11:51:44 UTC 2017
selfserv_9323 with PID 30653 started at Wed May 10 11:51:44 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:51:44 UTC 2017
ssl.sh: #2525: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 30653 at Wed May 10 11:51:44 UTC 2017
kill -USR1 30653
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30653 killed at Wed May 10 11:51:44 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9323 starting at Wed May 10 11:51:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30723 >/dev/null 2>/dev/null
selfserv_9323 with PID 30723 found at Wed May 10 11:51:44 UTC 2017
selfserv_9323 with PID 30723 started at Wed May 10 11:51:44 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:51:44 UTC 2017
ssl.sh: #2526: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 30723 at Wed May 10 11:51:44 UTC 2017
kill -USR1 30723
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30723 killed at Wed May 10 11:51:44 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9323 starting at Wed May 10 11:51:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30794 >/dev/null 2>/dev/null
selfserv_9323 with PID 30794 found at Wed May 10 11:51:45 UTC 2017
selfserv_9323 with PID 30794 started at Wed May 10 11:51:45 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:51:45 UTC 2017
ssl.sh: #2527: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 30794 at Wed May 10 11:51:45 UTC 2017
kill -USR1 30794
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30794 killed at Wed May 10 11:51:45 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:51:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30903 >/dev/null 2>/dev/null
selfserv_9323 with PID 30903 found at Wed May 10 11:51:45 UTC 2017
selfserv_9323 with PID 30903 started at Wed May 10 11:51:45 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:51:47 UTC 2017
ssl.sh: #2528: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 30903 at Wed May 10 11:51:47 UTC 2017
kill -USR1 30903
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30903 killed at Wed May 10 11:51:47 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9323 starting at Wed May 10 11:51:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30973 >/dev/null 2>/dev/null
selfserv_9323 with PID 30973 found at Wed May 10 11:51:47 UTC 2017
selfserv_9323 with PID 30973 started at Wed May 10 11:51:47 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:51:47 UTC 2017
ssl.sh: #2529: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 30973 at Wed May 10 11:51:47 UTC 2017
kill -USR1 30973
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30973 killed at Wed May 10 11:51:47 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:51:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:51:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31056 >/dev/null 2>/dev/null
selfserv_9323 with PID 31056 found at Wed May 10 11:51:47 UTC 2017
selfserv_9323 with PID 31056 started at Wed May 10 11:51:47 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:51:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:52:06 UTC 2017
ssl.sh: #2530: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 31056 at Wed May 10 11:52:06 UTC 2017
kill -USR1 31056
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31056 killed at Wed May 10 11:52:06 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9323 starting at Wed May 10 11:52:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:52:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31126 >/dev/null 2>/dev/null
selfserv_9323 with PID 31126 found at Wed May 10 11:52:06 UTC 2017
selfserv_9323 with PID 31126 started at Wed May 10 11:52:06 UTC 2017
strsclnt -q -p 9323 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:52:06 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:52:24 UTC 2017
ssl.sh: #2531: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9323 with PID 31126 at Wed May 10 11:52:24 UTC 2017
kill -USR1 31126
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31126 killed at Wed May 10 11:52:24 UTC 2017
ssl.sh: SSL - FIPS mode off for client ===============================
ssl.sh: Turning FIPS off for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -fips false -force
FIPS mode disabled.
ssl.sh: #2532:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -list
ssl.sh: #2533:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2534:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -fips false -force
FIPS mode disabled.
ssl.sh: #2535:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2536:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2537:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
TIMESTAMP ssl END: Wed May 10 11:52:24 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Wed May 10 11:52:24 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Wed May 10 11:52:24 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Wed May 10 11:52:24 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v3.24947 -t Test2 -f ../tests.pw
merge.sh: #2538: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2539: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2540: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2541: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2542: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2543: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:46 2017
            Not After : Tue May 10 11:36:46 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:49:06:bd:cf:b1:dc:df:cc:ab:91:7e:1b:cd:88:ed:
                    28:8c:03:d8:94:f0:a0:13:36:25:d6:5d:7f:b2:bd:a8:
                    69:a4:6f:f3:f1:c5:5c:24:73:26:29:e5:f0:67:59:81:
                    ea:d2:c4:a2:b1:0c:99:87:e8:d9:4a:9b:94:7c:4e:0c:
                    52:3f:bb:c0:49:83:5a:05:f7:65:ad:7b:f5:cb:6c:02:
                    e1:4a:eb:c1:e6:5e:30:9b:d5:1b:e9:7b:89:33:51:b8:
                    e8:1a:c4:c6:01:88:6e:8d:8a:95:d4:c5:b3:9d:96:fb:
                    cd:5b:4a:76:b7:28:e7:81:c0:9e:17:f2:86:fc:32:11:
                    de:73:26:34:f5:64:1a:9a:e5:71:44:1e:80:dd:7b:83:
                    1a:dd:0e:32:4a:82:af:69:1c:58:f3:ab:08:e6:d8:0a:
                    e5:9a:02:4e:88:c7:53:3f:7c:e9:31:15:ef:4c:79:a2:
                    cf:57:b5:9d:c0:b6:1c:c7:7c:77:c7:89:ae:02:45:e5:
                    c1:16:ec:48:8d:9a:5a:51:be:db:65:aa:b4:da:c0:7f:
                    ca:9b:17:8c:30:c2:ea:24:34:5c:73:aa:9d:75:d3:5c:
                    4a:1d:31:02:e6:ab:99:f9:e8:a4:d5:7d:d0:06:f9:d6:
                    ea:bc:ca:eb:1f:1e:9f:a7:3d:18:3c:b5:45:1d:a0:e5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:5b:11:46:eb:5c:af:5a:ce:ec:34:ab:0a:12:0d:b1:
        2c:50:63:2a:20:5f:8c:7e:bb:16:e5:09:aa:9b:1a:76:
        22:de:ee:f1:7b:cb:85:f7:26:d4:57:50:7f:62:29:f7:
        b6:b0:f0:45:4a:13:41:91:1f:c3:e2:71:89:1e:80:7b:
        84:12:31:97:3e:7c:5c:3f:a9:28:b8:f5:25:a8:c8:7f:
        6c:bb:93:b1:b1:5e:19:aa:90:ed:b2:9f:db:b4:6f:f6:
        dd:c2:d3:14:b8:0b:d2:9d:40:16:c5:36:12:bb:b9:0f:
        2d:ec:5d:6e:4b:20:c4:9d:34:2e:f9:47:4f:a5:f2:6f:
        c7:4b:fc:ab:86:e6:89:3a:12:4d:04:46:aa:d2:a3:99:
        da:bf:95:e4:2e:f6:4f:bf:5a:f8:8c:08:49:40:fb:1a:
        ba:f6:23:83:a4:dd:8a:8c:c7:e2:05:32:f4:31:6f:24:
        50:8c:cf:86:63:b4:a2:1d:ea:2d:fd:92:c1:f0:e7:36:
        f1:3e:3d:a2:9b:bc:52:da:03:d9:1b:cc:78:e0:4c:65:
        39:02:14:3b:55:ed:d7:4a:93:37:f2:82:49:f2:02:d8:
        b7:bb:dc:3d:86:c9:b1:1b:b3:1a:5f:eb:a4:6d:31:b1:
        0b:6e:44:34:af:0e:21:7c:27:4d:64:f9:dd:80:48:47
    Fingerprint (SHA-256):
        86:6F:D1:4B:BF:BA:07:83:A1:A5:C4:63:66:CE:42:D2:D7:56:29:80:26:C5:50:D3:4E:82:D3:D2:A6:D3:0C:82
    Fingerprint (SHA1):
        5C:51:B0:98:F9:5A:79:69:0E:72:3E:B3:AA:24:7C:A4:4E:99:5F:15
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2544: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:47 2017
            Not After : Tue May 10 11:36:47 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:ea:0d:0e:ef:f4:37:c5:24:a0:6e:fe:8a:1e:6d:ca:
                    a8:a2:03:66:78:30:a3:e0:a5:d4:7b:c9:b7:0e:14:77:
                    cc:2b:bd:7a:9a:45:3d:5b:4c:d9:eb:43:53:1c:ff:c2:
                    0f:2f:de:a2:7f:57:5b:7d:b2:05:88:9b:69:d7:c8:70:
                    25:9c:43:d2:17:4b:d4:17:b9:a9:57:6e:bf:2f:a6:0f:
                    6e:34:75:e4:d1:5b:ac:4e:84:6e:09:eb:ac:c2:0c:0f:
                    22:df:0e:51:1d:4a:9f:c5:5f:ec:fb:00:d5:d7:7a:1c:
                    c9:97:8f:f2:c9:a1:17:d1:2d:1f:aa:9b:2c:a1:ea:e0:
                    87:0b:6b:93:85:59:23:ae:e1:11:68:fb:25:b8:db:22:
                    c3:c6:33:03:39:01:7a:b2:67:86:53:d6:11:f2:4e:09:
                    cf:9c:f0:66:22:72:ab:fc:aa:4d:2f:4f:bd:50:49:12:
                    84:31:7f:f0:91:20:eb:d4:8c:fa:79:0f:ff:64:68:1f:
                    b1:2c:e8:a3:f5:66:1d:32:49:9c:ab:a1:5b:b6:ec:a6:
                    bb:6c:0a:69:6a:5c:ad:ca:bd:f3:2e:7b:db:8d:d7:4d:
                    9b:80:e6:86:4a:35:4a:4c:c4:75:d3:98:e3:47:02:d7:
                    02:44:c5:80:01:16:42:0f:b7:3c:4b:85:5e:1e:6c:7d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5d:e9:3d:08:57:c7:86:31:dd:d5:1d:27:46:85:8a:4f:
        63:73:19:26:5e:d0:c3:98:91:52:46:c7:e4:1f:b0:ca:
        55:1a:31:68:ed:00:3e:aa:fe:ef:74:11:f9:03:eb:5d:
        76:fb:b7:e4:ca:b2:d7:e8:66:37:15:1f:1f:fd:c1:c6:
        a1:9d:1f:95:f5:54:e2:78:2a:f1:62:e6:4e:29:44:9a:
        a3:d8:f6:95:19:85:65:61:aa:49:c3:99:65:2e:c0:2b:
        18:20:54:5e:95:46:bf:6f:7b:14:6e:af:96:8a:ac:4a:
        b3:da:14:39:b7:26:a9:89:6d:bd:5d:19:33:0b:0d:0f:
        06:46:5f:65:e1:c7:86:67:5f:f8:4e:a4:4e:fc:c4:4b:
        38:32:b3:65:fd:cf:3a:3c:c1:3b:7e:58:bd:5e:e9:df:
        3b:40:49:47:c4:7d:eb:e5:2d:c1:86:af:6f:92:a2:ed:
        f4:bf:ef:d6:8c:34:47:2c:fb:13:bc:06:12:a8:ae:dc:
        e0:f4:c7:25:1d:ea:d3:2b:11:70:0f:e8:ca:05:9d:cc:
        aa:92:9b:af:cc:63:42:8e:a4:ff:84:b0:e4:78:65:c5:
        bc:f7:7d:6b:4a:46:1f:0b:2b:57:ed:b7:bc:e4:f5:ca:
        1d:29:36:b6:04:0e:4c:ac:f8:68:96:3b:c1:fd:7c:60
    Fingerprint (SHA-256):
        54:84:A9:86:E1:81:92:12:AF:DE:5E:21:79:17:F2:7A:77:70:75:1F:6A:F2:E7:8B:2E:F2:A9:3D:1F:3E:19:1F
    Fingerprint (SHA1):
        BB:99:4F:EF:AA:E4:37:4E:59:B7:60:63:86:65:64:CD:93:32:76:73
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2545: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2546: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice-ec                                                     u,u,u
Dave                                                         u,u,u
localhost.localdomain-dsamixed                               ,,   
serverCA-dsa                                                 C,C,C
chain-2-clientCA-ec                                          ,,   
Alice #1                                                     ,,   
Dave-dsa                                                     ,,   
localhost.localdomain-ecmixed                                ,,   
localhost-sni.localdomain-dsamixed                           ,,   
Alice #99                                                    ,,   
Alice-dsamixed                                               u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
localhost.localdomain                                        u,u,u
localhost-sni.localdomain-ecmixed                            ,,   
clientCA                                                     T,C,C
Alice #3                                                     ,,   
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-ecmixed                                                u,u,u
Dave-ecmixed                                                 ,,   
localhost.localdomain-dsa                                    ,,   
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-ec                                 ,,   
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-ec                                           ,,   
serverCA-ec                                                  C,C,C
chain-1-clientCA-ec                                          ,,   
chain-1-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
Alice #2                                                     ,,   
Alice #4                                                     ,,   
Alice                                                        u,u,u
Dave-ec                                                      ,,   
localhost-sni.localdomain-dsa                                ,,   
ExtendedSSLUser-dsa                                          ,,   
ExtendedSSLUser-ecmixed                                      ,,   
chain-2-clientCA                                             ,,   
chain-1-clientCA-dsa                                         ,,   
Alice #100                                                   ,,   
Alice-dsa                                                    u,u,u
ExtendedSSLUser-dsamixed                                     ,,   
chain-2-clientCA-dsa                                         ,,   
bob@bogus.com                                                ,,   
Dave-dsamixed                                                ,,   
localhost.localdomain-ec                                     ,,   
clientCA-ec                                                  T,C,C
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v3.24947 -t Test2 -f ../tests.pw
merge.sh: #2547: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v1.24947 -t Test1 -f ../tests.pw
merge.sh: #2548: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #2549: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #2550: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #2551: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Wed May 10 11:36:58 2017
    Entry 1 (0x1):
        Serial Number: 42 (0x2a)
        Revocation Date: Wed May 10 11:36:53 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 11:36:24 2017
        Entry Extensions:
            Name: CRL reason code
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #2552: Verifying TestCA CRL  - PASSED
TEST_MODE=STANDARD
NSS_DEFAULT_DB_TYPE=dbm
TIMESTAMP merge END: Wed May 10 11:52:25 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Wed May 10 11:52:25 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Wed May 10 11:52:25 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Wed May 10 11:52:25 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #2553: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115226 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2554: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #2555: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2556: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #2557: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2558: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2559: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2560: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2561: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #2562: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2563: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2564: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2565: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2566: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #2567: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2568: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9334
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2569: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2570: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2571: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #2572: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2573: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2574: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2575: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #2576: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2577: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2578: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2579: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #2580: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2581: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2582: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2583: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #2584: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2585: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2586: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2587: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #2588: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2589: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9334
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2590: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2591: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #2592: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2593: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2594: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2595: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #2596: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2597: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2598: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2599: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #2600: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2601: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9334
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2602: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2603: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #2604: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2605: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2606: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2607: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #2608: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2609: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2610: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2611: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #2612: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2613: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9334
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2614: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2615: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170510115230Z
nextupdate=20180510115230Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed May 10 11:52:30 2017
    Next Update: Thu May 10 11:52:30 2018
    CRL Extensions:
chains.sh: #2616: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170510115231Z
addcert 2 20170510115231Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed May 10 11:52:31 2017
    Next Update: Thu May 10 11:52:30 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 11:52:31 2017
    CRL Extensions:
chains.sh: #2617: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510115231Z
nextupdate=20180510115231Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 11:52:31 2017
    Next Update: Thu May 10 11:52:31 2018
    CRL Extensions:
chains.sh: #2618: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510115232Z
addcert 2 20170510115232Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 11:52:32 2017
    Next Update: Thu May 10 11:52:31 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 11:52:32 2017
    CRL Extensions:
chains.sh: #2619: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510115233Z
addcert 4 20170510115233Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 11:52:33 2017
    Next Update: Thu May 10 11:52:31 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 11:52:32 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Wed May 10 11:52:33 2017
    CRL Extensions:
chains.sh: #2620: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510115233Z
nextupdate=20180510115233Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 11:52:33 2017
    Next Update: Thu May 10 11:52:33 2018
    CRL Extensions:
chains.sh: #2621: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510115234Z
addcert 2 20170510115234Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 11:52:34 2017
    Next Update: Thu May 10 11:52:33 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 11:52:34 2017
    CRL Extensions:
chains.sh: #2622: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510115235Z
addcert 3 20170510115235Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 11:52:35 2017
    Next Update: Thu May 10 11:52:33 2018
    Entry 1 (0x1):
        Serial Number: 3 (0x3)
        Revocation Date: Wed May 10 11:52:35 2017
    Entry 2 (0x2):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 11:52:34 2017
    CRL Extensions:
chains.sh: #2623: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510115235Z
nextupdate=20180510115235Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 11:52:35 2017
    Next Update: Thu May 10 11:52:35 2018
    CRL Extensions:
chains.sh: #2624: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510115236Z
addcert 2 20170510115236Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 11:52:36 2017
    Next Update: Thu May 10 11:52:35 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 11:52:36 2017
    CRL Extensions:
chains.sh: #2625: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510115237Z
addcert 3 20170510115237Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 11:52:37 2017
    Next Update: Thu May 10 11:52:35 2018
    Entry 1 (0x1):
        Serial Number: 3 (0x3)
        Revocation Date: Wed May 10 11:52:37 2017
    Entry 2 (0x2):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 11:52:36 2017
    CRL Extensions:
chains.sh: #2626: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #2627: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #2628: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2629: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2630: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2631: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2632: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2633: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #2634: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #2635: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2636: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #2637: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #2638: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #2639: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #2640: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #2641: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #2642: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #2643: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #2644: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #2645: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #2646: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #2647: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #2648: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #2649: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #2650: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Wed May 10 11:52:38 UTC 2017
httpserv -D -p 9333  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/aiahttp/http_pid.24947  &
trying to connect to httpserv at Wed May 10 11:52:38 UTC 2017
tstclnt -p 9333 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9333 (address=::1)
tstclnt: exiting with return code 0
kill -0 354 >/dev/null 2>/dev/null
httpserv with PID 354 found at Wed May 10 11:52:38 UTC 2017
httpserv with PID 354 started at Wed May 10 11:52:38 UTC 2017
tstclnt -h localhost.localdomain -p 9333 -q -t 20
chains.sh: #2651: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115226 (0x1e67bd9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed May 10 11:52:25 2017
            Not After : Tue May 10 11:52:25 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:54:f6:1b:86:a5:b0:41:5a:b2:0a:9b:9d:63:ed:6f:
                    58:04:23:f7:be:5b:db:19:8d:10:e9:5c:b8:4c:47:e5:
                    1d:72:07:ff:e5:29:f9:99:67:99:b1:ed:cf:bf:44:0c:
                    95:a2:f8:55:55:b6:5c:00:bc:ab:68:33:7f:2e:dc:a9:
                    e5:00:96:12:e7:7b:92:27:72:cd:c2:0d:b2:7a:00:f4:
                    92:b3:eb:96:d2:b9:cd:7d:73:66:b1:3d:c8:2a:68:54:
                    89:6d:39:1f:1d:0e:fa:09:5c:ff:6c:1f:d4:88:e6:14:
                    86:25:57:22:39:47:3d:c3:ab:a4:26:8f:d8:a4:30:be:
                    ab:0d:3d:0e:5c:e9:f6:8c:8a:b0:be:e6:3f:86:e4:13:
                    98:a5:68:08:d0:0d:26:98:76:9a:e7:c5:b1:23:6a:46:
                    5f:d2:2a:cd:7b:63:71:7a:3c:48:e0:1b:eb:38:75:a4:
                    1f:88:47:6a:e0:b6:74:39:53:51:10:9b:1b:8b:64:74:
                    e0:00:f1:0a:6d:82:94:ab:40:18:f4:03:cb:e7:0c:4e:
                    27:79:68:5f:aa:b9:c9:07:92:de:fa:2b:6f:f6:32:71:
                    a1:6c:a0:fe:f1:ee:76:b4:b0:7e:91:d8:88:f1:db:1c:
                    2f:ae:06:96:b2:1c:3e:c0:af:b2:ce:6b:b7:12:a9:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:13:24:62:30:21:fe:34:72:72:a9:e6:63:c5:59:6d:
        1a:66:a2:80:7a:fe:18:8a:ad:47:5d:24:d5:45:24:cf:
        c9:6d:80:0e:71:36:23:7c:34:c4:aa:07:e8:8c:ea:8b:
        08:c5:90:3e:86:be:dc:1f:43:08:23:41:ea:83:d7:05:
        f6:e0:cb:34:73:36:6f:f3:f9:d8:4e:f4:9f:b2:61:c0:
        cf:ba:70:4a:c8:3a:bc:71:d9:b6:83:c9:59:81:d8:2f:
        12:08:30:24:81:09:af:4e:04:db:65:cf:65:05:5a:2e:
        b3:32:01:61:56:c8:76:d4:55:9f:ed:ed:4c:4b:c8:53:
        3e:a3:60:da:4f:13:01:0f:18:40:fb:70:36:cd:f5:91:
        f5:f2:5b:54:0d:08:2a:1a:4d:10:d7:86:c8:e2:3c:ba:
        ce:c4:d2:5b:e6:cd:7d:c6:7b:10:5c:e1:f6:31:ff:7f:
        ff:7b:8a:8a:0c:65:a9:39:9e:f0:61:f7:92:70:16:d4:
        9d:5b:51:57:85:91:1f:29:44:7e:97:d1:5a:f7:27:62:
        5f:a5:1f:dd:3a:f9:ee:f9:6d:43:74:39:2a:a7:81:a2:
        f9:24:01:cc:da:32:e1:e0:2a:2d:82:23:14:49:51:9c:
        bb:37:fc:26:15:1b:f1:78:7c:48:16:b7:31:07:20:50
    Fingerprint (SHA-256):
        6A:9B:0E:44:75:82:A4:A8:A3:74:5B:F5:E1:AA:36:15:DC:1B:80:FF:4D:98:7E:EC:C0:EC:59:DA:FE:A5:E5:4D
    Fingerprint (SHA1):
        B2:A6:C4:26:1B:DF:94:5D:F7:7B:68:DB:D9:10:FD:3A:D6:DE:FA:77
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2652: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2653: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2654: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 354 at Wed May 10 11:52:38 UTC 2017
kill -USR1 354
httpserv: normal termination
httpserv -b -p 9333 2>/dev/null;
httpserv with PID 354 killed at Wed May 10 11:52:38 UTC 2017
httpserv starting at Wed May 10 11:52:38 UTC 2017
httpserv -D -p 9333  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/aiahttp/http_pid.24947  &
trying to connect to httpserv at Wed May 10 11:52:38 UTC 2017
tstclnt -p 9333 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9333 (address=::1)
tstclnt: exiting with return code 0
kill -0 524 >/dev/null 2>/dev/null
httpserv with PID 524 found at Wed May 10 11:52:38 UTC 2017
httpserv with PID 524 started at Wed May 10 11:52:38 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2655: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2656: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2657: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9333 -q -t 20
chains.sh: #2658: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115226 (0x1e67bd9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed May 10 11:52:25 2017
            Not After : Tue May 10 11:52:25 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:54:f6:1b:86:a5:b0:41:5a:b2:0a:9b:9d:63:ed:6f:
                    58:04:23:f7:be:5b:db:19:8d:10:e9:5c:b8:4c:47:e5:
                    1d:72:07:ff:e5:29:f9:99:67:99:b1:ed:cf:bf:44:0c:
                    95:a2:f8:55:55:b6:5c:00:bc:ab:68:33:7f:2e:dc:a9:
                    e5:00:96:12:e7:7b:92:27:72:cd:c2:0d:b2:7a:00:f4:
                    92:b3:eb:96:d2:b9:cd:7d:73:66:b1:3d:c8:2a:68:54:
                    89:6d:39:1f:1d:0e:fa:09:5c:ff:6c:1f:d4:88:e6:14:
                    86:25:57:22:39:47:3d:c3:ab:a4:26:8f:d8:a4:30:be:
                    ab:0d:3d:0e:5c:e9:f6:8c:8a:b0:be:e6:3f:86:e4:13:
                    98:a5:68:08:d0:0d:26:98:76:9a:e7:c5:b1:23:6a:46:
                    5f:d2:2a:cd:7b:63:71:7a:3c:48:e0:1b:eb:38:75:a4:
                    1f:88:47:6a:e0:b6:74:39:53:51:10:9b:1b:8b:64:74:
                    e0:00:f1:0a:6d:82:94:ab:40:18:f4:03:cb:e7:0c:4e:
                    27:79:68:5f:aa:b9:c9:07:92:de:fa:2b:6f:f6:32:71:
                    a1:6c:a0:fe:f1:ee:76:b4:b0:7e:91:d8:88:f1:db:1c:
                    2f:ae:06:96:b2:1c:3e:c0:af:b2:ce:6b:b7:12:a9:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:13:24:62:30:21:fe:34:72:72:a9:e6:63:c5:59:6d:
        1a:66:a2:80:7a:fe:18:8a:ad:47:5d:24:d5:45:24:cf:
        c9:6d:80:0e:71:36:23:7c:34:c4:aa:07:e8:8c:ea:8b:
        08:c5:90:3e:86:be:dc:1f:43:08:23:41:ea:83:d7:05:
        f6:e0:cb:34:73:36:6f:f3:f9:d8:4e:f4:9f:b2:61:c0:
        cf:ba:70:4a:c8:3a:bc:71:d9:b6:83:c9:59:81:d8:2f:
        12:08:30:24:81:09:af:4e:04:db:65:cf:65:05:5a:2e:
        b3:32:01:61:56:c8:76:d4:55:9f:ed:ed:4c:4b:c8:53:
        3e:a3:60:da:4f:13:01:0f:18:40:fb:70:36:cd:f5:91:
        f5:f2:5b:54:0d:08:2a:1a:4d:10:d7:86:c8:e2:3c:ba:
        ce:c4:d2:5b:e6:cd:7d:c6:7b:10:5c:e1:f6:31:ff:7f:
        ff:7b:8a:8a:0c:65:a9:39:9e:f0:61:f7:92:70:16:d4:
        9d:5b:51:57:85:91:1f:29:44:7e:97:d1:5a:f7:27:62:
        5f:a5:1f:dd:3a:f9:ee:f9:6d:43:74:39:2a:a7:81:a2:
        f9:24:01:cc:da:32:e1:e0:2a:2d:82:23:14:49:51:9c:
        bb:37:fc:26:15:1b:f1:78:7c:48:16:b7:31:07:20:50
    Fingerprint (SHA-256):
        6A:9B:0E:44:75:82:A4:A8:A3:74:5B:F5:E1:AA:36:15:DC:1B:80:FF:4D:98:7E:EC:C0:EC:59:DA:FE:A5:E5:4D
    Fingerprint (SHA1):
        B2:A6:C4:26:1B:DF:94:5D:F7:7B:68:DB:D9:10:FD:3A:D6:DE:FA:77
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2659: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2660: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2661: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 524 at Wed May 10 11:52:39 UTC 2017
kill -USR1 524
httpserv: normal termination
httpserv -b -p 9333 2>/dev/null;
httpserv with PID 524 killed at Wed May 10 11:52:39 UTC 2017
httpserv starting at Wed May 10 11:52:39 UTC 2017
httpserv -D -p 9333  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/aiahttp/http_pid.24947  &
trying to connect to httpserv at Wed May 10 11:52:39 UTC 2017
tstclnt -p 9333 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9333 (address=::1)
tstclnt: exiting with return code 0
kill -0 772 >/dev/null 2>/dev/null
httpserv with PID 772 found at Wed May 10 11:52:39 UTC 2017
httpserv with PID 772 started at Wed May 10 11:52:39 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2662: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #2663: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115227 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2664: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #2665: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #2666: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115228 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2667: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #2668: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #2669: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2670: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510115229 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2671: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2672: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510115230 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2673: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2674: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #2675: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2676: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2677: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 510115231   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2678: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2679: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2680: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #2681: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #2682: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115228 (0x1e67bd9c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:52:39 2017
            Not After : Tue May 10 11:52:39 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:30:3c:be:13:e5:3c:e0:d4:13:d4:0f:b7:2a:70:b0:
                    ef:be:90:87:42:49:44:56:9c:eb:6a:f6:6c:f3:1c:16:
                    ea:cd:e9:fa:4e:8e:61:db:f6:3f:be:cc:d1:a2:14:40:
                    04:89:1f:03:21:38:09:0c:83:a2:47:ac:3d:d8:7d:3f:
                    e9:c7:14:5f:a1:f6:46:61:78:64:fe:49:27:72:2d:f7:
                    0b:8d:21:cc:f6:f7:77:39:13:5a:b9:40:19:d2:bf:13:
                    39:ff:f6:a9:5f:94:d2:ee:c3:13:53:67:33:cf:58:b9:
                    52:23:a9:fe:8a:23:55:54:3b:d7:78:c2:19:05:25:ab:
                    62:d5:e6:0d:f0:ce:52:98:7b:9c:36:47:62:33:4e:3b:
                    ad:e6:82:9c:d1:67:6a:7a:7b:1a:aa:d3:61:95:31:16:
                    a5:90:aa:72:3a:38:a0:8a:35:85:9e:9f:8a:32:55:74:
                    ad:4c:0e:a9:fd:7c:56:bf:31:f7:01:86:41:1e:51:9e:
                    93:f9:72:94:2c:a8:7e:6a:60:67:36:63:75:90:10:f5:
                    1b:a9:d7:ec:4e:f6:f7:18:d1:14:e5:5e:79:7c:39:97:
                    72:e0:f4:40:a6:e4:35:3d:b7:b6:da:89:f4:47:eb:b9:
                    23:87:82:cf:e1:4f:dc:a1:60:b8:57:f1:8a:20:80:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:53:49:b0:b9:b3:fd:98:73:ff:39:e5:15:bf:fd:95:
        c1:c1:28:f0:81:dc:db:8e:13:5c:1c:06:0d:f4:00:0d:
        cc:a8:90:dd:3a:29:5a:95:59:99:40:33:16:14:71:7b:
        36:c4:a5:07:fd:8a:0b:ef:20:42:bb:21:f5:16:c3:cd:
        9a:45:41:fb:6f:cc:22:78:3c:2e:c5:7b:3a:98:8c:5b:
        be:4a:8b:56:ac:51:aa:db:3b:a1:65:f9:14:ba:ee:b8:
        81:a8:b8:1c:62:33:e3:ac:3e:e0:5a:0a:e7:68:4c:00:
        42:ab:3e:68:f2:d2:47:b4:14:95:31:9b:d5:69:b6:5a:
        2f:79:f1:3c:f5:79:f6:ec:ad:6a:aa:8d:9f:9e:92:2d:
        58:d1:2a:51:66:cb:57:79:3f:d5:c7:d7:05:30:aa:8a:
        7a:f8:f2:c5:91:b0:dd:bd:20:49:02:fd:d5:d6:ee:82:
        ad:9c:a9:f0:be:fa:53:53:2c:6e:1e:50:ab:c7:df:8b:
        45:a7:68:f3:01:a3:64:a9:1d:d9:ab:31:0c:18:56:fd:
        2a:33:c0:48:cb:04:bf:89:ae:f0:10:03:76:ba:9d:a1:
        c2:d1:04:a2:eb:4a:0f:19:ca:9c:8f:65:29:69:88:8e:
        1e:ba:5c:db:ea:07:4b:07:76:e1:1a:aa:21:33:5b:78
    Fingerprint (SHA-256):
        2C:3A:6B:9C:36:22:E7:42:6C:6B:2F:E6:FF:8E:7A:87:C7:28:17:A0:5B:C2:58:AA:9E:32:4D:1E:E6:F4:5C:F5
    Fingerprint (SHA1):
        24:72:7D:F9:5E:CC:30:3C:33:E2:7D:A1:0E:D6:1B:7B:37:7C:D9:47
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2683: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115227 (0x1e67bd9b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:52:39 2017
            Not After : Tue May 10 11:52:39 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:6e:b7:a4:32:df:37:44:a0:f2:fb:9c:87:ad:8d:42:
                    28:2d:b6:c6:6e:d1:ed:65:0a:17:69:7f:ff:51:90:11:
                    ba:df:9e:b7:73:a1:63:76:04:07:9a:21:95:15:05:6c:
                    ab:be:e5:5e:f9:7b:eb:e2:1e:49:72:70:a0:f7:47:b6:
                    98:31:9d:e1:da:44:b7:e3:c5:05:d9:07:cc:d7:f4:16:
                    dc:1e:1f:2a:ad:34:d7:2f:5c:70:b7:7c:2d:e5:34:dd:
                    15:f8:da:78:20:c6:4c:52:29:0f:fa:ed:c9:ea:66:d3:
                    fc:9d:8a:aa:58:f1:af:40:95:2a:bd:e3:d4:ba:45:fa:
                    8a:3d:33:d5:30:13:0b:ea:ad:d1:07:31:d5:5a:af:24:
                    ae:a1:8c:30:f7:d9:57:3f:f9:6f:d3:92:25:db:98:38:
                    c7:2c:a9:42:7d:90:3a:94:0c:16:54:32:3e:e8:d1:23:
                    35:7e:6f:2f:f0:a3:82:72:5a:ca:cb:bd:17:0b:e3:80:
                    78:5a:8e:26:b2:e6:97:8f:ae:da:aa:c4:0f:a6:c2:26:
                    81:6a:82:4b:f3:34:1f:b0:6d:eb:46:27:52:10:03:4e:
                    9a:b3:0b:20:7f:34:92:50:85:ec:ca:25:dd:15:8e:34:
                    a7:9b:ea:3f:36:83:59:2c:bc:91:98:af:f9:af:17:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:ee:2e:3d:74:46:32:b3:d4:26:fa:cd:3e:be:f9:5b:
        d7:83:16:e2:37:cc:f9:31:08:58:b3:2d:36:61:38:d0:
        d5:f9:ef:ef:27:6c:f1:28:6d:c2:83:59:9f:36:fb:85:
        f2:3f:45:0c:e7:d7:9d:3e:ef:0d:82:f7:17:3d:0a:2e:
        b1:06:75:70:59:0b:c0:fa:f5:3f:b1:07:a4:db:11:5a:
        34:84:5e:e4:f3:e3:19:fa:64:22:34:2b:12:00:10:05:
        25:e9:98:a7:73:53:65:f7:76:e7:f6:07:b8:a9:5b:ab:
        67:40:f8:30:43:a9:79:e4:2f:4a:31:1e:97:9a:bd:c5:
        f6:cd:03:b9:26:8f:c7:1b:bd:e6:b9:52:41:39:60:d6:
        a0:ab:d3:80:05:77:03:55:1e:6a:36:45:f6:e3:59:01:
        ef:6f:c6:a2:98:02:0a:a3:0a:a7:16:9d:bc:33:a3:68:
        db:09:c5:15:11:ae:94:84:8b:14:c0:75:d1:38:23:19:
        a3:22:13:4e:2e:1d:82:43:95:5a:0d:9f:df:bf:02:5d:
        99:f9:fb:51:24:44:4f:fe:ad:ff:e3:32:bf:cb:1a:a2:
        e9:d0:70:29:c6:7e:32:3d:dc:fd:42:7d:be:dc:91:df:
        1a:3c:49:12:43:1e:1c:71:ab:65:c6:19:ae:a4:41:c2
    Fingerprint (SHA-256):
        27:4C:74:AF:B1:4D:38:F0:21:21:90:DE:4E:33:D7:BB:EE:77:1F:3E:3C:7C:08:DD:91:C0:C5:24:17:6A:A5:08
    Fingerprint (SHA1):
        71:EF:17:D0:30:39:FD:98:D9:B7:6E:D2:6E:13:52:F4:1D:24:FD:C5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2684: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2685: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #2686: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #2687: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115227 (0x1e67bd9b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:52:39 2017
            Not After : Tue May 10 11:52:39 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:6e:b7:a4:32:df:37:44:a0:f2:fb:9c:87:ad:8d:42:
                    28:2d:b6:c6:6e:d1:ed:65:0a:17:69:7f:ff:51:90:11:
                    ba:df:9e:b7:73:a1:63:76:04:07:9a:21:95:15:05:6c:
                    ab:be:e5:5e:f9:7b:eb:e2:1e:49:72:70:a0:f7:47:b6:
                    98:31:9d:e1:da:44:b7:e3:c5:05:d9:07:cc:d7:f4:16:
                    dc:1e:1f:2a:ad:34:d7:2f:5c:70:b7:7c:2d:e5:34:dd:
                    15:f8:da:78:20:c6:4c:52:29:0f:fa:ed:c9:ea:66:d3:
                    fc:9d:8a:aa:58:f1:af:40:95:2a:bd:e3:d4:ba:45:fa:
                    8a:3d:33:d5:30:13:0b:ea:ad:d1:07:31:d5:5a:af:24:
                    ae:a1:8c:30:f7:d9:57:3f:f9:6f:d3:92:25:db:98:38:
                    c7:2c:a9:42:7d:90:3a:94:0c:16:54:32:3e:e8:d1:23:
                    35:7e:6f:2f:f0:a3:82:72:5a:ca:cb:bd:17:0b:e3:80:
                    78:5a:8e:26:b2:e6:97:8f:ae:da:aa:c4:0f:a6:c2:26:
                    81:6a:82:4b:f3:34:1f:b0:6d:eb:46:27:52:10:03:4e:
                    9a:b3:0b:20:7f:34:92:50:85:ec:ca:25:dd:15:8e:34:
                    a7:9b:ea:3f:36:83:59:2c:bc:91:98:af:f9:af:17:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:ee:2e:3d:74:46:32:b3:d4:26:fa:cd:3e:be:f9:5b:
        d7:83:16:e2:37:cc:f9:31:08:58:b3:2d:36:61:38:d0:
        d5:f9:ef:ef:27:6c:f1:28:6d:c2:83:59:9f:36:fb:85:
        f2:3f:45:0c:e7:d7:9d:3e:ef:0d:82:f7:17:3d:0a:2e:
        b1:06:75:70:59:0b:c0:fa:f5:3f:b1:07:a4:db:11:5a:
        34:84:5e:e4:f3:e3:19:fa:64:22:34:2b:12:00:10:05:
        25:e9:98:a7:73:53:65:f7:76:e7:f6:07:b8:a9:5b:ab:
        67:40:f8:30:43:a9:79:e4:2f:4a:31:1e:97:9a:bd:c5:
        f6:cd:03:b9:26:8f:c7:1b:bd:e6:b9:52:41:39:60:d6:
        a0:ab:d3:80:05:77:03:55:1e:6a:36:45:f6:e3:59:01:
        ef:6f:c6:a2:98:02:0a:a3:0a:a7:16:9d:bc:33:a3:68:
        db:09:c5:15:11:ae:94:84:8b:14:c0:75:d1:38:23:19:
        a3:22:13:4e:2e:1d:82:43:95:5a:0d:9f:df:bf:02:5d:
        99:f9:fb:51:24:44:4f:fe:ad:ff:e3:32:bf:cb:1a:a2:
        e9:d0:70:29:c6:7e:32:3d:dc:fd:42:7d:be:dc:91:df:
        1a:3c:49:12:43:1e:1c:71:ab:65:c6:19:ae:a4:41:c2
    Fingerprint (SHA-256):
        27:4C:74:AF:B1:4D:38:F0:21:21:90:DE:4E:33:D7:BB:EE:77:1F:3E:3C:7C:08:DD:91:C0:C5:24:17:6A:A5:08
    Fingerprint (SHA1):
        71:EF:17:D0:30:39:FD:98:D9:B7:6E:D2:6E:13:52:F4:1D:24:FD:C5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2688: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115228 (0x1e67bd9c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:52:39 2017
            Not After : Tue May 10 11:52:39 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:30:3c:be:13:e5:3c:e0:d4:13:d4:0f:b7:2a:70:b0:
                    ef:be:90:87:42:49:44:56:9c:eb:6a:f6:6c:f3:1c:16:
                    ea:cd:e9:fa:4e:8e:61:db:f6:3f:be:cc:d1:a2:14:40:
                    04:89:1f:03:21:38:09:0c:83:a2:47:ac:3d:d8:7d:3f:
                    e9:c7:14:5f:a1:f6:46:61:78:64:fe:49:27:72:2d:f7:
                    0b:8d:21:cc:f6:f7:77:39:13:5a:b9:40:19:d2:bf:13:
                    39:ff:f6:a9:5f:94:d2:ee:c3:13:53:67:33:cf:58:b9:
                    52:23:a9:fe:8a:23:55:54:3b:d7:78:c2:19:05:25:ab:
                    62:d5:e6:0d:f0:ce:52:98:7b:9c:36:47:62:33:4e:3b:
                    ad:e6:82:9c:d1:67:6a:7a:7b:1a:aa:d3:61:95:31:16:
                    a5:90:aa:72:3a:38:a0:8a:35:85:9e:9f:8a:32:55:74:
                    ad:4c:0e:a9:fd:7c:56:bf:31:f7:01:86:41:1e:51:9e:
                    93:f9:72:94:2c:a8:7e:6a:60:67:36:63:75:90:10:f5:
                    1b:a9:d7:ec:4e:f6:f7:18:d1:14:e5:5e:79:7c:39:97:
                    72:e0:f4:40:a6:e4:35:3d:b7:b6:da:89:f4:47:eb:b9:
                    23:87:82:cf:e1:4f:dc:a1:60:b8:57:f1:8a:20:80:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:53:49:b0:b9:b3:fd:98:73:ff:39:e5:15:bf:fd:95:
        c1:c1:28:f0:81:dc:db:8e:13:5c:1c:06:0d:f4:00:0d:
        cc:a8:90:dd:3a:29:5a:95:59:99:40:33:16:14:71:7b:
        36:c4:a5:07:fd:8a:0b:ef:20:42:bb:21:f5:16:c3:cd:
        9a:45:41:fb:6f:cc:22:78:3c:2e:c5:7b:3a:98:8c:5b:
        be:4a:8b:56:ac:51:aa:db:3b:a1:65:f9:14:ba:ee:b8:
        81:a8:b8:1c:62:33:e3:ac:3e:e0:5a:0a:e7:68:4c:00:
        42:ab:3e:68:f2:d2:47:b4:14:95:31:9b:d5:69:b6:5a:
        2f:79:f1:3c:f5:79:f6:ec:ad:6a:aa:8d:9f:9e:92:2d:
        58:d1:2a:51:66:cb:57:79:3f:d5:c7:d7:05:30:aa:8a:
        7a:f8:f2:c5:91:b0:dd:bd:20:49:02:fd:d5:d6:ee:82:
        ad:9c:a9:f0:be:fa:53:53:2c:6e:1e:50:ab:c7:df:8b:
        45:a7:68:f3:01:a3:64:a9:1d:d9:ab:31:0c:18:56:fd:
        2a:33:c0:48:cb:04:bf:89:ae:f0:10:03:76:ba:9d:a1:
        c2:d1:04:a2:eb:4a:0f:19:ca:9c:8f:65:29:69:88:8e:
        1e:ba:5c:db:ea:07:4b:07:76:e1:1a:aa:21:33:5b:78
    Fingerprint (SHA-256):
        2C:3A:6B:9C:36:22:E7:42:6C:6B:2F:E6:FF:8E:7A:87:C7:28:17:A0:5B:C2:58:AA:9E:32:4D:1E:E6:F4:5C:F5
    Fingerprint (SHA1):
        24:72:7D:F9:5E:CC:30:3C:33:E2:7D:A1:0E:D6:1B:7B:37:7C:D9:47
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2689: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #2690: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #2691: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2692: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2693: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2694: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115228 (0x1e67bd9c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:52:39 2017
            Not After : Tue May 10 11:52:39 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:30:3c:be:13:e5:3c:e0:d4:13:d4:0f:b7:2a:70:b0:
                    ef:be:90:87:42:49:44:56:9c:eb:6a:f6:6c:f3:1c:16:
                    ea:cd:e9:fa:4e:8e:61:db:f6:3f:be:cc:d1:a2:14:40:
                    04:89:1f:03:21:38:09:0c:83:a2:47:ac:3d:d8:7d:3f:
                    e9:c7:14:5f:a1:f6:46:61:78:64:fe:49:27:72:2d:f7:
                    0b:8d:21:cc:f6:f7:77:39:13:5a:b9:40:19:d2:bf:13:
                    39:ff:f6:a9:5f:94:d2:ee:c3:13:53:67:33:cf:58:b9:
                    52:23:a9:fe:8a:23:55:54:3b:d7:78:c2:19:05:25:ab:
                    62:d5:e6:0d:f0:ce:52:98:7b:9c:36:47:62:33:4e:3b:
                    ad:e6:82:9c:d1:67:6a:7a:7b:1a:aa:d3:61:95:31:16:
                    a5:90:aa:72:3a:38:a0:8a:35:85:9e:9f:8a:32:55:74:
                    ad:4c:0e:a9:fd:7c:56:bf:31:f7:01:86:41:1e:51:9e:
                    93:f9:72:94:2c:a8:7e:6a:60:67:36:63:75:90:10:f5:
                    1b:a9:d7:ec:4e:f6:f7:18:d1:14:e5:5e:79:7c:39:97:
                    72:e0:f4:40:a6:e4:35:3d:b7:b6:da:89:f4:47:eb:b9:
                    23:87:82:cf:e1:4f:dc:a1:60:b8:57:f1:8a:20:80:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:53:49:b0:b9:b3:fd:98:73:ff:39:e5:15:bf:fd:95:
        c1:c1:28:f0:81:dc:db:8e:13:5c:1c:06:0d:f4:00:0d:
        cc:a8:90:dd:3a:29:5a:95:59:99:40:33:16:14:71:7b:
        36:c4:a5:07:fd:8a:0b:ef:20:42:bb:21:f5:16:c3:cd:
        9a:45:41:fb:6f:cc:22:78:3c:2e:c5:7b:3a:98:8c:5b:
        be:4a:8b:56:ac:51:aa:db:3b:a1:65:f9:14:ba:ee:b8:
        81:a8:b8:1c:62:33:e3:ac:3e:e0:5a:0a:e7:68:4c:00:
        42:ab:3e:68:f2:d2:47:b4:14:95:31:9b:d5:69:b6:5a:
        2f:79:f1:3c:f5:79:f6:ec:ad:6a:aa:8d:9f:9e:92:2d:
        58:d1:2a:51:66:cb:57:79:3f:d5:c7:d7:05:30:aa:8a:
        7a:f8:f2:c5:91:b0:dd:bd:20:49:02:fd:d5:d6:ee:82:
        ad:9c:a9:f0:be:fa:53:53:2c:6e:1e:50:ab:c7:df:8b:
        45:a7:68:f3:01:a3:64:a9:1d:d9:ab:31:0c:18:56:fd:
        2a:33:c0:48:cb:04:bf:89:ae:f0:10:03:76:ba:9d:a1:
        c2:d1:04:a2:eb:4a:0f:19:ca:9c:8f:65:29:69:88:8e:
        1e:ba:5c:db:ea:07:4b:07:76:e1:1a:aa:21:33:5b:78
    Fingerprint (SHA-256):
        2C:3A:6B:9C:36:22:E7:42:6C:6B:2F:E6:FF:8E:7A:87:C7:28:17:A0:5B:C2:58:AA:9E:32:4D:1E:E6:F4:5C:F5
    Fingerprint (SHA1):
        24:72:7D:F9:5E:CC:30:3C:33:E2:7D:A1:0E:D6:1B:7B:37:7C:D9:47
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2695: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115228 (0x1e67bd9c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:52:39 2017
            Not After : Tue May 10 11:52:39 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:30:3c:be:13:e5:3c:e0:d4:13:d4:0f:b7:2a:70:b0:
                    ef:be:90:87:42:49:44:56:9c:eb:6a:f6:6c:f3:1c:16:
                    ea:cd:e9:fa:4e:8e:61:db:f6:3f:be:cc:d1:a2:14:40:
                    04:89:1f:03:21:38:09:0c:83:a2:47:ac:3d:d8:7d:3f:
                    e9:c7:14:5f:a1:f6:46:61:78:64:fe:49:27:72:2d:f7:
                    0b:8d:21:cc:f6:f7:77:39:13:5a:b9:40:19:d2:bf:13:
                    39:ff:f6:a9:5f:94:d2:ee:c3:13:53:67:33:cf:58:b9:
                    52:23:a9:fe:8a:23:55:54:3b:d7:78:c2:19:05:25:ab:
                    62:d5:e6:0d:f0:ce:52:98:7b:9c:36:47:62:33:4e:3b:
                    ad:e6:82:9c:d1:67:6a:7a:7b:1a:aa:d3:61:95:31:16:
                    a5:90:aa:72:3a:38:a0:8a:35:85:9e:9f:8a:32:55:74:
                    ad:4c:0e:a9:fd:7c:56:bf:31:f7:01:86:41:1e:51:9e:
                    93:f9:72:94:2c:a8:7e:6a:60:67:36:63:75:90:10:f5:
                    1b:a9:d7:ec:4e:f6:f7:18:d1:14:e5:5e:79:7c:39:97:
                    72:e0:f4:40:a6:e4:35:3d:b7:b6:da:89:f4:47:eb:b9:
                    23:87:82:cf:e1:4f:dc:a1:60:b8:57:f1:8a:20:80:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:53:49:b0:b9:b3:fd:98:73:ff:39:e5:15:bf:fd:95:
        c1:c1:28:f0:81:dc:db:8e:13:5c:1c:06:0d:f4:00:0d:
        cc:a8:90:dd:3a:29:5a:95:59:99:40:33:16:14:71:7b:
        36:c4:a5:07:fd:8a:0b:ef:20:42:bb:21:f5:16:c3:cd:
        9a:45:41:fb:6f:cc:22:78:3c:2e:c5:7b:3a:98:8c:5b:
        be:4a:8b:56:ac:51:aa:db:3b:a1:65:f9:14:ba:ee:b8:
        81:a8:b8:1c:62:33:e3:ac:3e:e0:5a:0a:e7:68:4c:00:
        42:ab:3e:68:f2:d2:47:b4:14:95:31:9b:d5:69:b6:5a:
        2f:79:f1:3c:f5:79:f6:ec:ad:6a:aa:8d:9f:9e:92:2d:
        58:d1:2a:51:66:cb:57:79:3f:d5:c7:d7:05:30:aa:8a:
        7a:f8:f2:c5:91:b0:dd:bd:20:49:02:fd:d5:d6:ee:82:
        ad:9c:a9:f0:be:fa:53:53:2c:6e:1e:50:ab:c7:df:8b:
        45:a7:68:f3:01:a3:64:a9:1d:d9:ab:31:0c:18:56:fd:
        2a:33:c0:48:cb:04:bf:89:ae:f0:10:03:76:ba:9d:a1:
        c2:d1:04:a2:eb:4a:0f:19:ca:9c:8f:65:29:69:88:8e:
        1e:ba:5c:db:ea:07:4b:07:76:e1:1a:aa:21:33:5b:78
    Fingerprint (SHA-256):
        2C:3A:6B:9C:36:22:E7:42:6C:6B:2F:E6:FF:8E:7A:87:C7:28:17:A0:5B:C2:58:AA:9E:32:4D:1E:E6:F4:5C:F5
    Fingerprint (SHA1):
        24:72:7D:F9:5E:CC:30:3C:33:E2:7D:A1:0E:D6:1B:7B:37:7C:D9:47
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2696: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #2697: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #2698: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2699: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2700: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2701: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115227 (0x1e67bd9b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:52:39 2017
            Not After : Tue May 10 11:52:39 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:6e:b7:a4:32:df:37:44:a0:f2:fb:9c:87:ad:8d:42:
                    28:2d:b6:c6:6e:d1:ed:65:0a:17:69:7f:ff:51:90:11:
                    ba:df:9e:b7:73:a1:63:76:04:07:9a:21:95:15:05:6c:
                    ab:be:e5:5e:f9:7b:eb:e2:1e:49:72:70:a0:f7:47:b6:
                    98:31:9d:e1:da:44:b7:e3:c5:05:d9:07:cc:d7:f4:16:
                    dc:1e:1f:2a:ad:34:d7:2f:5c:70:b7:7c:2d:e5:34:dd:
                    15:f8:da:78:20:c6:4c:52:29:0f:fa:ed:c9:ea:66:d3:
                    fc:9d:8a:aa:58:f1:af:40:95:2a:bd:e3:d4:ba:45:fa:
                    8a:3d:33:d5:30:13:0b:ea:ad:d1:07:31:d5:5a:af:24:
                    ae:a1:8c:30:f7:d9:57:3f:f9:6f:d3:92:25:db:98:38:
                    c7:2c:a9:42:7d:90:3a:94:0c:16:54:32:3e:e8:d1:23:
                    35:7e:6f:2f:f0:a3:82:72:5a:ca:cb:bd:17:0b:e3:80:
                    78:5a:8e:26:b2:e6:97:8f:ae:da:aa:c4:0f:a6:c2:26:
                    81:6a:82:4b:f3:34:1f:b0:6d:eb:46:27:52:10:03:4e:
                    9a:b3:0b:20:7f:34:92:50:85:ec:ca:25:dd:15:8e:34:
                    a7:9b:ea:3f:36:83:59:2c:bc:91:98:af:f9:af:17:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:ee:2e:3d:74:46:32:b3:d4:26:fa:cd:3e:be:f9:5b:
        d7:83:16:e2:37:cc:f9:31:08:58:b3:2d:36:61:38:d0:
        d5:f9:ef:ef:27:6c:f1:28:6d:c2:83:59:9f:36:fb:85:
        f2:3f:45:0c:e7:d7:9d:3e:ef:0d:82:f7:17:3d:0a:2e:
        b1:06:75:70:59:0b:c0:fa:f5:3f:b1:07:a4:db:11:5a:
        34:84:5e:e4:f3:e3:19:fa:64:22:34:2b:12:00:10:05:
        25:e9:98:a7:73:53:65:f7:76:e7:f6:07:b8:a9:5b:ab:
        67:40:f8:30:43:a9:79:e4:2f:4a:31:1e:97:9a:bd:c5:
        f6:cd:03:b9:26:8f:c7:1b:bd:e6:b9:52:41:39:60:d6:
        a0:ab:d3:80:05:77:03:55:1e:6a:36:45:f6:e3:59:01:
        ef:6f:c6:a2:98:02:0a:a3:0a:a7:16:9d:bc:33:a3:68:
        db:09:c5:15:11:ae:94:84:8b:14:c0:75:d1:38:23:19:
        a3:22:13:4e:2e:1d:82:43:95:5a:0d:9f:df:bf:02:5d:
        99:f9:fb:51:24:44:4f:fe:ad:ff:e3:32:bf:cb:1a:a2:
        e9:d0:70:29:c6:7e:32:3d:dc:fd:42:7d:be:dc:91:df:
        1a:3c:49:12:43:1e:1c:71:ab:65:c6:19:ae:a4:41:c2
    Fingerprint (SHA-256):
        27:4C:74:AF:B1:4D:38:F0:21:21:90:DE:4E:33:D7:BB:EE:77:1F:3E:3C:7C:08:DD:91:C0:C5:24:17:6A:A5:08
    Fingerprint (SHA1):
        71:EF:17:D0:30:39:FD:98:D9:B7:6E:D2:6E:13:52:F4:1D:24:FD:C5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2702: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115227 (0x1e67bd9b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:52:39 2017
            Not After : Tue May 10 11:52:39 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:6e:b7:a4:32:df:37:44:a0:f2:fb:9c:87:ad:8d:42:
                    28:2d:b6:c6:6e:d1:ed:65:0a:17:69:7f:ff:51:90:11:
                    ba:df:9e:b7:73:a1:63:76:04:07:9a:21:95:15:05:6c:
                    ab:be:e5:5e:f9:7b:eb:e2:1e:49:72:70:a0:f7:47:b6:
                    98:31:9d:e1:da:44:b7:e3:c5:05:d9:07:cc:d7:f4:16:
                    dc:1e:1f:2a:ad:34:d7:2f:5c:70:b7:7c:2d:e5:34:dd:
                    15:f8:da:78:20:c6:4c:52:29:0f:fa:ed:c9:ea:66:d3:
                    fc:9d:8a:aa:58:f1:af:40:95:2a:bd:e3:d4:ba:45:fa:
                    8a:3d:33:d5:30:13:0b:ea:ad:d1:07:31:d5:5a:af:24:
                    ae:a1:8c:30:f7:d9:57:3f:f9:6f:d3:92:25:db:98:38:
                    c7:2c:a9:42:7d:90:3a:94:0c:16:54:32:3e:e8:d1:23:
                    35:7e:6f:2f:f0:a3:82:72:5a:ca:cb:bd:17:0b:e3:80:
                    78:5a:8e:26:b2:e6:97:8f:ae:da:aa:c4:0f:a6:c2:26:
                    81:6a:82:4b:f3:34:1f:b0:6d:eb:46:27:52:10:03:4e:
                    9a:b3:0b:20:7f:34:92:50:85:ec:ca:25:dd:15:8e:34:
                    a7:9b:ea:3f:36:83:59:2c:bc:91:98:af:f9:af:17:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:ee:2e:3d:74:46:32:b3:d4:26:fa:cd:3e:be:f9:5b:
        d7:83:16:e2:37:cc:f9:31:08:58:b3:2d:36:61:38:d0:
        d5:f9:ef:ef:27:6c:f1:28:6d:c2:83:59:9f:36:fb:85:
        f2:3f:45:0c:e7:d7:9d:3e:ef:0d:82:f7:17:3d:0a:2e:
        b1:06:75:70:59:0b:c0:fa:f5:3f:b1:07:a4:db:11:5a:
        34:84:5e:e4:f3:e3:19:fa:64:22:34:2b:12:00:10:05:
        25:e9:98:a7:73:53:65:f7:76:e7:f6:07:b8:a9:5b:ab:
        67:40:f8:30:43:a9:79:e4:2f:4a:31:1e:97:9a:bd:c5:
        f6:cd:03:b9:26:8f:c7:1b:bd:e6:b9:52:41:39:60:d6:
        a0:ab:d3:80:05:77:03:55:1e:6a:36:45:f6:e3:59:01:
        ef:6f:c6:a2:98:02:0a:a3:0a:a7:16:9d:bc:33:a3:68:
        db:09:c5:15:11:ae:94:84:8b:14:c0:75:d1:38:23:19:
        a3:22:13:4e:2e:1d:82:43:95:5a:0d:9f:df:bf:02:5d:
        99:f9:fb:51:24:44:4f:fe:ad:ff:e3:32:bf:cb:1a:a2:
        e9:d0:70:29:c6:7e:32:3d:dc:fd:42:7d:be:dc:91:df:
        1a:3c:49:12:43:1e:1c:71:ab:65:c6:19:ae:a4:41:c2
    Fingerprint (SHA-256):
        27:4C:74:AF:B1:4D:38:F0:21:21:90:DE:4E:33:D7:BB:EE:77:1F:3E:3C:7C:08:DD:91:C0:C5:24:17:6A:A5:08
    Fingerprint (SHA1):
        71:EF:17:D0:30:39:FD:98:D9:B7:6E:D2:6E:13:52:F4:1D:24:FD:C5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2703: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #2704: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115232 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2705: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #2706: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #2707: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115233 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2708: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #2709: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #2710: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115234 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2711: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #2712: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #2713: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115235 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2714: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #2715: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #2716: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115236 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2717: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #2718: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #2719: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115237 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2720: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #2721: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #2722: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115238 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2723: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #2724: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #2725: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115239 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2726: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #2727: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #2728: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115240 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2729: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #2730: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #2731: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2732: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 510115241 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2733: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2734: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 510115242 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2735: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2736: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 510115243 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2737: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2738: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #2739: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #2740: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2741: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 510115244 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2742: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2743: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 510115245 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2744: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2745: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 510115246 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2746: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2747: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #2748: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #2749: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2750: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 510115247 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2751: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2752: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 510115248 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2753: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2754: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 510115249 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2755: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2756: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #2757: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #2758: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2759: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 510115250 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2760: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2761: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 510115251 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2762: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2763: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 510115252 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2764: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2765: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #2766: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2767: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2768: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 510115253   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2769: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2770: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2771: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2772: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115254   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2773: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2774: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115232 (0x1e67bda0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed May 10 11:52:42 2017
            Not After : Tue May 10 11:52:42 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:94:c8:fb:d6:64:4b:b5:1b:45:00:0a:35:2c:3e:5d:
                    65:02:fc:7f:c4:4d:cd:74:b1:f6:f3:99:e8:ce:7b:e2:
                    4e:e6:16:f1:49:3e:c8:98:fe:ad:0f:72:95:54:fe:05:
                    78:16:4d:0b:87:37:69:8a:00:7b:ac:99:2c:7b:72:f0:
                    5b:6b:7b:0e:1e:cc:f1:03:73:43:9f:45:66:59:24:3b:
                    1f:b0:36:69:7c:e5:46:9b:73:95:d2:55:96:4f:75:fb:
                    ae:26:bd:ec:fa:64:8f:21:1f:93:4a:e3:7f:3d:b7:ea:
                    52:78:a3:ad:c7:b3:4e:a8:4a:24:84:b0:07:9e:86:26:
                    1f:3a:6c:1e:f1:8a:3f:30:33:52:a3:3b:2a:0e:a6:e4:
                    ca:8b:e2:dc:b0:fd:b8:7d:8d:68:60:fc:d7:9a:e4:47:
                    aa:92:09:4d:8e:50:34:74:c4:68:a7:1c:45:d9:66:68:
                    7a:d7:ce:23:aa:05:5b:e1:f3:63:04:b8:67:4c:94:82:
                    72:71:b0:17:8c:c9:a0:4c:aa:b0:c3:81:93:7c:08:70:
                    f7:75:fa:83:33:3e:60:ee:95:6f:fa:4a:b4:e3:dc:96:
                    01:22:cd:4f:3d:ed:f8:ca:06:24:20:b9:b6:10:27:75:
                    42:bc:2f:f2:3c:e9:7b:d1:39:63:cf:4b:69:9d:3e:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:0b:6c:68:5b:3d:4b:4e:50:ae:8e:55:bd:6e:80:6b:
        0c:a6:8a:c2:53:33:c6:a3:67:e2:92:e1:19:dd:14:1a:
        37:87:31:05:d2:93:b0:1a:d5:64:b0:b8:84:6c:9c:4e:
        5b:7a:70:39:a1:a2:46:c4:d3:fb:88:9e:ed:d1:98:94:
        8d:d6:52:9b:7a:7f:a2:71:17:12:17:35:a1:16:61:c6:
        84:27:68:06:e7:01:47:f4:1d:00:9e:44:40:68:e3:b3:
        42:73:29:a9:21:6f:e1:da:c7:bd:48:a1:c1:47:17:ec:
        e3:ab:69:2f:dc:b3:9d:d8:aa:eb:ce:c2:09:9e:11:c8:
        46:cf:f9:2b:eb:a7:17:e8:e1:b4:bd:8e:67:71:5f:ce:
        bd:01:32:a7:7a:16:d5:a9:ef:ee:d1:f1:ff:eb:28:c5:
        02:d1:b4:ce:6d:2f:66:f3:e2:e2:a9:43:22:9f:4b:27:
        90:0d:6e:37:43:9f:2d:08:93:d6:02:65:b2:02:ea:f7:
        40:79:5a:3b:5a:db:bc:39:4b:77:af:28:e2:bd:2e:34:
        dd:c2:50:3b:94:e5:ed:a4:19:4f:93:cd:9f:77:f5:71:
        0c:58:90:24:48:0e:30:2c:4b:e0:4d:3e:b8:3e:59:7a:
        3a:ee:66:11:d9:73:e8:ec:32:c3:e3:19:72:af:40:1f
    Fingerprint (SHA-256):
        88:94:F4:BA:F3:54:99:51:28:75:46:8C:72:DC:88:C0:4D:C5:D6:56:9B:18:2F:B3:06:A4:6C:4B:70:13:30:F2
    Fingerprint (SHA1):
        59:8A:AD:F4:02:AC:99:55:87:16:5D:D2:92:5F:05:E2:2B:79:1F:C1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2775: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115233 (0x1e67bda1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed May 10 11:52:42 2017
            Not After : Tue May 10 11:52:42 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:55:20:8f:21:0e:0e:46:92:2f:7e:f1:11:38:40:77:
                    e6:43:64:7f:af:24:7f:34:32:78:3b:bd:b0:63:3c:89:
                    d5:c0:76:97:8a:a8:5a:61:e7:cc:37:f7:37:fc:77:d6:
                    e8:64:94:d0:91:2c:0f:d1:6f:1a:9b:a8:07:c3:3f:d5:
                    49:07:76:54:73:1a:dc:6d:71:97:32:f1:68:ce:87:89:
                    eb:74:3b:77:cc:01:cb:49:25:69:b0:9d:9c:7d:a8:27:
                    84:cc:38:50:d7:4c:60:e5:95:8f:09:0a:6b:7d:50:21:
                    3b:ee:87:c0:fc:e0:98:29:02:17:96:ff:1f:28:dd:fd:
                    7f:ac:2b:fd:a8:64:cc:a2:3d:4f:7b:88:2c:84:27:47:
                    fc:4b:4a:bd:3e:5c:d4:19:0b:22:9d:7a:5d:25:fe:ca:
                    03:0b:f6:ff:96:87:8f:4d:fa:22:9d:c3:c4:4a:28:7d:
                    be:2e:24:71:17:e8:6e:a1:d4:b5:1f:3e:13:e2:82:ec:
                    a0:05:1a:7b:d0:e3:9d:b5:fd:ed:b3:ed:8f:78:18:d5:
                    a7:6f:3b:8a:df:33:a2:f7:18:3a:25:b4:3b:f7:0b:c7:
                    68:24:fc:53:55:92:50:57:6b:a6:90:8c:33:bb:90:06:
                    88:63:b7:74:22:4b:fa:bf:9d:39:54:b8:86:50:13:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:81:71:b1:fb:81:56:64:38:c0:b1:42:43:3b:4b:a2:
        7e:16:8a:af:61:9f:3e:8a:c3:b6:5e:24:df:84:d7:57:
        7c:b9:6f:f4:52:6f:60:52:3e:62:85:00:10:53:8b:7a:
        46:2a:b1:d0:0f:5a:c2:2a:f6:43:b5:6d:ad:b3:a3:07:
        6e:9a:55:38:ed:04:9c:c0:17:8c:6e:7a:12:d2:43:f2:
        cc:8a:9a:cc:74:33:b8:5d:da:98:c6:c2:ac:d5:8f:c6:
        c8:4a:a5:87:7b:65:2a:69:0c:4c:2a:e6:23:c9:78:33:
        1a:f7:6f:03:92:05:63:fd:84:a0:12:b1:e4:1a:b2:51:
        78:2c:b5:91:88:e0:9d:cb:4f:61:cc:c9:28:e3:9a:6d:
        0b:2a:a0:7d:82:47:f5:c3:65:2d:cf:c8:21:f6:40:42:
        d8:2b:28:88:a8:ed:fc:5f:9e:8f:bc:c8:eb:81:50:b0:
        3d:b5:a7:69:be:ed:50:f4:e4:d8:51:87:3d:b8:26:34:
        27:c1:4b:7e:47:c8:27:8c:98:11:c1:bc:26:d5:83:96:
        a3:97:f1:e6:a6:c7:44:27:cf:16:15:53:19:a0:f4:c1:
        f0:fc:bc:85:60:6b:c8:8f:c8:61:99:23:52:3d:3e:82:
        ad:63:98:9a:2b:62:01:5c:88:20:f3:8d:f2:78:97:b3
    Fingerprint (SHA-256):
        30:27:E1:E0:AA:41:AA:DB:74:EA:03:3D:3F:D6:C9:D7:A2:74:50:8D:1B:BD:1D:6E:82:C3:43:E7:91:47:6B:2B
    Fingerprint (SHA1):
        B1:A4:1F:0C:AD:3B:67:F6:69:CF:7D:C3:DE:16:9F:09:AC:3E:1E:BD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2776: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115234 (0x1e67bda2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed May 10 11:52:42 2017
            Not After : Tue May 10 11:52:42 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:d5:60:43:2c:00:39:b5:33:a5:a9:29:6f:52:e2:41:
                    0d:53:71:bb:58:7c:80:cf:88:d5:ad:14:06:19:46:7b:
                    5a:5f:18:bd:f1:cf:98:7c:1b:76:cd:64:fb:44:21:1d:
                    5e:08:28:35:3e:a0:05:04:15:79:9d:96:44:89:d9:07:
                    19:e0:44:74:17:01:e9:1d:b6:a2:a6:55:7d:b2:08:c6:
                    41:59:98:f5:9d:86:92:fe:76:42:ff:9a:8f:8c:69:41:
                    fc:38:00:a7:a8:32:80:c4:49:56:90:ae:39:21:86:6d:
                    f6:fe:ca:d8:6f:c7:69:32:25:41:b2:f4:05:11:bf:cb:
                    5d:fc:09:bd:f4:b4:a1:61:48:b3:31:0f:3b:fe:8a:55:
                    60:5b:4a:6b:a1:92:45:35:d0:96:77:a5:9e:2b:80:ef:
                    4b:5c:2d:31:2b:db:87:22:0e:de:a4:0e:40:66:90:d3:
                    5d:f1:74:1d:59:0a:e6:17:e4:82:c0:54:9d:26:55:60:
                    2a:f8:22:31:2b:45:45:22:4d:5d:d5:0e:69:8d:d0:78:
                    df:00:26:d5:9f:d0:40:8f:63:bd:96:96:ee:e7:7e:ae:
                    df:d6:cf:fd:f9:fc:97:39:d0:44:b6:4c:b1:87:22:5c:
                    65:de:86:11:aa:f0:03:b9:4a:7f:90:00:15:5f:c8:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        80:48:bf:11:5d:e6:a3:cd:44:37:47:76:5b:c9:dd:2e:
        4a:e1:00:19:c5:af:6f:fc:fb:be:97:28:45:d4:50:4c:
        06:f2:3c:f4:5a:3c:4e:f1:b4:53:8c:9b:59:b1:99:3c:
        4c:c5:ed:ff:52:27:47:2e:70:e9:79:d5:90:fa:d8:89:
        d5:88:4f:04:c7:f9:d2:61:5e:63:71:43:85:de:4c:19:
        4f:b3:11:33:91:e1:6d:dc:46:37:02:6c:c5:76:43:82:
        99:d9:36:d2:ab:d6:88:3b:d0:3f:4d:c5:07:8c:d9:73:
        4d:19:e3:26:b7:1a:b2:8a:ae:2f:49:e1:89:a6:fb:8e:
        6f:80:a4:b4:bf:9d:86:af:89:17:8e:6c:87:cc:f5:91:
        15:57:2e:46:2c:e8:5b:5c:2e:0f:7c:fd:e4:6d:6c:5b:
        9d:cb:4b:94:eb:56:4d:e3:93:d0:62:c8:c4:03:b2:a0:
        33:8b:f1:db:0f:41:9e:0a:64:7c:f1:a0:de:43:d4:35:
        0d:4d:86:49:e2:d4:99:ed:16:32:98:33:b7:1d:2c:22:
        c4:8e:8a:fd:26:2f:95:31:75:c9:2f:8a:38:f5:9e:71:
        e1:07:cb:1d:ce:24:c3:86:75:88:21:96:fb:d2:55:97:
        ef:6b:9f:69:c1:98:a6:63:24:aa:8a:5f:b9:f6:d9:aa
    Fingerprint (SHA-256):
        84:48:5B:6B:32:72:A2:0D:B1:CD:4F:A8:64:89:5D:DD:C2:B4:42:E0:DE:09:79:68:9D:B7:73:BA:D3:7E:B5:8C
    Fingerprint (SHA1):
        61:AD:4A:B8:43:6D:5E:FC:96:4F:46:B7:68:0D:64:2C:10:58:89:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2777: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115235 (0x1e67bda3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed May 10 11:52:43 2017
            Not After : Tue May 10 11:52:43 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:83:5a:c4:e8:31:d6:ab:eb:dd:dc:ea:9b:5d:94:ee:
                    05:cc:1a:25:6a:f6:a2:5a:4e:9d:b4:c4:66:5d:3b:bd:
                    bd:0a:f1:c4:ec:8a:a4:7e:5a:87:83:28:88:76:aa:e2:
                    6e:90:e1:8b:e5:0c:58:ce:c3:37:1e:c4:b6:38:cb:69:
                    da:7d:a8:51:fd:23:34:8b:02:8c:3d:ce:74:6a:57:f5:
                    2e:9f:30:3a:32:c6:ca:1d:10:a7:e8:fe:a2:cd:1f:0d:
                    63:fa:7a:bd:e9:4c:9c:fe:5f:0d:41:87:6c:7c:d2:26:
                    7c:89:99:05:cf:51:bd:06:2c:40:9f:8c:ec:9c:19:e9:
                    8c:ba:89:70:6d:69:14:17:d1:58:e1:15:4f:4d:96:32:
                    b9:b2:f6:bf:75:aa:d2:f0:24:21:1e:6c:27:30:2b:32:
                    6b:3a:cb:35:55:44:0b:4f:e3:c5:1b:63:69:e1:47:bb:
                    1b:65:3a:67:2d:d0:f1:9e:43:c1:13:88:d6:db:b8:38:
                    b8:29:d7:3b:4b:02:9a:7c:1e:35:6a:ee:f7:90:8d:b7:
                    d5:8a:46:31:70:83:d9:e3:fb:d0:5a:eb:d4:39:d9:d6:
                    db:f7:5e:79:6f:3c:b3:da:3a:1b:91:b3:fb:3c:22:9f:
                    55:f1:85:59:7c:ec:39:13:cc:75:6c:9f:64:57:b4:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:77:fc:e2:5a:f4:99:df:ea:4c:0f:13:d3:64:82:d2:
        2f:a7:e5:a8:8f:94:3f:2b:25:c8:0c:3d:da:d9:eb:f2:
        c1:22:bd:16:05:2f:27:73:b6:cd:d5:e7:40:58:2f:94:
        97:4f:bc:b7:42:d7:8c:8a:5b:30:27:2b:6e:a6:d1:9d:
        30:1a:64:04:33:f0:82:be:41:35:98:47:d1:f1:b2:b4:
        d1:9f:05:df:b7:24:4b:0f:d0:4c:6b:2f:e9:3c:2c:22:
        55:ad:07:c7:0f:1e:66:f7:d3:75:37:b3:6b:28:6f:84:
        65:67:66:ce:d1:fe:7b:c7:42:08:25:cd:cc:55:1c:19:
        e2:bb:b0:9d:62:b8:d0:f3:cc:f3:87:43:50:78:be:7f:
        93:21:30:ff:43:44:83:96:b2:fb:05:00:a8:d9:81:22:
        d7:7d:e8:65:43:eb:ff:7d:46:44:fe:34:64:4c:45:77:
        71:2a:88:94:a3:c0:c9:e9:93:c2:39:b8:68:22:d4:1a:
        66:c2:f8:57:0d:ff:4d:72:bf:eb:21:76:b4:2e:a1:12:
        cc:f1:05:40:9e:c4:ff:8b:a8:24:4f:c5:b6:85:3f:e4:
        96:2f:6c:9c:36:09:c3:11:c7:d2:5c:cd:29:66:9c:2c:
        d8:c2:9d:d7:d6:87:b2:d4:95:1c:d0:e8:3a:0d:d7:53
    Fingerprint (SHA-256):
        6D:8D:12:24:23:BA:07:7A:3E:4A:BD:38:24:0A:62:87:CC:53:EF:5F:E6:90:23:DA:D1:75:15:2F:1C:7B:02:14
    Fingerprint (SHA1):
        F8:D5:8F:CD:DC:F2:07:D9:E4:05:C8:D5:9C:0B:89:0D:1E:DF:8B:34
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2778: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115236 (0x1e67bda4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed May 10 11:52:43 2017
            Not After : Tue May 10 11:52:43 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:a4:c3:91:fb:4c:19:d9:7d:30:b8:9b:7f:8b:b7:66:
                    1d:42:25:a7:5d:e3:12:72:e6:dd:50:a9:9d:70:5f:77:
                    90:5e:ac:e2:51:77:99:95:35:fb:bb:82:b0:86:ce:34:
                    09:76:26:ba:98:76:3c:f6:06:ce:de:53:35:88:db:fb:
                    e3:e3:7a:a6:85:15:90:10:83:f9:03:94:7d:ee:28:81:
                    22:02:a7:00:c3:43:90:81:9d:8a:31:73:a7:f7:52:32:
                    34:67:fc:91:ad:42:52:cd:ab:e0:77:d5:33:34:c4:75:
                    63:1d:55:23:f0:a1:44:78:2e:06:c7:9f:dd:db:6f:1c:
                    b3:ce:6d:e3:e6:d1:e2:4d:71:90:40:17:cb:5a:b6:26:
                    f4:69:c8:76:31:cc:18:a3:72:67:40:2d:05:16:b1:36:
                    e6:01:c6:43:1d:6d:b5:fe:cb:04:bd:38:bc:5e:e8:7a:
                    ce:9e:19:3c:f0:85:b9:82:df:2d:c7:43:e4:94:55:90:
                    92:62:9c:a6:f9:89:d0:d3:cb:99:4e:2d:0c:d0:19:c8:
                    81:a3:83:27:94:70:0c:41:6e:ee:45:d8:2a:4a:3b:0e:
                    85:20:cd:71:9e:f2:06:ad:ea:ea:40:c5:87:bb:b1:67:
                    e1:52:cd:65:59:47:a4:d0:cf:8b:f3:89:14:3f:4a:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c6:fa:ef:2f:d3:61:57:d8:d7:36:1f:87:12:0c:00:8e:
        27:21:2a:43:a6:09:ca:0e:d8:71:ee:f0:0f:ed:29:3b:
        e3:38:8d:32:ca:04:86:67:62:b0:3f:47:59:5a:d5:a5:
        2f:0a:c2:be:c8:2d:99:87:e4:53:8f:eb:ac:ea:12:47:
        d8:6e:72:6f:86:39:1a:7a:52:d4:26:4b:d8:c5:98:6c:
        4d:ba:c5:bd:1d:00:6d:26:a4:ef:2a:be:79:57:be:6c:
        08:18:8f:21:1a:2d:0f:f5:95:39:5d:ed:0c:6a:a6:2a:
        00:08:b4:b8:05:30:0a:78:a6:d9:20:9f:10:f4:3b:cc:
        b8:fd:84:b3:b5:5b:50:c4:c3:e8:a7:7d:4c:7b:8b:47:
        bd:c3:cb:0a:46:74:65:47:cb:97:41:0e:0e:c5:45:ce:
        5b:cd:99:27:5c:4f:58:16:53:ed:75:47:80:7e:35:b5:
        6f:34:ed:a4:6d:79:dc:3f:c1:ed:7e:38:10:28:2e:50:
        0c:fe:97:96:7b:00:69:90:8e:e4:a0:49:eb:c7:69:57:
        aa:f0:87:2b:2e:cb:90:18:fd:3d:f4:90:97:67:30:86:
        c1:28:b2:98:79:dc:31:43:44:1b:b1:30:b0:ca:bc:9f:
        50:73:03:74:6c:78:df:d6:fb:ac:98:df:02:31:d7:c5
    Fingerprint (SHA-256):
        9F:E9:B2:AB:79:E5:C7:AB:3E:72:6C:8E:80:2D:DB:87:D5:71:F6:BA:D5:46:18:76:CE:84:79:F1:17:02:56:0C
    Fingerprint (SHA1):
        BF:A7:47:55:5C:09:0B:06:3D:B1:19:3C:52:06:05:07:C4:26:63:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2779: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115237 (0x1e67bda5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed May 10 11:52:43 2017
            Not After : Tue May 10 11:52:43 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:79:53:c1:56:34:b3:47:b6:cb:6d:3c:5d:b0:37:02:
                    14:99:38:4c:07:a8:35:d3:eb:35:37:7e:f3:11:63:d2:
                    b8:7b:83:04:49:87:30:06:e0:18:50:33:e6:a0:60:3f:
                    38:81:c6:93:23:d9:7f:25:31:a1:6d:cf:73:09:43:a8:
                    64:e4:bd:a0:28:d6:a6:53:d0:d2:4c:4a:51:18:58:e4:
                    ce:1f:aa:1a:f2:b1:03:35:85:a2:3e:4d:ca:5f:b7:eb:
                    0d:82:49:11:89:76:45:43:c6:2d:0f:6e:22:29:f1:b9:
                    84:e5:f4:85:e0:69:d8:4b:5d:55:9f:0f:f8:8e:97:c2:
                    e6:e6:1e:29:0f:72:53:89:4b:04:73:4a:6e:56:23:e6:
                    8b:15:5d:da:a1:5f:4f:7f:33:c7:14:ec:f8:75:7d:c2:
                    d0:0f:77:69:c8:b1:12:b6:12:37:a4:cc:dd:6e:01:67:
                    7b:76:f2:6a:32:05:53:46:ad:b5:5e:b0:c8:67:c4:c0:
                    3c:82:6f:94:1d:b0:03:51:b0:6e:67:6c:a7:3e:05:2a:
                    6a:a9:e4:85:d8:19:62:35:fa:b3:c3:3b:19:5e:80:19:
                    89:fb:49:ac:78:6e:12:28:12:1a:8c:45:ec:a3:6f:a5:
                    bd:d4:07:aa:a0:aa:6d:a7:06:de:69:8f:fb:ee:3f:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:ee:5b:3a:77:84:14:8d:85:10:47:2a:47:d9:bb:e8:
        9d:26:5d:75:4d:04:28:e5:84:9d:90:ff:0f:76:6e:6f:
        fd:64:5f:83:a7:fe:7c:70:bf:22:68:6c:d9:fe:5b:9f:
        f0:d2:08:3c:30:9f:24:11:1c:cf:51:3c:ba:be:d7:aa:
        21:a1:d9:2b:ea:da:9b:44:6e:07:c2:9d:25:d0:e9:dd:
        6c:9b:ec:33:82:79:6f:6c:04:db:9f:69:15:8f:db:1e:
        88:c6:8e:b3:57:78:ec:b4:c4:49:69:d0:73:f5:be:e3:
        ee:27:50:44:18:d1:0e:81:5a:3f:2d:d9:5a:0e:f8:68:
        d2:d0:8a:ec:b5:d7:b2:bf:9a:45:de:2e:69:ed:9c:c7:
        df:3d:64:04:8f:60:25:21:3f:bb:3f:e6:f6:d8:c3:c7:
        bf:4b:6b:77:fd:dc:d1:f2:72:f0:87:55:86:83:af:de:
        24:61:2b:b6:da:73:39:e7:dc:49:03:1c:f3:5b:4a:05:
        5f:b9:74:f2:5d:fe:4e:34:04:0a:97:8e:4a:f0:78:81:
        ae:b7:68:26:5a:e9:ab:d9:06:fb:87:fd:3a:5e:fd:6e:
        49:87:df:fe:a4:78:bb:17:b4:c9:11:5d:63:8b:a6:07:
        ab:89:a5:d2:41:8b:4e:1e:72:c8:15:fb:53:0b:c0:9d
    Fingerprint (SHA-256):
        98:1E:2C:B2:6D:26:F4:85:75:57:76:D3:5D:D6:6A:BE:0E:6C:97:18:06:31:0D:03:C7:9A:31:0D:09:0A:65:0F
    Fingerprint (SHA1):
        DF:D8:55:25:74:A7:41:D1:75:34:4F:1F:BF:87:A6:4A:9A:A8:57:72
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2780: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115238 (0x1e67bda6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed May 10 11:52:44 2017
            Not After : Tue May 10 11:52:44 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:6b:58:77:16:ee:a3:e8:87:77:3f:3d:1a:37:82:92:
                    aa:da:24:3c:d2:51:4f:fe:35:94:fe:6c:17:f3:3d:13:
                    fd:99:65:d1:f1:5a:dc:e2:79:34:9c:93:c0:93:97:59:
                    47:36:ea:b6:23:6e:cd:9b:7c:6a:42:14:ba:63:c9:4d:
                    e7:5d:bf:23:74:29:02:ae:21:13:ed:c1:2d:4e:9c:71:
                    ae:79:24:b3:25:2e:79:ac:16:b7:18:eb:cf:be:e3:f4:
                    f1:5e:29:99:7e:50:76:97:ad:b3:4a:1c:a4:1d:b5:26:
                    5f:b5:ac:1f:0f:0f:13:a3:32:e4:f5:70:87:88:bf:13:
                    ce:52:c0:b1:95:33:2b:6b:7e:27:20:74:40:0f:0d:4c:
                    5f:08:fd:12:3c:ba:eb:a5:68:c9:ef:32:f5:58:22:01:
                    c9:d9:0e:41:b6:a7:d1:a6:0f:16:a0:c3:b7:ff:31:20:
                    84:25:5e:55:96:1a:54:5e:71:12:30:0a:52:b1:5e:16:
                    fb:e4:23:ff:cb:eb:cf:3a:a3:81:12:6c:b1:b7:a1:42:
                    6f:d4:3e:33:e0:2c:16:3e:ea:58:c7:83:7f:50:95:9b:
                    d9:94:88:f3:a9:42:2f:3d:d1:cb:e9:e4:51:33:a3:e0:
                    c6:a7:3c:36:88:f8:2a:bd:83:d4:f5:74:dd:de:ff:95
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:67:91:91:21:b5:a0:37:03:8b:00:1c:13:6e:57:bb:
        2a:17:91:13:3f:56:7e:2d:26:1b:6d:df:74:96:a5:4b:
        69:d7:75:93:5f:d6:a4:4b:f8:77:7d:64:c1:67:71:f4:
        1b:28:86:65:c7:26:fb:76:10:21:a9:8d:83:41:2f:db:
        dd:74:11:de:c4:07:59:0d:2b:f1:ed:da:3b:6f:5b:13:
        f4:dc:a8:66:a7:71:69:41:39:f4:6c:7c:37:23:c1:ea:
        8d:24:b9:50:47:b1:37:d1:f4:a6:d6:8d:c7:72:a3:b6:
        45:8d:9e:6c:85:7d:e0:20:03:38:b8:b7:1e:14:8f:5e:
        29:6c:8e:8a:3e:5e:3f:fe:99:02:46:19:cf:10:c5:14:
        ca:2a:e4:67:18:53:e5:89:6d:4e:09:4e:02:e5:ae:4f:
        48:72:07:f8:e9:45:9d:e5:85:da:b1:5f:82:9c:f7:9a:
        3e:69:92:3b:af:84:ee:c1:8a:5e:18:9a:0c:f9:93:08:
        7f:33:68:37:1d:12:42:cc:f5:61:30:fe:35:27:f6:3e:
        37:41:42:72:58:45:5a:37:fb:ba:0a:30:86:26:4c:1b:
        7c:29:13:b1:78:e4:b7:25:a5:05:ae:eb:99:70:79:c1:
        21:ad:55:59:4b:47:c5:70:c5:02:46:0f:87:3e:f0:83
    Fingerprint (SHA-256):
        5B:52:A0:55:0A:7E:88:6F:D0:88:D7:7D:EB:21:4C:D7:31:6B:2D:2E:0E:7B:4F:E2:73:04:B2:30:B5:48:96:F5
    Fingerprint (SHA1):
        76:C5:D7:8B:01:16:5B:2D:BC:D5:20:0F:83:DE:E1:6A:3C:C4:C3:1B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2781: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115239 (0x1e67bda7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed May 10 11:52:44 2017
            Not After : Tue May 10 11:52:44 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:a6:0f:e8:2a:27:76:8f:86:bb:f7:54:14:15:1c:f0:
                    ee:44:b1:f8:53:05:a0:58:d1:a7:ce:10:6e:bb:8a:2f:
                    89:b4:56:00:37:c3:18:2f:16:21:5f:d2:55:04:c8:6b:
                    10:aa:24:af:31:28:da:36:96:93:ae:0a:e1:4c:50:6d:
                    cb:19:f3:38:37:b2:54:68:51:c0:db:f1:6a:05:49:01:
                    93:cc:3c:55:c6:06:1d:d0:9d:7b:89:f8:91:cf:42:b3:
                    04:f5:46:f5:86:06:ff:f2:ab:ce:2f:d2:10:b3:92:3d:
                    76:8c:cf:c7:81:a9:e7:0d:11:6e:a6:2f:bd:e5:c5:d2:
                    c3:9b:b3:87:7b:66:e1:17:b9:39:73:51:cb:da:4f:cc:
                    f4:9f:fb:c9:6d:2d:b9:f9:2a:96:ff:8b:00:b9:14:d6:
                    79:20:44:0a:f7:0d:ef:61:43:32:e3:c3:91:25:e8:aa:
                    4b:b1:2d:93:77:7b:0d:af:e6:82:60:f1:e6:d7:88:9d:
                    ba:9f:a0:5e:96:c5:b6:4b:6d:df:d1:6e:e5:8f:20:50:
                    f5:13:61:9b:cf:e5:e0:a8:43:99:ea:d5:9a:be:a1:2b:
                    5d:70:5b:1c:a0:d0:38:d8:44:d2:04:b8:f6:1d:0d:4b:
                    3d:b6:b6:74:9f:47:04:74:73:f1:c7:6f:73:06:39:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:06:5c:7f:43:85:1d:cd:09:39:1f:4e:8f:d0:31:f2:
        cd:15:8e:88:97:b3:a3:e6:fa:3d:3c:b3:49:d7:78:67:
        87:c3:34:ec:95:13:c4:e9:e0:b2:9d:a4:5b:44:d5:df:
        4b:8d:4f:5f:63:6d:e5:60:45:86:9b:de:3c:53:46:00:
        98:88:ad:4d:02:42:df:79:46:48:39:71:ce:29:c3:18:
        ed:1f:b7:42:9c:3f:ca:35:12:25:db:1c:20:e5:a3:58:
        2a:c2:57:89:67:34:82:ec:7a:16:a7:ee:2a:7c:8e:b4:
        61:6a:e4:a1:07:c6:53:1b:e8:93:39:71:e3:81:e6:e3:
        0d:76:ef:f4:f9:05:03:13:7c:7a:55:0e:29:78:13:2a:
        62:70:4b:8e:9d:72:52:de:4b:01:d9:f5:db:07:24:41:
        f5:62:32:8b:0c:d7:88:b6:cc:72:da:b0:7d:08:d5:78:
        72:b9:7c:ab:02:d1:f9:b9:77:09:eb:5c:e2:ae:f0:e3:
        df:73:ee:99:eb:48:c3:c2:aa:70:92:3c:ea:7f:06:89:
        e3:84:92:e9:6f:0c:83:5b:f7:e5:d4:d6:40:f3:eb:54:
        67:6f:f5:65:02:2f:1d:b5:11:82:85:bd:6b:f4:c5:b3:
        22:1e:12:61:cd:04:52:5c:3d:a3:78:3c:b5:30:99:54
    Fingerprint (SHA-256):
        9C:55:4A:97:93:75:58:7D:C6:8C:AD:5C:20:1A:6F:E7:7C:F6:72:D9:1C:13:D4:C9:34:97:95:DD:A6:A7:DD:BE
    Fingerprint (SHA1):
        62:F5:3D:66:7A:01:68:DD:86:7C:81:2E:BE:14:C6:87:00:57:C8:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2782: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115240 (0x1e67bda8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed May 10 11:52:44 2017
            Not After : Tue May 10 11:52:44 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:ee:01:78:ab:21:db:6d:1b:fd:9d:3b:f2:4a:c1:cf:
                    f5:09:71:0b:25:be:26:1c:a0:43:92:ef:ea:08:29:c2:
                    8c:41:2d:a7:d4:26:b0:54:2a:9c:99:da:89:18:1e:cb:
                    72:db:9f:15:4d:0b:26:15:00:60:46:f1:87:1d:fa:5f:
                    80:e3:73:c9:25:47:9a:f0:01:a5:e1:dc:78:00:e4:60:
                    a7:00:df:37:2e:6d:0f:c1:5b:a5:f6:55:d7:a0:41:1d:
                    13:a8:93:17:ff:72:dc:d7:1b:b5:e0:4a:83:31:27:8a:
                    11:c8:1a:df:51:41:e2:19:32:21:a7:84:d7:1a:1e:d7:
                    d7:42:6c:f9:fa:f7:4c:43:ea:86:9d:ee:6b:55:30:19:
                    ad:f8:d2:78:b7:c5:e1:78:a8:b3:5d:1d:e0:a0:dd:a8:
                    2c:f3:d5:19:25:43:af:1e:9c:f4:b3:a7:83:ba:8f:d6:
                    c9:4a:99:82:70:6e:1b:19:7e:75:70:98:2c:54:bd:35:
                    69:3c:e2:06:ab:a9:9f:e7:e7:5f:46:b4:55:6f:79:71:
                    e5:86:af:a5:e5:d8:3c:48:f9:bc:9c:8c:34:b0:8d:00:
                    14:1c:03:d0:b2:c7:e4:26:ec:82:3e:24:65:02:25:2e:
                    f8:7b:5d:e4:c3:a5:fe:73:8d:b0:7b:d4:e1:78:06:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:30:b6:3e:5f:f1:7a:0c:1c:a4:01:97:90:c7:43:8f:
        ca:7f:d5:04:1f:81:07:3e:5a:f0:ac:02:63:5c:7b:b1:
        f1:2b:7d:b0:68:79:59:70:0f:5b:c9:6b:cb:f4:9e:8d:
        25:58:16:e8:69:cb:0c:5a:30:3a:b4:2c:2e:6c:c3:c6:
        b3:04:a8:dc:a5:87:81:3e:32:09:c3:fc:e5:24:87:02:
        03:e8:dc:c3:88:b7:cd:6d:cb:76:ca:cf:44:b6:f1:91:
        6b:c1:b1:19:0a:2f:55:7b:2a:23:e4:42:fb:f4:8d:c5:
        17:80:08:b8:81:3d:90:6a:a0:a7:5e:cf:a9:81:54:d1:
        25:ac:69:70:f0:a6:e7:ce:93:94:25:97:a5:6a:d0:3a:
        37:2f:31:3c:99:0a:d1:fe:70:47:ae:d5:2f:4b:9c:55:
        81:1d:ae:ff:4f:ac:16:29:7c:9d:d7:f6:ba:cc:6e:0b:
        04:2c:43:f5:29:e0:4e:97:9a:af:2f:cc:84:16:f3:3d:
        b4:93:22:c5:19:ae:73:90:b5:22:3f:53:2c:74:38:65:
        db:1e:cb:21:00:4b:16:e5:59:f1:36:79:49:11:46:2a:
        76:3b:79:6c:d2:48:ae:ab:2a:2d:7a:fc:9e:1d:3b:f2:
        c3:b9:e2:eb:4c:92:83:53:38:d1:54:3e:a3:31:9c:cb
    Fingerprint (SHA-256):
        37:56:92:62:D5:EB:D6:71:14:B0:C7:A9:C2:9C:4B:65:73:29:79:EA:69:7F:25:04:AF:D4:AB:54:C4:A2:F1:DB
    Fingerprint (SHA1):
        1F:A1:50:D8:FC:45:1B:4A:32:EE:F7:94:59:0A:4B:68:1A:1D:92:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2783: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2784: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115255 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2785: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2786: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2787: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2788: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115256   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2789: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2790: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2791: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2792: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115257   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2793: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2794: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2795: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2796: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510115258   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2797: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2798: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2799: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115255 (0x1e67bdb7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:52:47 2017
            Not After : Tue May 10 11:52:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:25:8e:dd:c6:0f:74:8e:e1:b5:40:74:b7:b2:20:e3:
                    85:3a:84:07:96:4f:26:55:22:aa:e1:5c:be:e4:c4:70:
                    4b:0b:1c:00:dd:ea:ea:e9:95:ac:26:ea:85:60:d9:7e:
                    d2:4b:55:32:6f:bf:5d:72:68:48:a2:3b:5f:1d:e2:45:
                    e9:09:9f:10:4c:70:2d:c2:01:45:78:8b:61:de:d7:5e:
                    51:b1:66:74:e9:f3:5b:0c:6f:d5:f6:ed:a9:b4:66:56:
                    19:70:94:71:94:7e:ba:64:33:6c:f7:16:f9:0a:98:0b:
                    77:7f:d6:fb:fc:57:4b:71:aa:69:eb:89:8c:25:58:2f:
                    2b:6d:da:cc:85:fa:66:a0:2b:eb:75:76:5a:c4:8a:95:
                    0a:8c:5c:7a:94:03:5c:9c:08:4e:bb:a8:26:e4:85:72:
                    fa:5e:3f:7e:0a:8c:c0:8b:4f:4f:dd:92:32:96:1a:b7:
                    2b:47:b0:cd:7f:5e:44:8c:bd:93:c8:23:7f:0f:7a:42:
                    7f:21:ce:8f:27:80:27:7b:99:46:fd:2a:e2:0e:59:50:
                    ad:64:db:3c:57:d1:22:fc:71:ef:b8:64:2f:64:83:35:
                    6c:66:9e:f4:ae:8c:e6:30:8d:cc:00:42:35:e2:b8:a5:
                    27:ff:b9:d5:4a:de:83:72:d1:78:e1:59:8d:7b:82:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:b2:bb:0e:be:c4:76:c7:a3:8b:dd:ea:ba:fb:d4:16:
        de:40:76:20:4b:c8:64:ba:05:60:72:a3:c1:bc:79:3f:
        72:8d:ad:e1:8e:08:9e:b7:de:a7:0a:8a:f5:8f:6d:80:
        08:09:5e:d1:2e:3a:ce:55:a0:a2:95:57:4e:21:0f:9e:
        c1:47:6d:99:53:da:75:09:76:0d:22:c6:6a:35:e0:96:
        27:12:81:82:c5:d6:96:42:98:7b:2c:05:37:5c:de:73:
        4d:25:cc:3f:8d:e0:14:1c:34:10:47:a8:9a:77:fc:97:
        07:68:40:87:86:54:31:98:41:66:ca:49:4b:c9:3b:d7:
        bc:cf:b2:b7:92:20:b4:77:ec:22:52:02:71:8b:1a:07:
        5a:92:b0:40:96:16:e8:3e:41:f5:12:31:0a:24:0e:46:
        50:f3:8a:f6:8b:ac:87:e5:39:96:03:ff:75:30:de:d3:
        42:83:c7:7e:b9:d7:49:63:15:a1:98:a6:61:0b:c1:3b:
        e1:9c:2f:66:12:49:6f:8c:ef:7f:3b:c4:0c:1a:7d:d2:
        88:55:d0:3d:9e:f2:2a:85:c6:22:b3:f8:6a:17:df:2d:
        8a:51:2e:8d:5c:86:98:2f:06:b6:0c:3f:39:7b:4a:c6:
        c2:62:0b:27:a1:0e:2c:f3:5c:b9:27:fa:e4:b5:2f:f2
    Fingerprint (SHA-256):
        9C:6C:B2:CA:D6:73:35:06:E2:66:0E:21:1A:8D:36:09:D7:E4:AA:B1:94:7E:36:32:E8:75:11:E8:84:2D:99:48
    Fingerprint (SHA1):
        FE:F0:A5:66:0E:7E:F6:90:38:F3:F0:AB:0C:51:9C:91:31:3E:14:E4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2800: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2801: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115256 (0x1e67bdb8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:52:47 2017
            Not After : Tue May 10 11:52:47 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:ae:78:2d:ef:fe:1c:f0:7a:86:e8:f7:4e:b9:f7:71:
                    6d:8d:d2:1a:ef:20:fc:46:5f:5b:63:13:43:8f:ba:11:
                    10:75:15:11:02:a5:d0:a3:06:ac:d5:cd:dc:03:e1:07:
                    09:42:23:6f:c1:07:c1:1e:c7:79:82:a8:d2:3e:01:31:
                    82:7b:fd:4b:1d:4f:32:bb:f5:24:58:d5:ab:5a:72:35:
                    09:18:a2:db:83:fe:79:40:10:71:b6:c6:e2:96:b8:ab:
                    78:b1:0a:3d:d9:2b:19:8b:69:56:f4:75:56:e4:4c:97:
                    48:b2:74:7f:3b:fe:34:d6:c9:e4:0d:83:a3:91:a7:e2:
                    2c:c8:19:19:f5:06:ec:5c:ac:97:f7:cd:3e:7a:01:b2:
                    5f:56:d5:ad:66:79:2b:cb:b5:74:49:d3:f6:0f:65:31:
                    eb:d2:73:0c:3e:e7:ff:04:a8:42:57:cb:2d:2a:20:8a:
                    13:bf:0b:6f:58:9a:4a:a8:e4:3e:eb:14:7e:93:b9:84:
                    8e:e5:06:63:5c:63:33:65:56:52:4d:ec:78:75:3a:89:
                    03:1a:db:fa:c8:03:6e:fc:1d:09:2a:bf:de:8f:69:56:
                    6f:82:d8:66:09:49:67:bb:9b:98:54:f1:1b:e2:fb:f4:
                    90:fc:12:6e:73:17:8d:77:a7:7b:68:ba:14:a4:38:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:a9:93:2d:98:43:12:a8:22:5a:36:bd:46:b3:8c:f5:
        20:6b:fa:f3:08:93:62:f9:bd:f7:9b:8c:19:d7:be:9d:
        b4:16:1b:e6:8b:30:a9:55:ce:52:b6:c7:4a:3e:1f:ff:
        d0:eb:f5:6c:72:b3:6c:d8:71:59:66:0f:bf:b9:84:05:
        ec:c8:73:27:3e:d1:a2:9e:fe:7e:9b:f0:f3:b4:54:90:
        0a:fe:8e:46:9d:ce:1c:ae:9a:24:77:a7:58:57:1a:c9:
        e5:bb:da:38:ba:27:7c:7a:75:93:96:db:29:0b:6e:0b:
        b4:ea:40:8e:0a:f1:f5:d0:64:2b:94:b4:b5:ce:c1:08:
        4a:0f:0d:55:c1:0f:c0:92:7b:55:6c:d9:a3:16:11:e4:
        d2:d3:84:64:83:95:22:51:a9:c6:27:5f:12:1e:04:83:
        fd:a6:86:9e:c7:12:a6:0e:7f:b8:97:87:0b:f6:5f:15:
        63:ad:d9:cb:a5:b9:52:9b:db:8b:16:8c:3c:2d:75:4d:
        8f:85:50:b6:8c:5f:31:5d:22:e9:e5:de:53:72:11:f9:
        6e:7c:05:04:a3:51:55:25:73:67:bd:66:de:ce:11:bc:
        b9:8e:0c:0f:a4:58:ff:bf:8f:c0:1d:81:3f:7b:61:e7:
        21:98:91:e8:0c:88:e1:dd:50:f0:dd:aa:1f:b9:6b:98
    Fingerprint (SHA-256):
        EC:D2:F4:4F:50:88:C2:71:3B:2C:6C:C3:FB:74:74:54:09:07:8F:ED:16:2E:D3:FF:79:A8:84:99:CE:1C:CD:6A
    Fingerprint (SHA1):
        20:CF:8B:F2:1B:B3:78:F5:45:6F:DC:CF:CE:17:62:90:39:A5:80:28
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2802: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2803: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115257 (0x1e67bdb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:52:47 2017
            Not After : Tue May 10 11:52:47 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:0c:72:a5:9a:72:9a:c5:51:6f:a0:2e:5b:27:8b:97:
                    0e:8c:f7:74:a1:64:58:82:2f:9a:3a:8d:09:3c:2b:5c:
                    a3:8f:78:8a:38:1e:b3:78:27:ff:75:38:be:94:c1:11:
                    29:7a:3a:3b:be:5e:c3:6b:5e:e2:f7:e9:f5:f2:98:cb:
                    a6:45:24:c8:86:8d:eb:ea:40:53:00:a8:12:b7:69:15:
                    d7:d8:1c:ee:6e:be:33:41:17:03:62:d7:37:a5:e7:16:
                    97:5b:a0:e0:d0:fc:dc:db:10:b8:b3:fc:35:3e:be:e1:
                    4c:d1:c3:00:33:60:34:45:75:81:54:f5:75:8f:a3:63:
                    59:d6:41:43:c5:8a:59:ef:af:6b:9e:9e:ad:cb:e4:e0:
                    4b:ca:2c:13:85:27:32:3e:53:9f:42:76:92:60:46:aa:
                    06:9c:be:98:75:4c:6b:de:27:f6:0c:15:7a:c8:2a:66:
                    b8:52:f2:96:19:a7:2b:d3:6e:11:e7:95:72:5e:d6:7e:
                    d4:99:39:06:c6:d6:d2:2b:0c:41:e5:9b:10:90:ce:7d:
                    60:60:60:8d:1f:9d:ef:73:cd:17:c5:fa:a0:47:4d:26:
                    56:7e:e3:2a:52:7f:d6:e4:a4:db:df:c0:c4:9c:3a:ae:
                    7f:08:2b:24:d6:71:a8:26:1a:54:4d:23:e2:1d:fc:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:e8:db:9d:21:cd:f8:85:99:17:b0:59:bf:e6:e4:fb:
        69:2a:1d:3b:e9:8b:5b:ae:4d:fd:2f:2f:5f:d1:85:26:
        71:14:07:1e:0c:7a:76:4e:4f:38:7f:42:5b:50:f2:ca:
        3d:48:6e:10:6a:18:bb:35:74:ff:f0:b1:9a:41:14:29:
        87:a8:d3:59:e1:03:f0:7f:19:50:d5:fb:1b:9c:6f:d4:
        1c:0a:61:13:10:93:a0:66:b1:7e:43:82:fe:46:d8:67:
        9a:54:c4:e8:d1:e5:25:3e:57:55:ee:bb:a0:3b:9e:6f:
        34:84:d7:fa:cb:10:90:5d:dc:4a:3a:db:0f:73:74:46:
        4e:1a:e5:89:c9:3b:6b:5d:29:16:42:8a:45:e9:b5:71:
        4a:80:07:2f:1c:5f:7a:ce:2b:42:e4:44:ac:a8:91:04:
        96:ba:ce:9b:78:13:5a:b8:31:ae:fc:6b:b8:f4:05:9a:
        0f:35:6b:98:33:a3:74:65:b4:97:5d:f9:f6:d8:12:fd:
        61:d0:6f:b6:d2:23:b8:90:f2:b5:fe:9c:db:94:54:1c:
        62:3d:59:a4:5c:15:f9:88:71:fb:99:40:c7:bd:31:19:
        f4:0f:17:6e:5e:71:e2:a9:67:72:02:25:49:03:89:38:
        fd:d5:ad:a3:ff:00:cf:e4:45:09:be:52:e1:aa:28:bd
    Fingerprint (SHA-256):
        67:E1:CD:20:E3:00:68:36:16:C3:32:83:2D:16:F2:69:A9:1A:1B:F8:60:D3:3A:78:A3:E3:D1:16:2B:50:96:88
    Fingerprint (SHA1):
        23:51:A8:EB:3B:17:D0:5F:EF:31:5D:10:23:83:2C:B8:65:71:DB:C2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2804: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2805: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2806: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2807: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2808: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115255 (0x1e67bdb7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:52:47 2017
            Not After : Tue May 10 11:52:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:25:8e:dd:c6:0f:74:8e:e1:b5:40:74:b7:b2:20:e3:
                    85:3a:84:07:96:4f:26:55:22:aa:e1:5c:be:e4:c4:70:
                    4b:0b:1c:00:dd:ea:ea:e9:95:ac:26:ea:85:60:d9:7e:
                    d2:4b:55:32:6f:bf:5d:72:68:48:a2:3b:5f:1d:e2:45:
                    e9:09:9f:10:4c:70:2d:c2:01:45:78:8b:61:de:d7:5e:
                    51:b1:66:74:e9:f3:5b:0c:6f:d5:f6:ed:a9:b4:66:56:
                    19:70:94:71:94:7e:ba:64:33:6c:f7:16:f9:0a:98:0b:
                    77:7f:d6:fb:fc:57:4b:71:aa:69:eb:89:8c:25:58:2f:
                    2b:6d:da:cc:85:fa:66:a0:2b:eb:75:76:5a:c4:8a:95:
                    0a:8c:5c:7a:94:03:5c:9c:08:4e:bb:a8:26:e4:85:72:
                    fa:5e:3f:7e:0a:8c:c0:8b:4f:4f:dd:92:32:96:1a:b7:
                    2b:47:b0:cd:7f:5e:44:8c:bd:93:c8:23:7f:0f:7a:42:
                    7f:21:ce:8f:27:80:27:7b:99:46:fd:2a:e2:0e:59:50:
                    ad:64:db:3c:57:d1:22:fc:71:ef:b8:64:2f:64:83:35:
                    6c:66:9e:f4:ae:8c:e6:30:8d:cc:00:42:35:e2:b8:a5:
                    27:ff:b9:d5:4a:de:83:72:d1:78:e1:59:8d:7b:82:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:b2:bb:0e:be:c4:76:c7:a3:8b:dd:ea:ba:fb:d4:16:
        de:40:76:20:4b:c8:64:ba:05:60:72:a3:c1:bc:79:3f:
        72:8d:ad:e1:8e:08:9e:b7:de:a7:0a:8a:f5:8f:6d:80:
        08:09:5e:d1:2e:3a:ce:55:a0:a2:95:57:4e:21:0f:9e:
        c1:47:6d:99:53:da:75:09:76:0d:22:c6:6a:35:e0:96:
        27:12:81:82:c5:d6:96:42:98:7b:2c:05:37:5c:de:73:
        4d:25:cc:3f:8d:e0:14:1c:34:10:47:a8:9a:77:fc:97:
        07:68:40:87:86:54:31:98:41:66:ca:49:4b:c9:3b:d7:
        bc:cf:b2:b7:92:20:b4:77:ec:22:52:02:71:8b:1a:07:
        5a:92:b0:40:96:16:e8:3e:41:f5:12:31:0a:24:0e:46:
        50:f3:8a:f6:8b:ac:87:e5:39:96:03:ff:75:30:de:d3:
        42:83:c7:7e:b9:d7:49:63:15:a1:98:a6:61:0b:c1:3b:
        e1:9c:2f:66:12:49:6f:8c:ef:7f:3b:c4:0c:1a:7d:d2:
        88:55:d0:3d:9e:f2:2a:85:c6:22:b3:f8:6a:17:df:2d:
        8a:51:2e:8d:5c:86:98:2f:06:b6:0c:3f:39:7b:4a:c6:
        c2:62:0b:27:a1:0e:2c:f3:5c:b9:27:fa:e4:b5:2f:f2
    Fingerprint (SHA-256):
        9C:6C:B2:CA:D6:73:35:06:E2:66:0E:21:1A:8D:36:09:D7:E4:AA:B1:94:7E:36:32:E8:75:11:E8:84:2D:99:48
    Fingerprint (SHA1):
        FE:F0:A5:66:0E:7E:F6:90:38:F3:F0:AB:0C:51:9C:91:31:3E:14:E4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2809: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2810: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115256 (0x1e67bdb8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:52:47 2017
            Not After : Tue May 10 11:52:47 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:ae:78:2d:ef:fe:1c:f0:7a:86:e8:f7:4e:b9:f7:71:
                    6d:8d:d2:1a:ef:20:fc:46:5f:5b:63:13:43:8f:ba:11:
                    10:75:15:11:02:a5:d0:a3:06:ac:d5:cd:dc:03:e1:07:
                    09:42:23:6f:c1:07:c1:1e:c7:79:82:a8:d2:3e:01:31:
                    82:7b:fd:4b:1d:4f:32:bb:f5:24:58:d5:ab:5a:72:35:
                    09:18:a2:db:83:fe:79:40:10:71:b6:c6:e2:96:b8:ab:
                    78:b1:0a:3d:d9:2b:19:8b:69:56:f4:75:56:e4:4c:97:
                    48:b2:74:7f:3b:fe:34:d6:c9:e4:0d:83:a3:91:a7:e2:
                    2c:c8:19:19:f5:06:ec:5c:ac:97:f7:cd:3e:7a:01:b2:
                    5f:56:d5:ad:66:79:2b:cb:b5:74:49:d3:f6:0f:65:31:
                    eb:d2:73:0c:3e:e7:ff:04:a8:42:57:cb:2d:2a:20:8a:
                    13:bf:0b:6f:58:9a:4a:a8:e4:3e:eb:14:7e:93:b9:84:
                    8e:e5:06:63:5c:63:33:65:56:52:4d:ec:78:75:3a:89:
                    03:1a:db:fa:c8:03:6e:fc:1d:09:2a:bf:de:8f:69:56:
                    6f:82:d8:66:09:49:67:bb:9b:98:54:f1:1b:e2:fb:f4:
                    90:fc:12:6e:73:17:8d:77:a7:7b:68:ba:14:a4:38:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:a9:93:2d:98:43:12:a8:22:5a:36:bd:46:b3:8c:f5:
        20:6b:fa:f3:08:93:62:f9:bd:f7:9b:8c:19:d7:be:9d:
        b4:16:1b:e6:8b:30:a9:55:ce:52:b6:c7:4a:3e:1f:ff:
        d0:eb:f5:6c:72:b3:6c:d8:71:59:66:0f:bf:b9:84:05:
        ec:c8:73:27:3e:d1:a2:9e:fe:7e:9b:f0:f3:b4:54:90:
        0a:fe:8e:46:9d:ce:1c:ae:9a:24:77:a7:58:57:1a:c9:
        e5:bb:da:38:ba:27:7c:7a:75:93:96:db:29:0b:6e:0b:
        b4:ea:40:8e:0a:f1:f5:d0:64:2b:94:b4:b5:ce:c1:08:
        4a:0f:0d:55:c1:0f:c0:92:7b:55:6c:d9:a3:16:11:e4:
        d2:d3:84:64:83:95:22:51:a9:c6:27:5f:12:1e:04:83:
        fd:a6:86:9e:c7:12:a6:0e:7f:b8:97:87:0b:f6:5f:15:
        63:ad:d9:cb:a5:b9:52:9b:db:8b:16:8c:3c:2d:75:4d:
        8f:85:50:b6:8c:5f:31:5d:22:e9:e5:de:53:72:11:f9:
        6e:7c:05:04:a3:51:55:25:73:67:bd:66:de:ce:11:bc:
        b9:8e:0c:0f:a4:58:ff:bf:8f:c0:1d:81:3f:7b:61:e7:
        21:98:91:e8:0c:88:e1:dd:50:f0:dd:aa:1f:b9:6b:98
    Fingerprint (SHA-256):
        EC:D2:F4:4F:50:88:C2:71:3B:2C:6C:C3:FB:74:74:54:09:07:8F:ED:16:2E:D3:FF:79:A8:84:99:CE:1C:CD:6A
    Fingerprint (SHA1):
        20:CF:8B:F2:1B:B3:78:F5:45:6F:DC:CF:CE:17:62:90:39:A5:80:28
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2811: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2812: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115257 (0x1e67bdb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:52:47 2017
            Not After : Tue May 10 11:52:47 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:0c:72:a5:9a:72:9a:c5:51:6f:a0:2e:5b:27:8b:97:
                    0e:8c:f7:74:a1:64:58:82:2f:9a:3a:8d:09:3c:2b:5c:
                    a3:8f:78:8a:38:1e:b3:78:27:ff:75:38:be:94:c1:11:
                    29:7a:3a:3b:be:5e:c3:6b:5e:e2:f7:e9:f5:f2:98:cb:
                    a6:45:24:c8:86:8d:eb:ea:40:53:00:a8:12:b7:69:15:
                    d7:d8:1c:ee:6e:be:33:41:17:03:62:d7:37:a5:e7:16:
                    97:5b:a0:e0:d0:fc:dc:db:10:b8:b3:fc:35:3e:be:e1:
                    4c:d1:c3:00:33:60:34:45:75:81:54:f5:75:8f:a3:63:
                    59:d6:41:43:c5:8a:59:ef:af:6b:9e:9e:ad:cb:e4:e0:
                    4b:ca:2c:13:85:27:32:3e:53:9f:42:76:92:60:46:aa:
                    06:9c:be:98:75:4c:6b:de:27:f6:0c:15:7a:c8:2a:66:
                    b8:52:f2:96:19:a7:2b:d3:6e:11:e7:95:72:5e:d6:7e:
                    d4:99:39:06:c6:d6:d2:2b:0c:41:e5:9b:10:90:ce:7d:
                    60:60:60:8d:1f:9d:ef:73:cd:17:c5:fa:a0:47:4d:26:
                    56:7e:e3:2a:52:7f:d6:e4:a4:db:df:c0:c4:9c:3a:ae:
                    7f:08:2b:24:d6:71:a8:26:1a:54:4d:23:e2:1d:fc:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:e8:db:9d:21:cd:f8:85:99:17:b0:59:bf:e6:e4:fb:
        69:2a:1d:3b:e9:8b:5b:ae:4d:fd:2f:2f:5f:d1:85:26:
        71:14:07:1e:0c:7a:76:4e:4f:38:7f:42:5b:50:f2:ca:
        3d:48:6e:10:6a:18:bb:35:74:ff:f0:b1:9a:41:14:29:
        87:a8:d3:59:e1:03:f0:7f:19:50:d5:fb:1b:9c:6f:d4:
        1c:0a:61:13:10:93:a0:66:b1:7e:43:82:fe:46:d8:67:
        9a:54:c4:e8:d1:e5:25:3e:57:55:ee:bb:a0:3b:9e:6f:
        34:84:d7:fa:cb:10:90:5d:dc:4a:3a:db:0f:73:74:46:
        4e:1a:e5:89:c9:3b:6b:5d:29:16:42:8a:45:e9:b5:71:
        4a:80:07:2f:1c:5f:7a:ce:2b:42:e4:44:ac:a8:91:04:
        96:ba:ce:9b:78:13:5a:b8:31:ae:fc:6b:b8:f4:05:9a:
        0f:35:6b:98:33:a3:74:65:b4:97:5d:f9:f6:d8:12:fd:
        61:d0:6f:b6:d2:23:b8:90:f2:b5:fe:9c:db:94:54:1c:
        62:3d:59:a4:5c:15:f9:88:71:fb:99:40:c7:bd:31:19:
        f4:0f:17:6e:5e:71:e2:a9:67:72:02:25:49:03:89:38:
        fd:d5:ad:a3:ff:00:cf:e4:45:09:be:52:e1:aa:28:bd
    Fingerprint (SHA-256):
        67:E1:CD:20:E3:00:68:36:16:C3:32:83:2D:16:F2:69:A9:1A:1B:F8:60:D3:3A:78:A3:E3:D1:16:2B:50:96:88
    Fingerprint (SHA1):
        23:51:A8:EB:3B:17:D0:5F:EF:31:5D:10:23:83:2C:B8:65:71:DB:C2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2813: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2814: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2815: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115259 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2816: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2817: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2818: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2819: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115260   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2820: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2821: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2822: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2823: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115261   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2824: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2825: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2826: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2827: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510115262   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2828: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2829: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2830: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2831: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510115263   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2832: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2833: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2834: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115259 (0x1e67bdbb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:52:49 2017
            Not After : Tue May 10 11:52:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:1f:c2:de:2d:33:b3:f7:ee:01:0f:98:74:40:e6:26:
                    c7:ff:d0:c1:86:12:da:93:9e:9b:64:8a:1c:78:34:7a:
                    00:f7:a0:44:73:7a:53:99:fa:88:93:26:60:f0:e8:88:
                    b9:a1:54:c4:a9:fb:86:f0:5e:5e:ae:ed:59:11:4e:9a:
                    1e:fc:93:77:47:5c:74:e9:2a:cf:53:d4:50:c9:dd:5c:
                    88:d5:bb:63:a8:76:22:cc:09:87:7c:de:38:34:95:14:
                    47:84:ac:eb:31:df:99:93:c0:7a:2f:af:15:66:da:b7:
                    b6:6c:e3:2a:be:70:21:1e:db:04:99:1e:31:73:81:68:
                    19:8f:b5:83:ba:0e:b0:d8:9a:3e:d2:14:7b:cd:b3:f6:
                    58:08:d3:8d:dd:a3:8c:8b:9c:46:ee:ba:9e:de:db:35:
                    2a:52:64:d9:ca:56:66:8a:86:4c:65:0b:17:be:f2:78:
                    65:3a:3e:36:65:22:57:04:e1:e5:1e:1a:d0:7f:15:cd:
                    cc:79:86:1c:dc:56:7f:99:3f:c4:80:40:17:88:c3:a6:
                    3c:f9:00:c2:48:7f:02:6b:1c:f1:b9:5f:90:2f:b0:14:
                    58:30:84:6e:3c:3d:77:c7:44:8e:98:07:ed:bc:3e:80:
                    a9:be:dd:1d:69:d1:bf:0f:d3:5f:29:71:2d:84:51:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:89:24:ab:b4:5b:bc:8e:d4:7c:ed:af:ed:87:b7:a8:
        96:48:74:4e:26:31:65:aa:7e:87:87:90:ed:11:b8:cc:
        68:67:3e:96:a8:03:4c:cc:0c:1c:62:b8:d1:55:23:88:
        4a:33:1d:8a:e0:13:33:19:24:9e:df:d5:cd:36:49:7a:
        8f:ab:ad:61:da:a0:f0:49:ae:25:e8:c9:0b:33:98:7b:
        ee:2c:21:47:f1:8b:07:99:ce:ea:1d:36:3b:db:88:1b:
        33:6f:62:c0:f4:09:ec:1e:9f:ef:bd:b7:e9:a1:0b:e5:
        e9:61:ea:b0:0b:43:9f:d5:4c:f0:50:f5:cd:ff:15:06:
        33:71:2c:b7:0c:b5:5c:96:a3:5e:9e:32:2b:ed:6d:68:
        3b:19:40:eb:79:3f:ac:0d:b7:33:09:ac:47:19:bf:a7:
        53:ca:53:d4:0e:db:75:72:0f:67:65:ab:be:e4:1f:8e:
        57:33:da:8b:8c:00:20:0b:d4:d1:ca:e1:e5:ba:34:5b:
        c1:53:b0:8c:a7:46:fa:40:48:0b:84:53:5b:96:6b:af:
        dc:26:1a:d4:8e:76:31:f5:e7:09:f2:03:ba:5a:f5:24:
        4d:fc:76:7c:fe:f4:97:ac:93:4e:02:d0:3b:99:3c:96:
        5a:53:58:f3:d1:03:da:a6:44:bd:74:01:fa:88:ee:73
    Fingerprint (SHA-256):
        76:05:53:BA:DB:0C:17:95:1C:86:30:1F:FC:56:CB:56:72:04:4B:6E:C3:9A:BA:F9:75:B4:0C:8C:CA:9D:52:19
    Fingerprint (SHA1):
        C7:68:3F:CE:54:83:07:28:B2:00:D3:81:11:94:32:A3:31:09:9C:7A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2835: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2836: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115260 (0x1e67bdbc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:52:49 2017
            Not After : Tue May 10 11:52:49 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:4d:3f:3f:df:c1:93:c8:18:ab:d7:9e:ec:17:3c:50:
                    79:b6:84:69:b8:c7:d7:86:f7:98:0c:3c:a9:bf:a5:34:
                    64:24:9e:c9:fc:2d:cd:12:e5:57:94:a1:6c:18:5c:9f:
                    c1:59:34:b6:ec:ad:06:b2:19:35:37:f7:b9:09:fe:6e:
                    5f:22:b9:76:da:4a:c0:93:95:c6:db:39:0b:e4:74:0f:
                    10:b9:3d:c9:7a:79:14:b7:7b:ec:41:6d:70:4d:6b:4d:
                    92:9a:bc:c5:55:c1:03:37:a4:38:4b:70:3f:c9:b8:76:
                    f3:9f:7c:07:0c:73:05:5a:83:dc:ab:62:7e:a8:11:da:
                    42:0c:60:4c:80:a4:87:09:eb:eb:6b:4f:65:11:ed:f2:
                    79:aa:da:e7:80:56:d4:8b:32:98:bb:78:21:84:cc:dd:
                    24:95:3a:00:f2:d1:34:bb:b7:7d:e2:33:50:8f:58:5c:
                    21:a4:c1:39:33:04:7e:d2:9f:31:f3:d2:32:9b:13:a1:
                    51:98:d2:21:b3:2e:4e:dc:bf:99:96:f7:e5:7a:03:8d:
                    dc:3d:be:cf:c1:b7:bb:b3:09:2c:a0:da:f0:82:b8:1c:
                    4e:4a:c1:24:03:64:bf:c7:fa:10:ae:fb:b8:4b:87:97:
                    91:5a:1b:f1:83:c6:5a:85:2f:f0:c1:f8:0a:fe:a5:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:40:cb:04:66:af:4f:49:b9:47:94:a9:70:b8:64:5e:
        a6:37:f6:e2:4f:18:17:59:e3:42:f8:6f:b9:d2:2b:3e:
        8e:14:c1:60:97:d4:4e:d8:08:cb:0d:75:15:7f:c5:30:
        2f:a0:68:aa:8d:84:02:d4:26:8f:8a:08:2b:09:58:62:
        9a:36:32:da:78:f4:26:a9:3e:34:b9:19:ad:e1:64:2f:
        78:33:d2:33:4e:20:ab:35:57:3c:8e:d4:6b:98:d7:07:
        aa:19:c9:14:59:e1:b7:4e:71:69:bd:75:0e:a6:ff:9a:
        65:05:8d:eb:5a:f3:3f:b5:86:89:3d:8a:b7:79:63:a7:
        29:80:46:40:ef:f9:83:47:58:de:2f:7b:55:8e:c1:96:
        bd:98:ec:fa:8b:5e:40:41:35:1e:34:6e:cf:11:42:bc:
        30:c9:68:e7:13:ed:82:f0:a0:25:76:04:a3:c3:7e:88:
        fa:15:70:12:91:2b:0c:38:d8:3a:c8:1e:55:f3:7f:38:
        cb:3d:f0:a0:94:b4:2d:0a:b1:04:7b:aa:f7:76:4f:98:
        c2:8c:b9:62:88:61:76:7d:43:3a:ed:54:ae:bc:5a:11:
        94:e2:5c:85:17:28:6c:87:fd:b6:55:72:9b:83:ea:e1:
        cd:4d:d8:2d:5d:52:2d:db:fa:80:c2:02:eb:aa:24:1b
    Fingerprint (SHA-256):
        06:37:64:61:C1:E3:53:FC:0D:61:09:14:DD:0A:8B:54:BE:65:A6:B5:A5:06:91:0C:E8:71:0C:C8:F6:A1:34:AC
    Fingerprint (SHA1):
        BF:85:00:8C:EC:AC:D5:2B:AD:A7:59:67:E9:3F:3C:66:FB:C5:BF:7A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2837: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2838: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115261 (0x1e67bdbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:52:50 2017
            Not After : Tue May 10 11:52:50 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:0a:8d:36:33:a3:ed:fe:45:67:55:db:e4:e6:a8:3b:
                    8d:ea:9d:8c:b7:d4:b6:26:e3:5f:49:5b:c3:62:08:23:
                    e0:bb:62:ae:1f:bc:37:af:60:8d:06:2d:3c:23:a1:f5:
                    1e:e1:ab:e7:90:75:69:62:fc:3a:00:3c:51:f9:9a:7a:
                    3c:9a:3b:53:30:84:af:db:d4:19:70:63:17:f4:f6:49:
                    46:e0:9b:99:ee:f1:61:c4:53:08:bb:1b:0c:b5:d7:8c:
                    6c:7b:a4:3a:5c:6a:4c:af:1e:57:66:5a:e9:b0:5b:0b:
                    98:18:d9:c7:60:14:10:0c:dc:7b:07:17:80:f1:d5:10:
                    cf:f6:ed:be:8c:55:94:06:38:0e:ed:7d:b3:87:38:a1:
                    5b:13:c2:58:82:fb:c9:6d:ef:60:50:2d:a5:f5:92:4b:
                    cd:d0:b2:73:ea:9d:64:29:4d:02:b4:b4:6e:15:3a:76:
                    7f:dd:a6:c6:c0:b7:bd:46:bc:e6:cf:0c:af:3c:a9:ab:
                    f6:9b:17:72:0a:62:78:57:93:c1:97:f2:e1:97:50:ea:
                    da:f1:40:92:d5:47:82:d3:6c:13:24:1f:05:b5:76:cc:
                    5c:6d:76:70:67:1c:0e:70:4f:0e:fd:be:66:df:50:12:
                    c5:e4:be:f3:e1:9b:63:78:3b:eb:87:5b:53:a2:33:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:c4:cf:3b:ab:2c:8e:a8:86:0d:b0:83:e4:71:69:d8:
        28:1b:ea:94:b1:3c:52:b2:b5:99:11:0d:e2:bd:2e:12:
        d8:c5:ea:f1:6d:fa:d7:c9:56:c3:01:42:66:ca:b9:42:
        42:0d:29:64:43:0f:40:eb:cf:f3:04:12:68:87:f7:5e:
        73:b8:4e:75:24:60:58:0f:4e:2c:86:d3:6b:51:a0:dd:
        e5:73:17:63:28:59:d0:f2:d3:32:66:76:c9:78:3d:38:
        61:79:4a:19:de:93:26:d6:6f:d2:a1:f8:89:ec:eb:d2:
        4b:8b:a4:d1:b0:3e:74:a1:26:df:8d:4b:41:3f:cc:96:
        ac:95:fa:e2:46:7b:f9:a4:0a:77:2e:5d:ad:74:71:ba:
        43:a3:16:ce:e3:9a:76:67:65:c2:53:12:e5:0d:45:39:
        1e:de:0f:5e:f6:fd:b3:72:df:7c:56:69:b8:40:92:05:
        55:a1:66:d0:22:ef:cf:b3:c6:be:bb:0c:6e:de:19:24:
        92:8a:d3:aa:a8:81:c2:36:84:83:b7:56:fb:38:4f:56:
        1a:20:36:c9:5c:42:8a:78:d6:72:24:80:e6:c5:f9:99:
        62:c0:de:a9:6d:31:3a:93:ef:a9:80:8f:f6:7d:ec:b2:
        f8:a8:63:39:87:f6:ec:29:37:2d:6b:a9:b8:96:f8:9d
    Fingerprint (SHA-256):
        0E:BE:9E:BD:E2:E7:1A:A0:A7:C9:AE:6D:76:22:49:1B:04:F8:0E:00:EE:4A:3F:19:39:90:0F:F3:27:AC:42:27
    Fingerprint (SHA1):
        4C:46:13:A3:98:EB:05:20:AB:78:C8:28:1B:FB:95:B8:1B:2F:E2:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2839: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2840: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2841: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2842: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2843: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115259 (0x1e67bdbb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:52:49 2017
            Not After : Tue May 10 11:52:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:1f:c2:de:2d:33:b3:f7:ee:01:0f:98:74:40:e6:26:
                    c7:ff:d0:c1:86:12:da:93:9e:9b:64:8a:1c:78:34:7a:
                    00:f7:a0:44:73:7a:53:99:fa:88:93:26:60:f0:e8:88:
                    b9:a1:54:c4:a9:fb:86:f0:5e:5e:ae:ed:59:11:4e:9a:
                    1e:fc:93:77:47:5c:74:e9:2a:cf:53:d4:50:c9:dd:5c:
                    88:d5:bb:63:a8:76:22:cc:09:87:7c:de:38:34:95:14:
                    47:84:ac:eb:31:df:99:93:c0:7a:2f:af:15:66:da:b7:
                    b6:6c:e3:2a:be:70:21:1e:db:04:99:1e:31:73:81:68:
                    19:8f:b5:83:ba:0e:b0:d8:9a:3e:d2:14:7b:cd:b3:f6:
                    58:08:d3:8d:dd:a3:8c:8b:9c:46:ee:ba:9e:de:db:35:
                    2a:52:64:d9:ca:56:66:8a:86:4c:65:0b:17:be:f2:78:
                    65:3a:3e:36:65:22:57:04:e1:e5:1e:1a:d0:7f:15:cd:
                    cc:79:86:1c:dc:56:7f:99:3f:c4:80:40:17:88:c3:a6:
                    3c:f9:00:c2:48:7f:02:6b:1c:f1:b9:5f:90:2f:b0:14:
                    58:30:84:6e:3c:3d:77:c7:44:8e:98:07:ed:bc:3e:80:
                    a9:be:dd:1d:69:d1:bf:0f:d3:5f:29:71:2d:84:51:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:89:24:ab:b4:5b:bc:8e:d4:7c:ed:af:ed:87:b7:a8:
        96:48:74:4e:26:31:65:aa:7e:87:87:90:ed:11:b8:cc:
        68:67:3e:96:a8:03:4c:cc:0c:1c:62:b8:d1:55:23:88:
        4a:33:1d:8a:e0:13:33:19:24:9e:df:d5:cd:36:49:7a:
        8f:ab:ad:61:da:a0:f0:49:ae:25:e8:c9:0b:33:98:7b:
        ee:2c:21:47:f1:8b:07:99:ce:ea:1d:36:3b:db:88:1b:
        33:6f:62:c0:f4:09:ec:1e:9f:ef:bd:b7:e9:a1:0b:e5:
        e9:61:ea:b0:0b:43:9f:d5:4c:f0:50:f5:cd:ff:15:06:
        33:71:2c:b7:0c:b5:5c:96:a3:5e:9e:32:2b:ed:6d:68:
        3b:19:40:eb:79:3f:ac:0d:b7:33:09:ac:47:19:bf:a7:
        53:ca:53:d4:0e:db:75:72:0f:67:65:ab:be:e4:1f:8e:
        57:33:da:8b:8c:00:20:0b:d4:d1:ca:e1:e5:ba:34:5b:
        c1:53:b0:8c:a7:46:fa:40:48:0b:84:53:5b:96:6b:af:
        dc:26:1a:d4:8e:76:31:f5:e7:09:f2:03:ba:5a:f5:24:
        4d:fc:76:7c:fe:f4:97:ac:93:4e:02:d0:3b:99:3c:96:
        5a:53:58:f3:d1:03:da:a6:44:bd:74:01:fa:88:ee:73
    Fingerprint (SHA-256):
        76:05:53:BA:DB:0C:17:95:1C:86:30:1F:FC:56:CB:56:72:04:4B:6E:C3:9A:BA:F9:75:B4:0C:8C:CA:9D:52:19
    Fingerprint (SHA1):
        C7:68:3F:CE:54:83:07:28:B2:00:D3:81:11:94:32:A3:31:09:9C:7A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2844: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2845: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115260 (0x1e67bdbc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:52:49 2017
            Not After : Tue May 10 11:52:49 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:4d:3f:3f:df:c1:93:c8:18:ab:d7:9e:ec:17:3c:50:
                    79:b6:84:69:b8:c7:d7:86:f7:98:0c:3c:a9:bf:a5:34:
                    64:24:9e:c9:fc:2d:cd:12:e5:57:94:a1:6c:18:5c:9f:
                    c1:59:34:b6:ec:ad:06:b2:19:35:37:f7:b9:09:fe:6e:
                    5f:22:b9:76:da:4a:c0:93:95:c6:db:39:0b:e4:74:0f:
                    10:b9:3d:c9:7a:79:14:b7:7b:ec:41:6d:70:4d:6b:4d:
                    92:9a:bc:c5:55:c1:03:37:a4:38:4b:70:3f:c9:b8:76:
                    f3:9f:7c:07:0c:73:05:5a:83:dc:ab:62:7e:a8:11:da:
                    42:0c:60:4c:80:a4:87:09:eb:eb:6b:4f:65:11:ed:f2:
                    79:aa:da:e7:80:56:d4:8b:32:98:bb:78:21:84:cc:dd:
                    24:95:3a:00:f2:d1:34:bb:b7:7d:e2:33:50:8f:58:5c:
                    21:a4:c1:39:33:04:7e:d2:9f:31:f3:d2:32:9b:13:a1:
                    51:98:d2:21:b3:2e:4e:dc:bf:99:96:f7:e5:7a:03:8d:
                    dc:3d:be:cf:c1:b7:bb:b3:09:2c:a0:da:f0:82:b8:1c:
                    4e:4a:c1:24:03:64:bf:c7:fa:10:ae:fb:b8:4b:87:97:
                    91:5a:1b:f1:83:c6:5a:85:2f:f0:c1:f8:0a:fe:a5:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:40:cb:04:66:af:4f:49:b9:47:94:a9:70:b8:64:5e:
        a6:37:f6:e2:4f:18:17:59:e3:42:f8:6f:b9:d2:2b:3e:
        8e:14:c1:60:97:d4:4e:d8:08:cb:0d:75:15:7f:c5:30:
        2f:a0:68:aa:8d:84:02:d4:26:8f:8a:08:2b:09:58:62:
        9a:36:32:da:78:f4:26:a9:3e:34:b9:19:ad:e1:64:2f:
        78:33:d2:33:4e:20:ab:35:57:3c:8e:d4:6b:98:d7:07:
        aa:19:c9:14:59:e1:b7:4e:71:69:bd:75:0e:a6:ff:9a:
        65:05:8d:eb:5a:f3:3f:b5:86:89:3d:8a:b7:79:63:a7:
        29:80:46:40:ef:f9:83:47:58:de:2f:7b:55:8e:c1:96:
        bd:98:ec:fa:8b:5e:40:41:35:1e:34:6e:cf:11:42:bc:
        30:c9:68:e7:13:ed:82:f0:a0:25:76:04:a3:c3:7e:88:
        fa:15:70:12:91:2b:0c:38:d8:3a:c8:1e:55:f3:7f:38:
        cb:3d:f0:a0:94:b4:2d:0a:b1:04:7b:aa:f7:76:4f:98:
        c2:8c:b9:62:88:61:76:7d:43:3a:ed:54:ae:bc:5a:11:
        94:e2:5c:85:17:28:6c:87:fd:b6:55:72:9b:83:ea:e1:
        cd:4d:d8:2d:5d:52:2d:db:fa:80:c2:02:eb:aa:24:1b
    Fingerprint (SHA-256):
        06:37:64:61:C1:E3:53:FC:0D:61:09:14:DD:0A:8B:54:BE:65:A6:B5:A5:06:91:0C:E8:71:0C:C8:F6:A1:34:AC
    Fingerprint (SHA1):
        BF:85:00:8C:EC:AC:D5:2B:AD:A7:59:67:E9:3F:3C:66:FB:C5:BF:7A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2846: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2847: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115261 (0x1e67bdbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:52:50 2017
            Not After : Tue May 10 11:52:50 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:0a:8d:36:33:a3:ed:fe:45:67:55:db:e4:e6:a8:3b:
                    8d:ea:9d:8c:b7:d4:b6:26:e3:5f:49:5b:c3:62:08:23:
                    e0:bb:62:ae:1f:bc:37:af:60:8d:06:2d:3c:23:a1:f5:
                    1e:e1:ab:e7:90:75:69:62:fc:3a:00:3c:51:f9:9a:7a:
                    3c:9a:3b:53:30:84:af:db:d4:19:70:63:17:f4:f6:49:
                    46:e0:9b:99:ee:f1:61:c4:53:08:bb:1b:0c:b5:d7:8c:
                    6c:7b:a4:3a:5c:6a:4c:af:1e:57:66:5a:e9:b0:5b:0b:
                    98:18:d9:c7:60:14:10:0c:dc:7b:07:17:80:f1:d5:10:
                    cf:f6:ed:be:8c:55:94:06:38:0e:ed:7d:b3:87:38:a1:
                    5b:13:c2:58:82:fb:c9:6d:ef:60:50:2d:a5:f5:92:4b:
                    cd:d0:b2:73:ea:9d:64:29:4d:02:b4:b4:6e:15:3a:76:
                    7f:dd:a6:c6:c0:b7:bd:46:bc:e6:cf:0c:af:3c:a9:ab:
                    f6:9b:17:72:0a:62:78:57:93:c1:97:f2:e1:97:50:ea:
                    da:f1:40:92:d5:47:82:d3:6c:13:24:1f:05:b5:76:cc:
                    5c:6d:76:70:67:1c:0e:70:4f:0e:fd:be:66:df:50:12:
                    c5:e4:be:f3:e1:9b:63:78:3b:eb:87:5b:53:a2:33:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:c4:cf:3b:ab:2c:8e:a8:86:0d:b0:83:e4:71:69:d8:
        28:1b:ea:94:b1:3c:52:b2:b5:99:11:0d:e2:bd:2e:12:
        d8:c5:ea:f1:6d:fa:d7:c9:56:c3:01:42:66:ca:b9:42:
        42:0d:29:64:43:0f:40:eb:cf:f3:04:12:68:87:f7:5e:
        73:b8:4e:75:24:60:58:0f:4e:2c:86:d3:6b:51:a0:dd:
        e5:73:17:63:28:59:d0:f2:d3:32:66:76:c9:78:3d:38:
        61:79:4a:19:de:93:26:d6:6f:d2:a1:f8:89:ec:eb:d2:
        4b:8b:a4:d1:b0:3e:74:a1:26:df:8d:4b:41:3f:cc:96:
        ac:95:fa:e2:46:7b:f9:a4:0a:77:2e:5d:ad:74:71:ba:
        43:a3:16:ce:e3:9a:76:67:65:c2:53:12:e5:0d:45:39:
        1e:de:0f:5e:f6:fd:b3:72:df:7c:56:69:b8:40:92:05:
        55:a1:66:d0:22:ef:cf:b3:c6:be:bb:0c:6e:de:19:24:
        92:8a:d3:aa:a8:81:c2:36:84:83:b7:56:fb:38:4f:56:
        1a:20:36:c9:5c:42:8a:78:d6:72:24:80:e6:c5:f9:99:
        62:c0:de:a9:6d:31:3a:93:ef:a9:80:8f:f6:7d:ec:b2:
        f8:a8:63:39:87:f6:ec:29:37:2d:6b:a9:b8:96:f8:9d
    Fingerprint (SHA-256):
        0E:BE:9E:BD:E2:E7:1A:A0:A7:C9:AE:6D:76:22:49:1B:04:F8:0E:00:EE:4A:3F:19:39:90:0F:F3:27:AC:42:27
    Fingerprint (SHA1):
        4C:46:13:A3:98:EB:05:20:AB:78:C8:28:1B:FB:95:B8:1B:2F:E2:48
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2848: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2849: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115259 (0x1e67bdbb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:52:49 2017
            Not After : Tue May 10 11:52:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:1f:c2:de:2d:33:b3:f7:ee:01:0f:98:74:40:e6:26:
                    c7:ff:d0:c1:86:12:da:93:9e:9b:64:8a:1c:78:34:7a:
                    00:f7:a0:44:73:7a:53:99:fa:88:93:26:60:f0:e8:88:
                    b9:a1:54:c4:a9:fb:86:f0:5e:5e:ae:ed:59:11:4e:9a:
                    1e:fc:93:77:47:5c:74:e9:2a:cf:53:d4:50:c9:dd:5c:
                    88:d5:bb:63:a8:76:22:cc:09:87:7c:de:38:34:95:14:
                    47:84:ac:eb:31:df:99:93:c0:7a:2f:af:15:66:da:b7:
                    b6:6c:e3:2a:be:70:21:1e:db:04:99:1e:31:73:81:68:
                    19:8f:b5:83:ba:0e:b0:d8:9a:3e:d2:14:7b:cd:b3:f6:
                    58:08:d3:8d:dd:a3:8c:8b:9c:46:ee:ba:9e:de:db:35:
                    2a:52:64:d9:ca:56:66:8a:86:4c:65:0b:17:be:f2:78:
                    65:3a:3e:36:65:22:57:04:e1:e5:1e:1a:d0:7f:15:cd:
                    cc:79:86:1c:dc:56:7f:99:3f:c4:80:40:17:88:c3:a6:
                    3c:f9:00:c2:48:7f:02:6b:1c:f1:b9:5f:90:2f:b0:14:
                    58:30:84:6e:3c:3d:77:c7:44:8e:98:07:ed:bc:3e:80:
                    a9:be:dd:1d:69:d1:bf:0f:d3:5f:29:71:2d:84:51:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:89:24:ab:b4:5b:bc:8e:d4:7c:ed:af:ed:87:b7:a8:
        96:48:74:4e:26:31:65:aa:7e:87:87:90:ed:11:b8:cc:
        68:67:3e:96:a8:03:4c:cc:0c:1c:62:b8:d1:55:23:88:
        4a:33:1d:8a:e0:13:33:19:24:9e:df:d5:cd:36:49:7a:
        8f:ab:ad:61:da:a0:f0:49:ae:25:e8:c9:0b:33:98:7b:
        ee:2c:21:47:f1:8b:07:99:ce:ea:1d:36:3b:db:88:1b:
        33:6f:62:c0:f4:09:ec:1e:9f:ef:bd:b7:e9:a1:0b:e5:
        e9:61:ea:b0:0b:43:9f:d5:4c:f0:50:f5:cd:ff:15:06:
        33:71:2c:b7:0c:b5:5c:96:a3:5e:9e:32:2b:ed:6d:68:
        3b:19:40:eb:79:3f:ac:0d:b7:33:09:ac:47:19:bf:a7:
        53:ca:53:d4:0e:db:75:72:0f:67:65:ab:be:e4:1f:8e:
        57:33:da:8b:8c:00:20:0b:d4:d1:ca:e1:e5:ba:34:5b:
        c1:53:b0:8c:a7:46:fa:40:48:0b:84:53:5b:96:6b:af:
        dc:26:1a:d4:8e:76:31:f5:e7:09:f2:03:ba:5a:f5:24:
        4d:fc:76:7c:fe:f4:97:ac:93:4e:02:d0:3b:99:3c:96:
        5a:53:58:f3:d1:03:da:a6:44:bd:74:01:fa:88:ee:73
    Fingerprint (SHA-256):
        76:05:53:BA:DB:0C:17:95:1C:86:30:1F:FC:56:CB:56:72:04:4B:6E:C3:9A:BA:F9:75:B4:0C:8C:CA:9D:52:19
    Fingerprint (SHA1):
        C7:68:3F:CE:54:83:07:28:B2:00:D3:81:11:94:32:A3:31:09:9C:7A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2850: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115259 (0x1e67bdbb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:52:49 2017
            Not After : Tue May 10 11:52:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:1f:c2:de:2d:33:b3:f7:ee:01:0f:98:74:40:e6:26:
                    c7:ff:d0:c1:86:12:da:93:9e:9b:64:8a:1c:78:34:7a:
                    00:f7:a0:44:73:7a:53:99:fa:88:93:26:60:f0:e8:88:
                    b9:a1:54:c4:a9:fb:86:f0:5e:5e:ae:ed:59:11:4e:9a:
                    1e:fc:93:77:47:5c:74:e9:2a:cf:53:d4:50:c9:dd:5c:
                    88:d5:bb:63:a8:76:22:cc:09:87:7c:de:38:34:95:14:
                    47:84:ac:eb:31:df:99:93:c0:7a:2f:af:15:66:da:b7:
                    b6:6c:e3:2a:be:70:21:1e:db:04:99:1e:31:73:81:68:
                    19:8f:b5:83:ba:0e:b0:d8:9a:3e:d2:14:7b:cd:b3:f6:
                    58:08:d3:8d:dd:a3:8c:8b:9c:46:ee:ba:9e:de:db:35:
                    2a:52:64:d9:ca:56:66:8a:86:4c:65:0b:17:be:f2:78:
                    65:3a:3e:36:65:22:57:04:e1:e5:1e:1a:d0:7f:15:cd:
                    cc:79:86:1c:dc:56:7f:99:3f:c4:80:40:17:88:c3:a6:
                    3c:f9:00:c2:48:7f:02:6b:1c:f1:b9:5f:90:2f:b0:14:
                    58:30:84:6e:3c:3d:77:c7:44:8e:98:07:ed:bc:3e:80:
                    a9:be:dd:1d:69:d1:bf:0f:d3:5f:29:71:2d:84:51:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:89:24:ab:b4:5b:bc:8e:d4:7c:ed:af:ed:87:b7:a8:
        96:48:74:4e:26:31:65:aa:7e:87:87:90:ed:11:b8:cc:
        68:67:3e:96:a8:03:4c:cc:0c:1c:62:b8:d1:55:23:88:
        4a:33:1d:8a:e0:13:33:19:24:9e:df:d5:cd:36:49:7a:
        8f:ab:ad:61:da:a0:f0:49:ae:25:e8:c9:0b:33:98:7b:
        ee:2c:21:47:f1:8b:07:99:ce:ea:1d:36:3b:db:88:1b:
        33:6f:62:c0:f4:09:ec:1e:9f:ef:bd:b7:e9:a1:0b:e5:
        e9:61:ea:b0:0b:43:9f:d5:4c:f0:50:f5:cd:ff:15:06:
        33:71:2c:b7:0c:b5:5c:96:a3:5e:9e:32:2b:ed:6d:68:
        3b:19:40:eb:79:3f:ac:0d:b7:33:09:ac:47:19:bf:a7:
        53:ca:53:d4:0e:db:75:72:0f:67:65:ab:be:e4:1f:8e:
        57:33:da:8b:8c:00:20:0b:d4:d1:ca:e1:e5:ba:34:5b:
        c1:53:b0:8c:a7:46:fa:40:48:0b:84:53:5b:96:6b:af:
        dc:26:1a:d4:8e:76:31:f5:e7:09:f2:03:ba:5a:f5:24:
        4d:fc:76:7c:fe:f4:97:ac:93:4e:02:d0:3b:99:3c:96:
        5a:53:58:f3:d1:03:da:a6:44:bd:74:01:fa:88:ee:73
    Fingerprint (SHA-256):
        76:05:53:BA:DB:0C:17:95:1C:86:30:1F:FC:56:CB:56:72:04:4B:6E:C3:9A:BA:F9:75:B4:0C:8C:CA:9D:52:19
    Fingerprint (SHA1):
        C7:68:3F:CE:54:83:07:28:B2:00:D3:81:11:94:32:A3:31:09:9C:7A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2851: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115260 (0x1e67bdbc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:52:49 2017
            Not After : Tue May 10 11:52:49 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:4d:3f:3f:df:c1:93:c8:18:ab:d7:9e:ec:17:3c:50:
                    79:b6:84:69:b8:c7:d7:86:f7:98:0c:3c:a9:bf:a5:34:
                    64:24:9e:c9:fc:2d:cd:12:e5:57:94:a1:6c:18:5c:9f:
                    c1:59:34:b6:ec:ad:06:b2:19:35:37:f7:b9:09:fe:6e:
                    5f:22:b9:76:da:4a:c0:93:95:c6:db:39:0b:e4:74:0f:
                    10:b9:3d:c9:7a:79:14:b7:7b:ec:41:6d:70:4d:6b:4d:
                    92:9a:bc:c5:55:c1:03:37:a4:38:4b:70:3f:c9:b8:76:
                    f3:9f:7c:07:0c:73:05:5a:83:dc:ab:62:7e:a8:11:da:
                    42:0c:60:4c:80:a4:87:09:eb:eb:6b:4f:65:11:ed:f2:
                    79:aa:da:e7:80:56:d4:8b:32:98:bb:78:21:84:cc:dd:
                    24:95:3a:00:f2:d1:34:bb:b7:7d:e2:33:50:8f:58:5c:
                    21:a4:c1:39:33:04:7e:d2:9f:31:f3:d2:32:9b:13:a1:
                    51:98:d2:21:b3:2e:4e:dc:bf:99:96:f7:e5:7a:03:8d:
                    dc:3d:be:cf:c1:b7:bb:b3:09:2c:a0:da:f0:82:b8:1c:
                    4e:4a:c1:24:03:64:bf:c7:fa:10:ae:fb:b8:4b:87:97:
                    91:5a:1b:f1:83:c6:5a:85:2f:f0:c1:f8:0a:fe:a5:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:40:cb:04:66:af:4f:49:b9:47:94:a9:70:b8:64:5e:
        a6:37:f6:e2:4f:18:17:59:e3:42:f8:6f:b9:d2:2b:3e:
        8e:14:c1:60:97:d4:4e:d8:08:cb:0d:75:15:7f:c5:30:
        2f:a0:68:aa:8d:84:02:d4:26:8f:8a:08:2b:09:58:62:
        9a:36:32:da:78:f4:26:a9:3e:34:b9:19:ad:e1:64:2f:
        78:33:d2:33:4e:20:ab:35:57:3c:8e:d4:6b:98:d7:07:
        aa:19:c9:14:59:e1:b7:4e:71:69:bd:75:0e:a6:ff:9a:
        65:05:8d:eb:5a:f3:3f:b5:86:89:3d:8a:b7:79:63:a7:
        29:80:46:40:ef:f9:83:47:58:de:2f:7b:55:8e:c1:96:
        bd:98:ec:fa:8b:5e:40:41:35:1e:34:6e:cf:11:42:bc:
        30:c9:68:e7:13:ed:82:f0:a0:25:76:04:a3:c3:7e:88:
        fa:15:70:12:91:2b:0c:38:d8:3a:c8:1e:55:f3:7f:38:
        cb:3d:f0:a0:94:b4:2d:0a:b1:04:7b:aa:f7:76:4f:98:
        c2:8c:b9:62:88:61:76:7d:43:3a:ed:54:ae:bc:5a:11:
        94:e2:5c:85:17:28:6c:87:fd:b6:55:72:9b:83:ea:e1:
        cd:4d:d8:2d:5d:52:2d:db:fa:80:c2:02:eb:aa:24:1b
    Fingerprint (SHA-256):
        06:37:64:61:C1:E3:53:FC:0D:61:09:14:DD:0A:8B:54:BE:65:A6:B5:A5:06:91:0C:E8:71:0C:C8:F6:A1:34:AC
    Fingerprint (SHA1):
        BF:85:00:8C:EC:AC:D5:2B:AD:A7:59:67:E9:3F:3C:66:FB:C5:BF:7A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2852: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115260 (0x1e67bdbc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:52:49 2017
            Not After : Tue May 10 11:52:49 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:4d:3f:3f:df:c1:93:c8:18:ab:d7:9e:ec:17:3c:50:
                    79:b6:84:69:b8:c7:d7:86:f7:98:0c:3c:a9:bf:a5:34:
                    64:24:9e:c9:fc:2d:cd:12:e5:57:94:a1:6c:18:5c:9f:
                    c1:59:34:b6:ec:ad:06:b2:19:35:37:f7:b9:09:fe:6e:
                    5f:22:b9:76:da:4a:c0:93:95:c6:db:39:0b:e4:74:0f:
                    10:b9:3d:c9:7a:79:14:b7:7b:ec:41:6d:70:4d:6b:4d:
                    92:9a:bc:c5:55:c1:03:37:a4:38:4b:70:3f:c9:b8:76:
                    f3:9f:7c:07:0c:73:05:5a:83:dc:ab:62:7e:a8:11:da:
                    42:0c:60:4c:80:a4:87:09:eb:eb:6b:4f:65:11:ed:f2:
                    79:aa:da:e7:80:56:d4:8b:32:98:bb:78:21:84:cc:dd:
                    24:95:3a:00:f2:d1:34:bb:b7:7d:e2:33:50:8f:58:5c:
                    21:a4:c1:39:33:04:7e:d2:9f:31:f3:d2:32:9b:13:a1:
                    51:98:d2:21:b3:2e:4e:dc:bf:99:96:f7:e5:7a:03:8d:
                    dc:3d:be:cf:c1:b7:bb:b3:09:2c:a0:da:f0:82:b8:1c:
                    4e:4a:c1:24:03:64:bf:c7:fa:10:ae:fb:b8:4b:87:97:
                    91:5a:1b:f1:83:c6:5a:85:2f:f0:c1:f8:0a:fe:a5:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:40:cb:04:66:af:4f:49:b9:47:94:a9:70:b8:64:5e:
        a6:37:f6:e2:4f:18:17:59:e3:42:f8:6f:b9:d2:2b:3e:
        8e:14:c1:60:97:d4:4e:d8:08:cb:0d:75:15:7f:c5:30:
        2f:a0:68:aa:8d:84:02:d4:26:8f:8a:08:2b:09:58:62:
        9a:36:32:da:78:f4:26:a9:3e:34:b9:19:ad:e1:64:2f:
        78:33:d2:33:4e:20:ab:35:57:3c:8e:d4:6b:98:d7:07:
        aa:19:c9:14:59:e1:b7:4e:71:69:bd:75:0e:a6:ff:9a:
        65:05:8d:eb:5a:f3:3f:b5:86:89:3d:8a:b7:79:63:a7:
        29:80:46:40:ef:f9:83:47:58:de:2f:7b:55:8e:c1:96:
        bd:98:ec:fa:8b:5e:40:41:35:1e:34:6e:cf:11:42:bc:
        30:c9:68:e7:13:ed:82:f0:a0:25:76:04:a3:c3:7e:88:
        fa:15:70:12:91:2b:0c:38:d8:3a:c8:1e:55:f3:7f:38:
        cb:3d:f0:a0:94:b4:2d:0a:b1:04:7b:aa:f7:76:4f:98:
        c2:8c:b9:62:88:61:76:7d:43:3a:ed:54:ae:bc:5a:11:
        94:e2:5c:85:17:28:6c:87:fd:b6:55:72:9b:83:ea:e1:
        cd:4d:d8:2d:5d:52:2d:db:fa:80:c2:02:eb:aa:24:1b
    Fingerprint (SHA-256):
        06:37:64:61:C1:E3:53:FC:0D:61:09:14:DD:0A:8B:54:BE:65:A6:B5:A5:06:91:0C:E8:71:0C:C8:F6:A1:34:AC
    Fingerprint (SHA1):
        BF:85:00:8C:EC:AC:D5:2B:AD:A7:59:67:E9:3F:3C:66:FB:C5:BF:7A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2853: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115261 (0x1e67bdbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:52:50 2017
            Not After : Tue May 10 11:52:50 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:0a:8d:36:33:a3:ed:fe:45:67:55:db:e4:e6:a8:3b:
                    8d:ea:9d:8c:b7:d4:b6:26:e3:5f:49:5b:c3:62:08:23:
                    e0:bb:62:ae:1f:bc:37:af:60:8d:06:2d:3c:23:a1:f5:
                    1e:e1:ab:e7:90:75:69:62:fc:3a:00:3c:51:f9:9a:7a:
                    3c:9a:3b:53:30:84:af:db:d4:19:70:63:17:f4:f6:49:
                    46:e0:9b:99:ee:f1:61:c4:53:08:bb:1b:0c:b5:d7:8c:
                    6c:7b:a4:3a:5c:6a:4c:af:1e:57:66:5a:e9:b0:5b:0b:
                    98:18:d9:c7:60:14:10:0c:dc:7b:07:17:80:f1:d5:10:
                    cf:f6:ed:be:8c:55:94:06:38:0e:ed:7d:b3:87:38:a1:
                    5b:13:c2:58:82:fb:c9:6d:ef:60:50:2d:a5:f5:92:4b:
                    cd:d0:b2:73:ea:9d:64:29:4d:02:b4:b4:6e:15:3a:76:
                    7f:dd:a6:c6:c0:b7:bd:46:bc:e6:cf:0c:af:3c:a9:ab:
                    f6:9b:17:72:0a:62:78:57:93:c1:97:f2:e1:97:50:ea:
                    da:f1:40:92:d5:47:82:d3:6c:13:24:1f:05:b5:76:cc:
                    5c:6d:76:70:67:1c:0e:70:4f:0e:fd:be:66:df:50:12:
                    c5:e4:be:f3:e1:9b:63:78:3b:eb:87:5b:53:a2:33:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:c4:cf:3b:ab:2c:8e:a8:86:0d:b0:83:e4:71:69:d8:
        28:1b:ea:94:b1:3c:52:b2:b5:99:11:0d:e2:bd:2e:12:
        d8:c5:ea:f1:6d:fa:d7:c9:56:c3:01:42:66:ca:b9:42:
        42:0d:29:64:43:0f:40:eb:cf:f3:04:12:68:87:f7:5e:
        73:b8:4e:75:24:60:58:0f:4e:2c:86:d3:6b:51:a0:dd:
        e5:73:17:63:28:59:d0:f2:d3:32:66:76:c9:78:3d:38:
        61:79:4a:19:de:93:26:d6:6f:d2:a1:f8:89:ec:eb:d2:
        4b:8b:a4:d1:b0:3e:74:a1:26:df:8d:4b:41:3f:cc:96:
        ac:95:fa:e2:46:7b:f9:a4:0a:77:2e:5d:ad:74:71:ba:
        43:a3:16:ce:e3:9a:76:67:65:c2:53:12:e5:0d:45:39:
        1e:de:0f:5e:f6:fd:b3:72:df:7c:56:69:b8:40:92:05:
        55:a1:66:d0:22:ef:cf:b3:c6:be:bb:0c:6e:de:19:24:
        92:8a:d3:aa:a8:81:c2:36:84:83:b7:56:fb:38:4f:56:
        1a:20:36:c9:5c:42:8a:78:d6:72:24:80:e6:c5:f9:99:
        62:c0:de:a9:6d:31:3a:93:ef:a9:80:8f:f6:7d:ec:b2:
        f8:a8:63:39:87:f6:ec:29:37:2d:6b:a9:b8:96:f8:9d
    Fingerprint (SHA-256):
        0E:BE:9E:BD:E2:E7:1A:A0:A7:C9:AE:6D:76:22:49:1B:04:F8:0E:00:EE:4A:3F:19:39:90:0F:F3:27:AC:42:27
    Fingerprint (SHA1):
        4C:46:13:A3:98:EB:05:20:AB:78:C8:28:1B:FB:95:B8:1B:2F:E2:48
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2854: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115261 (0x1e67bdbd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:52:50 2017
            Not After : Tue May 10 11:52:50 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:0a:8d:36:33:a3:ed:fe:45:67:55:db:e4:e6:a8:3b:
                    8d:ea:9d:8c:b7:d4:b6:26:e3:5f:49:5b:c3:62:08:23:
                    e0:bb:62:ae:1f:bc:37:af:60:8d:06:2d:3c:23:a1:f5:
                    1e:e1:ab:e7:90:75:69:62:fc:3a:00:3c:51:f9:9a:7a:
                    3c:9a:3b:53:30:84:af:db:d4:19:70:63:17:f4:f6:49:
                    46:e0:9b:99:ee:f1:61:c4:53:08:bb:1b:0c:b5:d7:8c:
                    6c:7b:a4:3a:5c:6a:4c:af:1e:57:66:5a:e9:b0:5b:0b:
                    98:18:d9:c7:60:14:10:0c:dc:7b:07:17:80:f1:d5:10:
                    cf:f6:ed:be:8c:55:94:06:38:0e:ed:7d:b3:87:38:a1:
                    5b:13:c2:58:82:fb:c9:6d:ef:60:50:2d:a5:f5:92:4b:
                    cd:d0:b2:73:ea:9d:64:29:4d:02:b4:b4:6e:15:3a:76:
                    7f:dd:a6:c6:c0:b7:bd:46:bc:e6:cf:0c:af:3c:a9:ab:
                    f6:9b:17:72:0a:62:78:57:93:c1:97:f2:e1:97:50:ea:
                    da:f1:40:92:d5:47:82:d3:6c:13:24:1f:05:b5:76:cc:
                    5c:6d:76:70:67:1c:0e:70:4f:0e:fd:be:66:df:50:12:
                    c5:e4:be:f3:e1:9b:63:78:3b:eb:87:5b:53:a2:33:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:c4:cf:3b:ab:2c:8e:a8:86:0d:b0:83:e4:71:69:d8:
        28:1b:ea:94:b1:3c:52:b2:b5:99:11:0d:e2:bd:2e:12:
        d8:c5:ea:f1:6d:fa:d7:c9:56:c3:01:42:66:ca:b9:42:
        42:0d:29:64:43:0f:40:eb:cf:f3:04:12:68:87:f7:5e:
        73:b8:4e:75:24:60:58:0f:4e:2c:86:d3:6b:51:a0:dd:
        e5:73:17:63:28:59:d0:f2:d3:32:66:76:c9:78:3d:38:
        61:79:4a:19:de:93:26:d6:6f:d2:a1:f8:89:ec:eb:d2:
        4b:8b:a4:d1:b0:3e:74:a1:26:df:8d:4b:41:3f:cc:96:
        ac:95:fa:e2:46:7b:f9:a4:0a:77:2e:5d:ad:74:71:ba:
        43:a3:16:ce:e3:9a:76:67:65:c2:53:12:e5:0d:45:39:
        1e:de:0f:5e:f6:fd:b3:72:df:7c:56:69:b8:40:92:05:
        55:a1:66:d0:22:ef:cf:b3:c6:be:bb:0c:6e:de:19:24:
        92:8a:d3:aa:a8:81:c2:36:84:83:b7:56:fb:38:4f:56:
        1a:20:36:c9:5c:42:8a:78:d6:72:24:80:e6:c5:f9:99:
        62:c0:de:a9:6d:31:3a:93:ef:a9:80:8f:f6:7d:ec:b2:
        f8:a8:63:39:87:f6:ec:29:37:2d:6b:a9:b8:96:f8:9d
    Fingerprint (SHA-256):
        0E:BE:9E:BD:E2:E7:1A:A0:A7:C9:AE:6D:76:22:49:1B:04:F8:0E:00:EE:4A:3F:19:39:90:0F:F3:27:AC:42:27
    Fingerprint (SHA1):
        4C:46:13:A3:98:EB:05:20:AB:78:C8:28:1B:FB:95:B8:1B:2F:E2:48
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2855: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2856: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115264 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2857: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2858: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2859: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2860: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510115265   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2861: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2862: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2863: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2864: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115266   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2865: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2866: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #2867: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2868: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 510115267   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2869: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2870: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2871: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2872: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510115268   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2873: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2874: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2875: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2876: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510115269   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2877: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2878: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #2879: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2880: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 510115270   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2881: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2882: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2883: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #2884: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #2885: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2886: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #2887: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115264 (0x1e67bdc0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:52:51 2017
            Not After : Tue May 10 11:52:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:ca:a3:61:d7:7a:8b:1f:18:d8:19:81:07:f1:a4:bd:
                    b2:3c:54:03:72:67:76:4f:bb:dc:15:34:80:6d:03:cb:
                    96:53:2a:62:27:ed:3f:cd:90:ea:a4:17:22:12:9c:54:
                    8e:6e:58:85:46:0e:da:a0:58:82:48:1e:f3:a0:04:cc:
                    2f:06:51:50:63:ea:90:c3:1a:62:ca:14:5f:b3:60:5c:
                    a3:31:8e:ee:1c:d2:69:d8:0a:61:fb:98:16:5d:fc:83:
                    15:a8:d8:97:2a:ae:ea:2e:16:b9:b7:92:03:75:5f:7a:
                    4d:12:55:a4:10:c6:e3:0f:87:a2:c0:00:35:a0:74:ed:
                    0a:2b:c2:b0:83:0d:54:bb:89:08:ae:cb:23:5b:c5:ea:
                    8a:d2:32:bd:81:6c:19:bc:1a:73:0d:f9:75:61:a1:59:
                    64:72:f5:61:5e:eb:7d:3b:c5:af:c3:12:e0:1b:6e:d9:
                    93:b2:4b:e7:e3:a3:9f:7d:18:df:3e:16:ab:21:ca:7c:
                    70:83:c7:8d:b0:74:ca:ac:60:a6:d6:a4:8d:46:77:9c:
                    98:4f:8b:9a:d6:29:20:80:d5:c2:5d:e3:14:2e:8f:19:
                    a6:60:da:c3:f7:55:2d:2c:70:be:6c:b2:85:14:93:69:
                    b6:d6:ac:4a:fb:5b:c7:76:bb:d3:94:0d:17:8d:a2:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:75:11:76:7d:71:d6:93:cb:3a:54:00:cb:c4:71:28:
        ff:5d:ab:89:e7:51:eb:37:0b:85:1b:db:16:72:02:11:
        c8:73:0e:35:91:5f:3b:b4:62:90:2f:5c:e8:23:ea:fc:
        3a:6b:5d:b3:06:d4:4b:2e:bb:04:18:da:32:58:9a:45:
        f3:38:9f:6d:dd:4e:93:e2:52:53:ad:74:fd:dc:0d:7c:
        57:a2:07:ca:25:63:20:b3:6d:89:8c:04:9c:16:4f:d0:
        1d:aa:c4:3b:1c:69:af:06:6b:4e:fe:fe:f2:b3:6d:02:
        0e:43:f0:a2:7f:00:6b:cc:da:2e:2e:d0:9d:bc:3a:8b:
        62:7f:27:ab:cc:59:c8:c3:74:ee:cd:49:6f:9d:36:49:
        95:38:14:aa:5c:fd:d1:0a:bf:5c:5c:5c:b3:df:e5:be:
        a7:f0:23:39:af:c6:9b:b6:32:28:a5:f4:0c:30:fa:12:
        f0:ad:70:6f:9a:80:3a:f5:1f:70:02:cf:e6:3d:77:15:
        3d:e7:c2:f2:9b:d1:a7:c0:17:10:b7:18:a8:e6:4d:6b:
        29:ea:d3:34:29:5a:7f:81:ee:c1:e9:12:af:e4:a5:18:
        61:b3:a1:bc:fa:a9:ea:90:e9:bf:6a:fa:79:fd:e7:4e:
        b3:9a:44:30:cd:c9:9b:39:36:54:fa:75:97:93:60:6b
    Fingerprint (SHA-256):
        A0:38:02:E1:9F:87:D0:02:7F:2D:38:93:65:DE:68:68:6D:5E:56:FE:4C:CB:C7:3B:76:2A:D3:BC:70:0C:4D:E0
    Fingerprint (SHA1):
        B0:24:4F:F0:7C:6A:42:88:D0:C3:A2:04:C7:4A:F4:5D:65:0A:5A:39
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2888: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2889: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2890: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2891: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115264 (0x1e67bdc0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:52:51 2017
            Not After : Tue May 10 11:52:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:ca:a3:61:d7:7a:8b:1f:18:d8:19:81:07:f1:a4:bd:
                    b2:3c:54:03:72:67:76:4f:bb:dc:15:34:80:6d:03:cb:
                    96:53:2a:62:27:ed:3f:cd:90:ea:a4:17:22:12:9c:54:
                    8e:6e:58:85:46:0e:da:a0:58:82:48:1e:f3:a0:04:cc:
                    2f:06:51:50:63:ea:90:c3:1a:62:ca:14:5f:b3:60:5c:
                    a3:31:8e:ee:1c:d2:69:d8:0a:61:fb:98:16:5d:fc:83:
                    15:a8:d8:97:2a:ae:ea:2e:16:b9:b7:92:03:75:5f:7a:
                    4d:12:55:a4:10:c6:e3:0f:87:a2:c0:00:35:a0:74:ed:
                    0a:2b:c2:b0:83:0d:54:bb:89:08:ae:cb:23:5b:c5:ea:
                    8a:d2:32:bd:81:6c:19:bc:1a:73:0d:f9:75:61:a1:59:
                    64:72:f5:61:5e:eb:7d:3b:c5:af:c3:12:e0:1b:6e:d9:
                    93:b2:4b:e7:e3:a3:9f:7d:18:df:3e:16:ab:21:ca:7c:
                    70:83:c7:8d:b0:74:ca:ac:60:a6:d6:a4:8d:46:77:9c:
                    98:4f:8b:9a:d6:29:20:80:d5:c2:5d:e3:14:2e:8f:19:
                    a6:60:da:c3:f7:55:2d:2c:70:be:6c:b2:85:14:93:69:
                    b6:d6:ac:4a:fb:5b:c7:76:bb:d3:94:0d:17:8d:a2:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:75:11:76:7d:71:d6:93:cb:3a:54:00:cb:c4:71:28:
        ff:5d:ab:89:e7:51:eb:37:0b:85:1b:db:16:72:02:11:
        c8:73:0e:35:91:5f:3b:b4:62:90:2f:5c:e8:23:ea:fc:
        3a:6b:5d:b3:06:d4:4b:2e:bb:04:18:da:32:58:9a:45:
        f3:38:9f:6d:dd:4e:93:e2:52:53:ad:74:fd:dc:0d:7c:
        57:a2:07:ca:25:63:20:b3:6d:89:8c:04:9c:16:4f:d0:
        1d:aa:c4:3b:1c:69:af:06:6b:4e:fe:fe:f2:b3:6d:02:
        0e:43:f0:a2:7f:00:6b:cc:da:2e:2e:d0:9d:bc:3a:8b:
        62:7f:27:ab:cc:59:c8:c3:74:ee:cd:49:6f:9d:36:49:
        95:38:14:aa:5c:fd:d1:0a:bf:5c:5c:5c:b3:df:e5:be:
        a7:f0:23:39:af:c6:9b:b6:32:28:a5:f4:0c:30:fa:12:
        f0:ad:70:6f:9a:80:3a:f5:1f:70:02:cf:e6:3d:77:15:
        3d:e7:c2:f2:9b:d1:a7:c0:17:10:b7:18:a8:e6:4d:6b:
        29:ea:d3:34:29:5a:7f:81:ee:c1:e9:12:af:e4:a5:18:
        61:b3:a1:bc:fa:a9:ea:90:e9:bf:6a:fa:79:fd:e7:4e:
        b3:9a:44:30:cd:c9:9b:39:36:54:fa:75:97:93:60:6b
    Fingerprint (SHA-256):
        A0:38:02:E1:9F:87:D0:02:7F:2D:38:93:65:DE:68:68:6D:5E:56:FE:4C:CB:C7:3B:76:2A:D3:BC:70:0C:4D:E0
    Fingerprint (SHA1):
        B0:24:4F:F0:7C:6A:42:88:D0:C3:A2:04:C7:4A:F4:5D:65:0A:5A:39
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2892: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2893: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2894: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115271 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2895: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2896: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2897: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2898: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510115272   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2899: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2900: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #2901: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2902: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 510115273   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2903: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2904: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #2905: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2906: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 510115274   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2907: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2908: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2909: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2910: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 510115275   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2911: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2912: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #2913: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2914: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 510115276   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2915: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2916: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #2917: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2918: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 510115277   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2919: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2920: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #2921: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2922: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 510115278   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2923: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2924: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #2925: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2926: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 510115279   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2927: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2928: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #2929: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2930: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 510115280   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2931: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2932: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #2933: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2934: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 510115281   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2935: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2936: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #2937: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2938: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 510115282   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2939: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2940: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #2941: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2942: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 510115283   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2943: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2944: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #2945: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2946: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 510115284   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2947: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2948: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #2949: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2950: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 510115285   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2951: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2952: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #2953: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2954: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 510115286   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2955: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2956: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #2957: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2958: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 510115287   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2959: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2960: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #2961: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2962: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 510115288   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2963: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2964: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #2965: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2966: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 510115289   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2967: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2968: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #2969: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2970: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 510115290   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2971: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2972: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #2973: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2974: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 510115291   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2975: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2976: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #2977: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2978: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 510115292   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2979: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2980: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #2981: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2982: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 510115293   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2983: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2984: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #2985: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2986: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 510115294   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2987: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2988: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #2989: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2990: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 510115295   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2991: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2992: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #2993: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2994: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 510115296   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2995: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2996: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #2997: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2998: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 510115297   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2999: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3000: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #3001: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3002: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 510115298   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3003: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3004: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #3005: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3006: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 510115299   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3007: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3008: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #3009: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3010: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 510115300   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3011: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3012: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3013: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115271 (0x1e67bdc7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:52:54 2017
            Not After : Tue May 10 11:52:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:b9:ce:25:b8:29:f5:d8:f1:0f:d8:52:1e:32:6b:09:
                    92:16:d9:76:cb:ab:82:c0:49:9c:50:a5:b7:16:4e:87:
                    c4:a9:f5:63:b4:26:e2:6f:83:14:e0:f4:0d:bc:a1:62:
                    e2:c2:d7:14:6b:46:c4:45:1f:81:1a:fe:20:36:99:26:
                    34:a8:09:b7:ac:c3:13:18:e1:69:bc:6e:07:c3:e6:26:
                    bb:8d:e3:8c:80:fe:2a:66:10:a8:31:e8:e9:c0:07:e4:
                    44:76:e5:09:f1:b2:20:f4:29:27:65:43:45:d6:0c:d5:
                    e8:34:b6:24:f5:50:69:4d:95:6e:92:db:b9:ca:69:de:
                    37:f7:c7:fa:5a:83:b0:c5:fa:64:36:ce:52:e4:c8:d7:
                    ba:98:ae:e5:80:e8:2d:07:22:9c:01:af:c4:c4:c5:ba:
                    2b:e9:36:b5:47:2e:c5:bf:bd:ef:74:fa:ab:29:71:5c:
                    19:0b:bc:1e:4d:47:fe:79:bd:74:47:b4:17:87:df:dc:
                    c4:ce:f1:24:0c:e2:2f:53:c6:fb:eb:9d:e0:61:e4:ed:
                    60:d3:c8:c7:58:f9:ff:d3:11:f1:2f:b6:b6:86:83:aa:
                    6b:e1:e6:e8:0f:2a:8c:f8:e9:4d:68:b8:e5:a5:c1:7e:
                    66:c8:f0:da:21:6e:0f:6e:32:00:fe:58:3d:2d:09:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:6c:b8:4a:2b:0d:24:36:18:38:d5:4c:7e:ea:35:a2:
        18:b3:d1:4f:f2:b3:f4:08:9c:fe:4d:2d:c2:ef:7f:2f:
        7e:97:96:d6:57:c9:7d:48:ed:b4:8e:30:d8:b6:60:c5:
        93:5f:39:f0:3e:82:3d:90:81:3d:77:93:a5:37:c8:f5:
        0f:76:f4:4b:a4:20:d8:09:f6:31:c1:88:df:20:0a:9b:
        a7:2d:0d:ec:bd:10:8c:1d:e1:40:e4:e2:d4:f8:59:7c:
        0c:ab:40:89:2e:f8:7f:00:e4:f4:d1:d3:a3:66:d1:0e:
        1f:1e:9a:49:6c:db:b7:12:b0:55:e0:26:76:37:a2:29:
        d3:88:f8:a1:8f:9e:76:0e:8e:af:0e:f2:8e:dd:18:4a:
        ea:72:00:a6:a7:df:ac:0c:fd:ac:3c:6c:2a:fe:3d:f5:
        2d:32:de:90:20:35:ff:3e:09:bf:6d:b4:fc:98:29:13:
        7d:b3:b1:ff:4c:26:e1:3e:b7:d6:23:f5:f0:20:24:01:
        8b:ae:3e:6a:d4:97:e7:72:04:7c:06:83:68:ff:65:fd:
        e3:56:36:cd:f3:84:0d:30:c2:75:74:59:ff:80:89:32:
        13:1e:b5:af:d0:0e:91:71:2f:ba:de:03:5b:86:da:64:
        f1:56:eb:e1:9d:03:a2:ee:b6:19:35:d6:46:8e:a3:46
    Fingerprint (SHA-256):
        05:12:47:E3:C1:3E:1C:5A:D2:E2:00:C5:12:E6:2F:9E:9B:CD:2B:B7:F9:4F:B3:EA:C8:FD:06:2A:9C:C2:87:5B
    Fingerprint (SHA1):
        DD:6E:04:84:7A:48:39:53:FA:56:9B:1B:5A:07:1E:F9:8D:0E:FE:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3014: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3015: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115271 (0x1e67bdc7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:52:54 2017
            Not After : Tue May 10 11:52:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:b9:ce:25:b8:29:f5:d8:f1:0f:d8:52:1e:32:6b:09:
                    92:16:d9:76:cb:ab:82:c0:49:9c:50:a5:b7:16:4e:87:
                    c4:a9:f5:63:b4:26:e2:6f:83:14:e0:f4:0d:bc:a1:62:
                    e2:c2:d7:14:6b:46:c4:45:1f:81:1a:fe:20:36:99:26:
                    34:a8:09:b7:ac:c3:13:18:e1:69:bc:6e:07:c3:e6:26:
                    bb:8d:e3:8c:80:fe:2a:66:10:a8:31:e8:e9:c0:07:e4:
                    44:76:e5:09:f1:b2:20:f4:29:27:65:43:45:d6:0c:d5:
                    e8:34:b6:24:f5:50:69:4d:95:6e:92:db:b9:ca:69:de:
                    37:f7:c7:fa:5a:83:b0:c5:fa:64:36:ce:52:e4:c8:d7:
                    ba:98:ae:e5:80:e8:2d:07:22:9c:01:af:c4:c4:c5:ba:
                    2b:e9:36:b5:47:2e:c5:bf:bd:ef:74:fa:ab:29:71:5c:
                    19:0b:bc:1e:4d:47:fe:79:bd:74:47:b4:17:87:df:dc:
                    c4:ce:f1:24:0c:e2:2f:53:c6:fb:eb:9d:e0:61:e4:ed:
                    60:d3:c8:c7:58:f9:ff:d3:11:f1:2f:b6:b6:86:83:aa:
                    6b:e1:e6:e8:0f:2a:8c:f8:e9:4d:68:b8:e5:a5:c1:7e:
                    66:c8:f0:da:21:6e:0f:6e:32:00:fe:58:3d:2d:09:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:6c:b8:4a:2b:0d:24:36:18:38:d5:4c:7e:ea:35:a2:
        18:b3:d1:4f:f2:b3:f4:08:9c:fe:4d:2d:c2:ef:7f:2f:
        7e:97:96:d6:57:c9:7d:48:ed:b4:8e:30:d8:b6:60:c5:
        93:5f:39:f0:3e:82:3d:90:81:3d:77:93:a5:37:c8:f5:
        0f:76:f4:4b:a4:20:d8:09:f6:31:c1:88:df:20:0a:9b:
        a7:2d:0d:ec:bd:10:8c:1d:e1:40:e4:e2:d4:f8:59:7c:
        0c:ab:40:89:2e:f8:7f:00:e4:f4:d1:d3:a3:66:d1:0e:
        1f:1e:9a:49:6c:db:b7:12:b0:55:e0:26:76:37:a2:29:
        d3:88:f8:a1:8f:9e:76:0e:8e:af:0e:f2:8e:dd:18:4a:
        ea:72:00:a6:a7:df:ac:0c:fd:ac:3c:6c:2a:fe:3d:f5:
        2d:32:de:90:20:35:ff:3e:09:bf:6d:b4:fc:98:29:13:
        7d:b3:b1:ff:4c:26:e1:3e:b7:d6:23:f5:f0:20:24:01:
        8b:ae:3e:6a:d4:97:e7:72:04:7c:06:83:68:ff:65:fd:
        e3:56:36:cd:f3:84:0d:30:c2:75:74:59:ff:80:89:32:
        13:1e:b5:af:d0:0e:91:71:2f:ba:de:03:5b:86:da:64:
        f1:56:eb:e1:9d:03:a2:ee:b6:19:35:d6:46:8e:a3:46
    Fingerprint (SHA-256):
        05:12:47:E3:C1:3E:1C:5A:D2:E2:00:C5:12:E6:2F:9E:9B:CD:2B:B7:F9:4F:B3:EA:C8:FD:06:2A:9C:C2:87:5B
    Fingerprint (SHA1):
        DD:6E:04:84:7A:48:39:53:FA:56:9B:1B:5A:07:1E:F9:8D:0E:FE:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3016: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3017: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3018: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3019: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115271 (0x1e67bdc7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:52:54 2017
            Not After : Tue May 10 11:52:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:b9:ce:25:b8:29:f5:d8:f1:0f:d8:52:1e:32:6b:09:
                    92:16:d9:76:cb:ab:82:c0:49:9c:50:a5:b7:16:4e:87:
                    c4:a9:f5:63:b4:26:e2:6f:83:14:e0:f4:0d:bc:a1:62:
                    e2:c2:d7:14:6b:46:c4:45:1f:81:1a:fe:20:36:99:26:
                    34:a8:09:b7:ac:c3:13:18:e1:69:bc:6e:07:c3:e6:26:
                    bb:8d:e3:8c:80:fe:2a:66:10:a8:31:e8:e9:c0:07:e4:
                    44:76:e5:09:f1:b2:20:f4:29:27:65:43:45:d6:0c:d5:
                    e8:34:b6:24:f5:50:69:4d:95:6e:92:db:b9:ca:69:de:
                    37:f7:c7:fa:5a:83:b0:c5:fa:64:36:ce:52:e4:c8:d7:
                    ba:98:ae:e5:80:e8:2d:07:22:9c:01:af:c4:c4:c5:ba:
                    2b:e9:36:b5:47:2e:c5:bf:bd:ef:74:fa:ab:29:71:5c:
                    19:0b:bc:1e:4d:47:fe:79:bd:74:47:b4:17:87:df:dc:
                    c4:ce:f1:24:0c:e2:2f:53:c6:fb:eb:9d:e0:61:e4:ed:
                    60:d3:c8:c7:58:f9:ff:d3:11:f1:2f:b6:b6:86:83:aa:
                    6b:e1:e6:e8:0f:2a:8c:f8:e9:4d:68:b8:e5:a5:c1:7e:
                    66:c8:f0:da:21:6e:0f:6e:32:00:fe:58:3d:2d:09:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:6c:b8:4a:2b:0d:24:36:18:38:d5:4c:7e:ea:35:a2:
        18:b3:d1:4f:f2:b3:f4:08:9c:fe:4d:2d:c2:ef:7f:2f:
        7e:97:96:d6:57:c9:7d:48:ed:b4:8e:30:d8:b6:60:c5:
        93:5f:39:f0:3e:82:3d:90:81:3d:77:93:a5:37:c8:f5:
        0f:76:f4:4b:a4:20:d8:09:f6:31:c1:88:df:20:0a:9b:
        a7:2d:0d:ec:bd:10:8c:1d:e1:40:e4:e2:d4:f8:59:7c:
        0c:ab:40:89:2e:f8:7f:00:e4:f4:d1:d3:a3:66:d1:0e:
        1f:1e:9a:49:6c:db:b7:12:b0:55:e0:26:76:37:a2:29:
        d3:88:f8:a1:8f:9e:76:0e:8e:af:0e:f2:8e:dd:18:4a:
        ea:72:00:a6:a7:df:ac:0c:fd:ac:3c:6c:2a:fe:3d:f5:
        2d:32:de:90:20:35:ff:3e:09:bf:6d:b4:fc:98:29:13:
        7d:b3:b1:ff:4c:26:e1:3e:b7:d6:23:f5:f0:20:24:01:
        8b:ae:3e:6a:d4:97:e7:72:04:7c:06:83:68:ff:65:fd:
        e3:56:36:cd:f3:84:0d:30:c2:75:74:59:ff:80:89:32:
        13:1e:b5:af:d0:0e:91:71:2f:ba:de:03:5b:86:da:64:
        f1:56:eb:e1:9d:03:a2:ee:b6:19:35:d6:46:8e:a3:46
    Fingerprint (SHA-256):
        05:12:47:E3:C1:3E:1C:5A:D2:E2:00:C5:12:E6:2F:9E:9B:CD:2B:B7:F9:4F:B3:EA:C8:FD:06:2A:9C:C2:87:5B
    Fingerprint (SHA1):
        DD:6E:04:84:7A:48:39:53:FA:56:9B:1B:5A:07:1E:F9:8D:0E:FE:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3020: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3021: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3022: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3023: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115271 (0x1e67bdc7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:52:54 2017
            Not After : Tue May 10 11:52:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:b9:ce:25:b8:29:f5:d8:f1:0f:d8:52:1e:32:6b:09:
                    92:16:d9:76:cb:ab:82:c0:49:9c:50:a5:b7:16:4e:87:
                    c4:a9:f5:63:b4:26:e2:6f:83:14:e0:f4:0d:bc:a1:62:
                    e2:c2:d7:14:6b:46:c4:45:1f:81:1a:fe:20:36:99:26:
                    34:a8:09:b7:ac:c3:13:18:e1:69:bc:6e:07:c3:e6:26:
                    bb:8d:e3:8c:80:fe:2a:66:10:a8:31:e8:e9:c0:07:e4:
                    44:76:e5:09:f1:b2:20:f4:29:27:65:43:45:d6:0c:d5:
                    e8:34:b6:24:f5:50:69:4d:95:6e:92:db:b9:ca:69:de:
                    37:f7:c7:fa:5a:83:b0:c5:fa:64:36:ce:52:e4:c8:d7:
                    ba:98:ae:e5:80:e8:2d:07:22:9c:01:af:c4:c4:c5:ba:
                    2b:e9:36:b5:47:2e:c5:bf:bd:ef:74:fa:ab:29:71:5c:
                    19:0b:bc:1e:4d:47:fe:79:bd:74:47:b4:17:87:df:dc:
                    c4:ce:f1:24:0c:e2:2f:53:c6:fb:eb:9d:e0:61:e4:ed:
                    60:d3:c8:c7:58:f9:ff:d3:11:f1:2f:b6:b6:86:83:aa:
                    6b:e1:e6:e8:0f:2a:8c:f8:e9:4d:68:b8:e5:a5:c1:7e:
                    66:c8:f0:da:21:6e:0f:6e:32:00:fe:58:3d:2d:09:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:6c:b8:4a:2b:0d:24:36:18:38:d5:4c:7e:ea:35:a2:
        18:b3:d1:4f:f2:b3:f4:08:9c:fe:4d:2d:c2:ef:7f:2f:
        7e:97:96:d6:57:c9:7d:48:ed:b4:8e:30:d8:b6:60:c5:
        93:5f:39:f0:3e:82:3d:90:81:3d:77:93:a5:37:c8:f5:
        0f:76:f4:4b:a4:20:d8:09:f6:31:c1:88:df:20:0a:9b:
        a7:2d:0d:ec:bd:10:8c:1d:e1:40:e4:e2:d4:f8:59:7c:
        0c:ab:40:89:2e:f8:7f:00:e4:f4:d1:d3:a3:66:d1:0e:
        1f:1e:9a:49:6c:db:b7:12:b0:55:e0:26:76:37:a2:29:
        d3:88:f8:a1:8f:9e:76:0e:8e:af:0e:f2:8e:dd:18:4a:
        ea:72:00:a6:a7:df:ac:0c:fd:ac:3c:6c:2a:fe:3d:f5:
        2d:32:de:90:20:35:ff:3e:09:bf:6d:b4:fc:98:29:13:
        7d:b3:b1:ff:4c:26:e1:3e:b7:d6:23:f5:f0:20:24:01:
        8b:ae:3e:6a:d4:97:e7:72:04:7c:06:83:68:ff:65:fd:
        e3:56:36:cd:f3:84:0d:30:c2:75:74:59:ff:80:89:32:
        13:1e:b5:af:d0:0e:91:71:2f:ba:de:03:5b:86:da:64:
        f1:56:eb:e1:9d:03:a2:ee:b6:19:35:d6:46:8e:a3:46
    Fingerprint (SHA-256):
        05:12:47:E3:C1:3E:1C:5A:D2:E2:00:C5:12:E6:2F:9E:9B:CD:2B:B7:F9:4F:B3:EA:C8:FD:06:2A:9C:C2:87:5B
    Fingerprint (SHA1):
        DD:6E:04:84:7A:48:39:53:FA:56:9B:1B:5A:07:1E:F9:8D:0E:FE:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3024: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115271 (0x1e67bdc7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:52:54 2017
            Not After : Tue May 10 11:52:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:b9:ce:25:b8:29:f5:d8:f1:0f:d8:52:1e:32:6b:09:
                    92:16:d9:76:cb:ab:82:c0:49:9c:50:a5:b7:16:4e:87:
                    c4:a9:f5:63:b4:26:e2:6f:83:14:e0:f4:0d:bc:a1:62:
                    e2:c2:d7:14:6b:46:c4:45:1f:81:1a:fe:20:36:99:26:
                    34:a8:09:b7:ac:c3:13:18:e1:69:bc:6e:07:c3:e6:26:
                    bb:8d:e3:8c:80:fe:2a:66:10:a8:31:e8:e9:c0:07:e4:
                    44:76:e5:09:f1:b2:20:f4:29:27:65:43:45:d6:0c:d5:
                    e8:34:b6:24:f5:50:69:4d:95:6e:92:db:b9:ca:69:de:
                    37:f7:c7:fa:5a:83:b0:c5:fa:64:36:ce:52:e4:c8:d7:
                    ba:98:ae:e5:80:e8:2d:07:22:9c:01:af:c4:c4:c5:ba:
                    2b:e9:36:b5:47:2e:c5:bf:bd:ef:74:fa:ab:29:71:5c:
                    19:0b:bc:1e:4d:47:fe:79:bd:74:47:b4:17:87:df:dc:
                    c4:ce:f1:24:0c:e2:2f:53:c6:fb:eb:9d:e0:61:e4:ed:
                    60:d3:c8:c7:58:f9:ff:d3:11:f1:2f:b6:b6:86:83:aa:
                    6b:e1:e6:e8:0f:2a:8c:f8:e9:4d:68:b8:e5:a5:c1:7e:
                    66:c8:f0:da:21:6e:0f:6e:32:00:fe:58:3d:2d:09:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:6c:b8:4a:2b:0d:24:36:18:38:d5:4c:7e:ea:35:a2:
        18:b3:d1:4f:f2:b3:f4:08:9c:fe:4d:2d:c2:ef:7f:2f:
        7e:97:96:d6:57:c9:7d:48:ed:b4:8e:30:d8:b6:60:c5:
        93:5f:39:f0:3e:82:3d:90:81:3d:77:93:a5:37:c8:f5:
        0f:76:f4:4b:a4:20:d8:09:f6:31:c1:88:df:20:0a:9b:
        a7:2d:0d:ec:bd:10:8c:1d:e1:40:e4:e2:d4:f8:59:7c:
        0c:ab:40:89:2e:f8:7f:00:e4:f4:d1:d3:a3:66:d1:0e:
        1f:1e:9a:49:6c:db:b7:12:b0:55:e0:26:76:37:a2:29:
        d3:88:f8:a1:8f:9e:76:0e:8e:af:0e:f2:8e:dd:18:4a:
        ea:72:00:a6:a7:df:ac:0c:fd:ac:3c:6c:2a:fe:3d:f5:
        2d:32:de:90:20:35:ff:3e:09:bf:6d:b4:fc:98:29:13:
        7d:b3:b1:ff:4c:26:e1:3e:b7:d6:23:f5:f0:20:24:01:
        8b:ae:3e:6a:d4:97:e7:72:04:7c:06:83:68:ff:65:fd:
        e3:56:36:cd:f3:84:0d:30:c2:75:74:59:ff:80:89:32:
        13:1e:b5:af:d0:0e:91:71:2f:ba:de:03:5b:86:da:64:
        f1:56:eb:e1:9d:03:a2:ee:b6:19:35:d6:46:8e:a3:46
    Fingerprint (SHA-256):
        05:12:47:E3:C1:3E:1C:5A:D2:E2:00:C5:12:E6:2F:9E:9B:CD:2B:B7:F9:4F:B3:EA:C8:FD:06:2A:9C:C2:87:5B
    Fingerprint (SHA1):
        DD:6E:04:84:7A:48:39:53:FA:56:9B:1B:5A:07:1E:F9:8D:0E:FE:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3025: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3026: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115271 (0x1e67bdc7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:52:54 2017
            Not After : Tue May 10 11:52:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:b9:ce:25:b8:29:f5:d8:f1:0f:d8:52:1e:32:6b:09:
                    92:16:d9:76:cb:ab:82:c0:49:9c:50:a5:b7:16:4e:87:
                    c4:a9:f5:63:b4:26:e2:6f:83:14:e0:f4:0d:bc:a1:62:
                    e2:c2:d7:14:6b:46:c4:45:1f:81:1a:fe:20:36:99:26:
                    34:a8:09:b7:ac:c3:13:18:e1:69:bc:6e:07:c3:e6:26:
                    bb:8d:e3:8c:80:fe:2a:66:10:a8:31:e8:e9:c0:07:e4:
                    44:76:e5:09:f1:b2:20:f4:29:27:65:43:45:d6:0c:d5:
                    e8:34:b6:24:f5:50:69:4d:95:6e:92:db:b9:ca:69:de:
                    37:f7:c7:fa:5a:83:b0:c5:fa:64:36:ce:52:e4:c8:d7:
                    ba:98:ae:e5:80:e8:2d:07:22:9c:01:af:c4:c4:c5:ba:
                    2b:e9:36:b5:47:2e:c5:bf:bd:ef:74:fa:ab:29:71:5c:
                    19:0b:bc:1e:4d:47:fe:79:bd:74:47:b4:17:87:df:dc:
                    c4:ce:f1:24:0c:e2:2f:53:c6:fb:eb:9d:e0:61:e4:ed:
                    60:d3:c8:c7:58:f9:ff:d3:11:f1:2f:b6:b6:86:83:aa:
                    6b:e1:e6:e8:0f:2a:8c:f8:e9:4d:68:b8:e5:a5:c1:7e:
                    66:c8:f0:da:21:6e:0f:6e:32:00:fe:58:3d:2d:09:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:6c:b8:4a:2b:0d:24:36:18:38:d5:4c:7e:ea:35:a2:
        18:b3:d1:4f:f2:b3:f4:08:9c:fe:4d:2d:c2:ef:7f:2f:
        7e:97:96:d6:57:c9:7d:48:ed:b4:8e:30:d8:b6:60:c5:
        93:5f:39:f0:3e:82:3d:90:81:3d:77:93:a5:37:c8:f5:
        0f:76:f4:4b:a4:20:d8:09:f6:31:c1:88:df:20:0a:9b:
        a7:2d:0d:ec:bd:10:8c:1d:e1:40:e4:e2:d4:f8:59:7c:
        0c:ab:40:89:2e:f8:7f:00:e4:f4:d1:d3:a3:66:d1:0e:
        1f:1e:9a:49:6c:db:b7:12:b0:55:e0:26:76:37:a2:29:
        d3:88:f8:a1:8f:9e:76:0e:8e:af:0e:f2:8e:dd:18:4a:
        ea:72:00:a6:a7:df:ac:0c:fd:ac:3c:6c:2a:fe:3d:f5:
        2d:32:de:90:20:35:ff:3e:09:bf:6d:b4:fc:98:29:13:
        7d:b3:b1:ff:4c:26:e1:3e:b7:d6:23:f5:f0:20:24:01:
        8b:ae:3e:6a:d4:97:e7:72:04:7c:06:83:68:ff:65:fd:
        e3:56:36:cd:f3:84:0d:30:c2:75:74:59:ff:80:89:32:
        13:1e:b5:af:d0:0e:91:71:2f:ba:de:03:5b:86:da:64:
        f1:56:eb:e1:9d:03:a2:ee:b6:19:35:d6:46:8e:a3:46
    Fingerprint (SHA-256):
        05:12:47:E3:C1:3E:1C:5A:D2:E2:00:C5:12:E6:2F:9E:9B:CD:2B:B7:F9:4F:B3:EA:C8:FD:06:2A:9C:C2:87:5B
    Fingerprint (SHA1):
        DD:6E:04:84:7A:48:39:53:FA:56:9B:1B:5A:07:1E:F9:8D:0E:FE:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3027: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3028: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3029: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3030: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115271 (0x1e67bdc7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:52:54 2017
            Not After : Tue May 10 11:52:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:b9:ce:25:b8:29:f5:d8:f1:0f:d8:52:1e:32:6b:09:
                    92:16:d9:76:cb:ab:82:c0:49:9c:50:a5:b7:16:4e:87:
                    c4:a9:f5:63:b4:26:e2:6f:83:14:e0:f4:0d:bc:a1:62:
                    e2:c2:d7:14:6b:46:c4:45:1f:81:1a:fe:20:36:99:26:
                    34:a8:09:b7:ac:c3:13:18:e1:69:bc:6e:07:c3:e6:26:
                    bb:8d:e3:8c:80:fe:2a:66:10:a8:31:e8:e9:c0:07:e4:
                    44:76:e5:09:f1:b2:20:f4:29:27:65:43:45:d6:0c:d5:
                    e8:34:b6:24:f5:50:69:4d:95:6e:92:db:b9:ca:69:de:
                    37:f7:c7:fa:5a:83:b0:c5:fa:64:36:ce:52:e4:c8:d7:
                    ba:98:ae:e5:80:e8:2d:07:22:9c:01:af:c4:c4:c5:ba:
                    2b:e9:36:b5:47:2e:c5:bf:bd:ef:74:fa:ab:29:71:5c:
                    19:0b:bc:1e:4d:47:fe:79:bd:74:47:b4:17:87:df:dc:
                    c4:ce:f1:24:0c:e2:2f:53:c6:fb:eb:9d:e0:61:e4:ed:
                    60:d3:c8:c7:58:f9:ff:d3:11:f1:2f:b6:b6:86:83:aa:
                    6b:e1:e6:e8:0f:2a:8c:f8:e9:4d:68:b8:e5:a5:c1:7e:
                    66:c8:f0:da:21:6e:0f:6e:32:00:fe:58:3d:2d:09:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:6c:b8:4a:2b:0d:24:36:18:38:d5:4c:7e:ea:35:a2:
        18:b3:d1:4f:f2:b3:f4:08:9c:fe:4d:2d:c2:ef:7f:2f:
        7e:97:96:d6:57:c9:7d:48:ed:b4:8e:30:d8:b6:60:c5:
        93:5f:39:f0:3e:82:3d:90:81:3d:77:93:a5:37:c8:f5:
        0f:76:f4:4b:a4:20:d8:09:f6:31:c1:88:df:20:0a:9b:
        a7:2d:0d:ec:bd:10:8c:1d:e1:40:e4:e2:d4:f8:59:7c:
        0c:ab:40:89:2e:f8:7f:00:e4:f4:d1:d3:a3:66:d1:0e:
        1f:1e:9a:49:6c:db:b7:12:b0:55:e0:26:76:37:a2:29:
        d3:88:f8:a1:8f:9e:76:0e:8e:af:0e:f2:8e:dd:18:4a:
        ea:72:00:a6:a7:df:ac:0c:fd:ac:3c:6c:2a:fe:3d:f5:
        2d:32:de:90:20:35:ff:3e:09:bf:6d:b4:fc:98:29:13:
        7d:b3:b1:ff:4c:26:e1:3e:b7:d6:23:f5:f0:20:24:01:
        8b:ae:3e:6a:d4:97:e7:72:04:7c:06:83:68:ff:65:fd:
        e3:56:36:cd:f3:84:0d:30:c2:75:74:59:ff:80:89:32:
        13:1e:b5:af:d0:0e:91:71:2f:ba:de:03:5b:86:da:64:
        f1:56:eb:e1:9d:03:a2:ee:b6:19:35:d6:46:8e:a3:46
    Fingerprint (SHA-256):
        05:12:47:E3:C1:3E:1C:5A:D2:E2:00:C5:12:E6:2F:9E:9B:CD:2B:B7:F9:4F:B3:EA:C8:FD:06:2A:9C:C2:87:5B
    Fingerprint (SHA1):
        DD:6E:04:84:7A:48:39:53:FA:56:9B:1B:5A:07:1E:F9:8D:0E:FE:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3031: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115271 (0x1e67bdc7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:52:54 2017
            Not After : Tue May 10 11:52:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:b9:ce:25:b8:29:f5:d8:f1:0f:d8:52:1e:32:6b:09:
                    92:16:d9:76:cb:ab:82:c0:49:9c:50:a5:b7:16:4e:87:
                    c4:a9:f5:63:b4:26:e2:6f:83:14:e0:f4:0d:bc:a1:62:
                    e2:c2:d7:14:6b:46:c4:45:1f:81:1a:fe:20:36:99:26:
                    34:a8:09:b7:ac:c3:13:18:e1:69:bc:6e:07:c3:e6:26:
                    bb:8d:e3:8c:80:fe:2a:66:10:a8:31:e8:e9:c0:07:e4:
                    44:76:e5:09:f1:b2:20:f4:29:27:65:43:45:d6:0c:d5:
                    e8:34:b6:24:f5:50:69:4d:95:6e:92:db:b9:ca:69:de:
                    37:f7:c7:fa:5a:83:b0:c5:fa:64:36:ce:52:e4:c8:d7:
                    ba:98:ae:e5:80:e8:2d:07:22:9c:01:af:c4:c4:c5:ba:
                    2b:e9:36:b5:47:2e:c5:bf:bd:ef:74:fa:ab:29:71:5c:
                    19:0b:bc:1e:4d:47:fe:79:bd:74:47:b4:17:87:df:dc:
                    c4:ce:f1:24:0c:e2:2f:53:c6:fb:eb:9d:e0:61:e4:ed:
                    60:d3:c8:c7:58:f9:ff:d3:11:f1:2f:b6:b6:86:83:aa:
                    6b:e1:e6:e8:0f:2a:8c:f8:e9:4d:68:b8:e5:a5:c1:7e:
                    66:c8:f0:da:21:6e:0f:6e:32:00:fe:58:3d:2d:09:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:6c:b8:4a:2b:0d:24:36:18:38:d5:4c:7e:ea:35:a2:
        18:b3:d1:4f:f2:b3:f4:08:9c:fe:4d:2d:c2:ef:7f:2f:
        7e:97:96:d6:57:c9:7d:48:ed:b4:8e:30:d8:b6:60:c5:
        93:5f:39:f0:3e:82:3d:90:81:3d:77:93:a5:37:c8:f5:
        0f:76:f4:4b:a4:20:d8:09:f6:31:c1:88:df:20:0a:9b:
        a7:2d:0d:ec:bd:10:8c:1d:e1:40:e4:e2:d4:f8:59:7c:
        0c:ab:40:89:2e:f8:7f:00:e4:f4:d1:d3:a3:66:d1:0e:
        1f:1e:9a:49:6c:db:b7:12:b0:55:e0:26:76:37:a2:29:
        d3:88:f8:a1:8f:9e:76:0e:8e:af:0e:f2:8e:dd:18:4a:
        ea:72:00:a6:a7:df:ac:0c:fd:ac:3c:6c:2a:fe:3d:f5:
        2d:32:de:90:20:35:ff:3e:09:bf:6d:b4:fc:98:29:13:
        7d:b3:b1:ff:4c:26:e1:3e:b7:d6:23:f5:f0:20:24:01:
        8b:ae:3e:6a:d4:97:e7:72:04:7c:06:83:68:ff:65:fd:
        e3:56:36:cd:f3:84:0d:30:c2:75:74:59:ff:80:89:32:
        13:1e:b5:af:d0:0e:91:71:2f:ba:de:03:5b:86:da:64:
        f1:56:eb:e1:9d:03:a2:ee:b6:19:35:d6:46:8e:a3:46
    Fingerprint (SHA-256):
        05:12:47:E3:C1:3E:1C:5A:D2:E2:00:C5:12:E6:2F:9E:9B:CD:2B:B7:F9:4F:B3:EA:C8:FD:06:2A:9C:C2:87:5B
    Fingerprint (SHA1):
        DD:6E:04:84:7A:48:39:53:FA:56:9B:1B:5A:07:1E:F9:8D:0E:FE:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3032: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115271 (0x1e67bdc7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:52:54 2017
            Not After : Tue May 10 11:52:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:b9:ce:25:b8:29:f5:d8:f1:0f:d8:52:1e:32:6b:09:
                    92:16:d9:76:cb:ab:82:c0:49:9c:50:a5:b7:16:4e:87:
                    c4:a9:f5:63:b4:26:e2:6f:83:14:e0:f4:0d:bc:a1:62:
                    e2:c2:d7:14:6b:46:c4:45:1f:81:1a:fe:20:36:99:26:
                    34:a8:09:b7:ac:c3:13:18:e1:69:bc:6e:07:c3:e6:26:
                    bb:8d:e3:8c:80:fe:2a:66:10:a8:31:e8:e9:c0:07:e4:
                    44:76:e5:09:f1:b2:20:f4:29:27:65:43:45:d6:0c:d5:
                    e8:34:b6:24:f5:50:69:4d:95:6e:92:db:b9:ca:69:de:
                    37:f7:c7:fa:5a:83:b0:c5:fa:64:36:ce:52:e4:c8:d7:
                    ba:98:ae:e5:80:e8:2d:07:22:9c:01:af:c4:c4:c5:ba:
                    2b:e9:36:b5:47:2e:c5:bf:bd:ef:74:fa:ab:29:71:5c:
                    19:0b:bc:1e:4d:47:fe:79:bd:74:47:b4:17:87:df:dc:
                    c4:ce:f1:24:0c:e2:2f:53:c6:fb:eb:9d:e0:61:e4:ed:
                    60:d3:c8:c7:58:f9:ff:d3:11:f1:2f:b6:b6:86:83:aa:
                    6b:e1:e6:e8:0f:2a:8c:f8:e9:4d:68:b8:e5:a5:c1:7e:
                    66:c8:f0:da:21:6e:0f:6e:32:00:fe:58:3d:2d:09:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:6c:b8:4a:2b:0d:24:36:18:38:d5:4c:7e:ea:35:a2:
        18:b3:d1:4f:f2:b3:f4:08:9c:fe:4d:2d:c2:ef:7f:2f:
        7e:97:96:d6:57:c9:7d:48:ed:b4:8e:30:d8:b6:60:c5:
        93:5f:39:f0:3e:82:3d:90:81:3d:77:93:a5:37:c8:f5:
        0f:76:f4:4b:a4:20:d8:09:f6:31:c1:88:df:20:0a:9b:
        a7:2d:0d:ec:bd:10:8c:1d:e1:40:e4:e2:d4:f8:59:7c:
        0c:ab:40:89:2e:f8:7f:00:e4:f4:d1:d3:a3:66:d1:0e:
        1f:1e:9a:49:6c:db:b7:12:b0:55:e0:26:76:37:a2:29:
        d3:88:f8:a1:8f:9e:76:0e:8e:af:0e:f2:8e:dd:18:4a:
        ea:72:00:a6:a7:df:ac:0c:fd:ac:3c:6c:2a:fe:3d:f5:
        2d:32:de:90:20:35:ff:3e:09:bf:6d:b4:fc:98:29:13:
        7d:b3:b1:ff:4c:26:e1:3e:b7:d6:23:f5:f0:20:24:01:
        8b:ae:3e:6a:d4:97:e7:72:04:7c:06:83:68:ff:65:fd:
        e3:56:36:cd:f3:84:0d:30:c2:75:74:59:ff:80:89:32:
        13:1e:b5:af:d0:0e:91:71:2f:ba:de:03:5b:86:da:64:
        f1:56:eb:e1:9d:03:a2:ee:b6:19:35:d6:46:8e:a3:46
    Fingerprint (SHA-256):
        05:12:47:E3:C1:3E:1C:5A:D2:E2:00:C5:12:E6:2F:9E:9B:CD:2B:B7:F9:4F:B3:EA:C8:FD:06:2A:9C:C2:87:5B
    Fingerprint (SHA1):
        DD:6E:04:84:7A:48:39:53:FA:56:9B:1B:5A:07:1E:F9:8D:0E:FE:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3033: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115271 (0x1e67bdc7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:52:54 2017
            Not After : Tue May 10 11:52:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:b9:ce:25:b8:29:f5:d8:f1:0f:d8:52:1e:32:6b:09:
                    92:16:d9:76:cb:ab:82:c0:49:9c:50:a5:b7:16:4e:87:
                    c4:a9:f5:63:b4:26:e2:6f:83:14:e0:f4:0d:bc:a1:62:
                    e2:c2:d7:14:6b:46:c4:45:1f:81:1a:fe:20:36:99:26:
                    34:a8:09:b7:ac:c3:13:18:e1:69:bc:6e:07:c3:e6:26:
                    bb:8d:e3:8c:80:fe:2a:66:10:a8:31:e8:e9:c0:07:e4:
                    44:76:e5:09:f1:b2:20:f4:29:27:65:43:45:d6:0c:d5:
                    e8:34:b6:24:f5:50:69:4d:95:6e:92:db:b9:ca:69:de:
                    37:f7:c7:fa:5a:83:b0:c5:fa:64:36:ce:52:e4:c8:d7:
                    ba:98:ae:e5:80:e8:2d:07:22:9c:01:af:c4:c4:c5:ba:
                    2b:e9:36:b5:47:2e:c5:bf:bd:ef:74:fa:ab:29:71:5c:
                    19:0b:bc:1e:4d:47:fe:79:bd:74:47:b4:17:87:df:dc:
                    c4:ce:f1:24:0c:e2:2f:53:c6:fb:eb:9d:e0:61:e4:ed:
                    60:d3:c8:c7:58:f9:ff:d3:11:f1:2f:b6:b6:86:83:aa:
                    6b:e1:e6:e8:0f:2a:8c:f8:e9:4d:68:b8:e5:a5:c1:7e:
                    66:c8:f0:da:21:6e:0f:6e:32:00:fe:58:3d:2d:09:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:6c:b8:4a:2b:0d:24:36:18:38:d5:4c:7e:ea:35:a2:
        18:b3:d1:4f:f2:b3:f4:08:9c:fe:4d:2d:c2:ef:7f:2f:
        7e:97:96:d6:57:c9:7d:48:ed:b4:8e:30:d8:b6:60:c5:
        93:5f:39:f0:3e:82:3d:90:81:3d:77:93:a5:37:c8:f5:
        0f:76:f4:4b:a4:20:d8:09:f6:31:c1:88:df:20:0a:9b:
        a7:2d:0d:ec:bd:10:8c:1d:e1:40:e4:e2:d4:f8:59:7c:
        0c:ab:40:89:2e:f8:7f:00:e4:f4:d1:d3:a3:66:d1:0e:
        1f:1e:9a:49:6c:db:b7:12:b0:55:e0:26:76:37:a2:29:
        d3:88:f8:a1:8f:9e:76:0e:8e:af:0e:f2:8e:dd:18:4a:
        ea:72:00:a6:a7:df:ac:0c:fd:ac:3c:6c:2a:fe:3d:f5:
        2d:32:de:90:20:35:ff:3e:09:bf:6d:b4:fc:98:29:13:
        7d:b3:b1:ff:4c:26:e1:3e:b7:d6:23:f5:f0:20:24:01:
        8b:ae:3e:6a:d4:97:e7:72:04:7c:06:83:68:ff:65:fd:
        e3:56:36:cd:f3:84:0d:30:c2:75:74:59:ff:80:89:32:
        13:1e:b5:af:d0:0e:91:71:2f:ba:de:03:5b:86:da:64:
        f1:56:eb:e1:9d:03:a2:ee:b6:19:35:d6:46:8e:a3:46
    Fingerprint (SHA-256):
        05:12:47:E3:C1:3E:1C:5A:D2:E2:00:C5:12:E6:2F:9E:9B:CD:2B:B7:F9:4F:B3:EA:C8:FD:06:2A:9C:C2:87:5B
    Fingerprint (SHA1):
        DD:6E:04:84:7A:48:39:53:FA:56:9B:1B:5A:07:1E:F9:8D:0E:FE:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3034: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115271 (0x1e67bdc7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:52:54 2017
            Not After : Tue May 10 11:52:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:b9:ce:25:b8:29:f5:d8:f1:0f:d8:52:1e:32:6b:09:
                    92:16:d9:76:cb:ab:82:c0:49:9c:50:a5:b7:16:4e:87:
                    c4:a9:f5:63:b4:26:e2:6f:83:14:e0:f4:0d:bc:a1:62:
                    e2:c2:d7:14:6b:46:c4:45:1f:81:1a:fe:20:36:99:26:
                    34:a8:09:b7:ac:c3:13:18:e1:69:bc:6e:07:c3:e6:26:
                    bb:8d:e3:8c:80:fe:2a:66:10:a8:31:e8:e9:c0:07:e4:
                    44:76:e5:09:f1:b2:20:f4:29:27:65:43:45:d6:0c:d5:
                    e8:34:b6:24:f5:50:69:4d:95:6e:92:db:b9:ca:69:de:
                    37:f7:c7:fa:5a:83:b0:c5:fa:64:36:ce:52:e4:c8:d7:
                    ba:98:ae:e5:80:e8:2d:07:22:9c:01:af:c4:c4:c5:ba:
                    2b:e9:36:b5:47:2e:c5:bf:bd:ef:74:fa:ab:29:71:5c:
                    19:0b:bc:1e:4d:47:fe:79:bd:74:47:b4:17:87:df:dc:
                    c4:ce:f1:24:0c:e2:2f:53:c6:fb:eb:9d:e0:61:e4:ed:
                    60:d3:c8:c7:58:f9:ff:d3:11:f1:2f:b6:b6:86:83:aa:
                    6b:e1:e6:e8:0f:2a:8c:f8:e9:4d:68:b8:e5:a5:c1:7e:
                    66:c8:f0:da:21:6e:0f:6e:32:00:fe:58:3d:2d:09:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:6c:b8:4a:2b:0d:24:36:18:38:d5:4c:7e:ea:35:a2:
        18:b3:d1:4f:f2:b3:f4:08:9c:fe:4d:2d:c2:ef:7f:2f:
        7e:97:96:d6:57:c9:7d:48:ed:b4:8e:30:d8:b6:60:c5:
        93:5f:39:f0:3e:82:3d:90:81:3d:77:93:a5:37:c8:f5:
        0f:76:f4:4b:a4:20:d8:09:f6:31:c1:88:df:20:0a:9b:
        a7:2d:0d:ec:bd:10:8c:1d:e1:40:e4:e2:d4:f8:59:7c:
        0c:ab:40:89:2e:f8:7f:00:e4:f4:d1:d3:a3:66:d1:0e:
        1f:1e:9a:49:6c:db:b7:12:b0:55:e0:26:76:37:a2:29:
        d3:88:f8:a1:8f:9e:76:0e:8e:af:0e:f2:8e:dd:18:4a:
        ea:72:00:a6:a7:df:ac:0c:fd:ac:3c:6c:2a:fe:3d:f5:
        2d:32:de:90:20:35:ff:3e:09:bf:6d:b4:fc:98:29:13:
        7d:b3:b1:ff:4c:26:e1:3e:b7:d6:23:f5:f0:20:24:01:
        8b:ae:3e:6a:d4:97:e7:72:04:7c:06:83:68:ff:65:fd:
        e3:56:36:cd:f3:84:0d:30:c2:75:74:59:ff:80:89:32:
        13:1e:b5:af:d0:0e:91:71:2f:ba:de:03:5b:86:da:64:
        f1:56:eb:e1:9d:03:a2:ee:b6:19:35:d6:46:8e:a3:46
    Fingerprint (SHA-256):
        05:12:47:E3:C1:3E:1C:5A:D2:E2:00:C5:12:E6:2F:9E:9B:CD:2B:B7:F9:4F:B3:EA:C8:FD:06:2A:9C:C2:87:5B
    Fingerprint (SHA1):
        DD:6E:04:84:7A:48:39:53:FA:56:9B:1B:5A:07:1E:F9:8D:0E:FE:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3035: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115271 (0x1e67bdc7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:52:54 2017
            Not After : Tue May 10 11:52:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:b9:ce:25:b8:29:f5:d8:f1:0f:d8:52:1e:32:6b:09:
                    92:16:d9:76:cb:ab:82:c0:49:9c:50:a5:b7:16:4e:87:
                    c4:a9:f5:63:b4:26:e2:6f:83:14:e0:f4:0d:bc:a1:62:
                    e2:c2:d7:14:6b:46:c4:45:1f:81:1a:fe:20:36:99:26:
                    34:a8:09:b7:ac:c3:13:18:e1:69:bc:6e:07:c3:e6:26:
                    bb:8d:e3:8c:80:fe:2a:66:10:a8:31:e8:e9:c0:07:e4:
                    44:76:e5:09:f1:b2:20:f4:29:27:65:43:45:d6:0c:d5:
                    e8:34:b6:24:f5:50:69:4d:95:6e:92:db:b9:ca:69:de:
                    37:f7:c7:fa:5a:83:b0:c5:fa:64:36:ce:52:e4:c8:d7:
                    ba:98:ae:e5:80:e8:2d:07:22:9c:01:af:c4:c4:c5:ba:
                    2b:e9:36:b5:47:2e:c5:bf:bd:ef:74:fa:ab:29:71:5c:
                    19:0b:bc:1e:4d:47:fe:79:bd:74:47:b4:17:87:df:dc:
                    c4:ce:f1:24:0c:e2:2f:53:c6:fb:eb:9d:e0:61:e4:ed:
                    60:d3:c8:c7:58:f9:ff:d3:11:f1:2f:b6:b6:86:83:aa:
                    6b:e1:e6:e8:0f:2a:8c:f8:e9:4d:68:b8:e5:a5:c1:7e:
                    66:c8:f0:da:21:6e:0f:6e:32:00:fe:58:3d:2d:09:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:6c:b8:4a:2b:0d:24:36:18:38:d5:4c:7e:ea:35:a2:
        18:b3:d1:4f:f2:b3:f4:08:9c:fe:4d:2d:c2:ef:7f:2f:
        7e:97:96:d6:57:c9:7d:48:ed:b4:8e:30:d8:b6:60:c5:
        93:5f:39:f0:3e:82:3d:90:81:3d:77:93:a5:37:c8:f5:
        0f:76:f4:4b:a4:20:d8:09:f6:31:c1:88:df:20:0a:9b:
        a7:2d:0d:ec:bd:10:8c:1d:e1:40:e4:e2:d4:f8:59:7c:
        0c:ab:40:89:2e:f8:7f:00:e4:f4:d1:d3:a3:66:d1:0e:
        1f:1e:9a:49:6c:db:b7:12:b0:55:e0:26:76:37:a2:29:
        d3:88:f8:a1:8f:9e:76:0e:8e:af:0e:f2:8e:dd:18:4a:
        ea:72:00:a6:a7:df:ac:0c:fd:ac:3c:6c:2a:fe:3d:f5:
        2d:32:de:90:20:35:ff:3e:09:bf:6d:b4:fc:98:29:13:
        7d:b3:b1:ff:4c:26:e1:3e:b7:d6:23:f5:f0:20:24:01:
        8b:ae:3e:6a:d4:97:e7:72:04:7c:06:83:68:ff:65:fd:
        e3:56:36:cd:f3:84:0d:30:c2:75:74:59:ff:80:89:32:
        13:1e:b5:af:d0:0e:91:71:2f:ba:de:03:5b:86:da:64:
        f1:56:eb:e1:9d:03:a2:ee:b6:19:35:d6:46:8e:a3:46
    Fingerprint (SHA-256):
        05:12:47:E3:C1:3E:1C:5A:D2:E2:00:C5:12:E6:2F:9E:9B:CD:2B:B7:F9:4F:B3:EA:C8:FD:06:2A:9C:C2:87:5B
    Fingerprint (SHA1):
        DD:6E:04:84:7A:48:39:53:FA:56:9B:1B:5A:07:1E:F9:8D:0E:FE:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3036: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3037: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3038: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115301 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3039: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3040: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #3041: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3042: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 510115302   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3043: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3044: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #3045: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3046: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 510115303   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3047: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3048: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #3049: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3050: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 510115304   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3051: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3052: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #3053: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3054: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 510115305   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3055: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3056: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #3057: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3058: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 510115306   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3059: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3060: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #3061: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3062: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 510115307   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3063: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3064: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3065: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115301 (0x1e67bde5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:07 2017
            Not After : Tue May 10 11:53:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:e8:5f:7d:45:60:13:13:29:ea:5a:f9:e6:0b:28:55:
                    57:c6:54:ab:66:48:61:07:fa:2e:a2:4b:8c:bc:dc:d4:
                    f6:b3:45:58:df:13:d7:08:0a:d7:af:4e:f6:89:65:3a:
                    7b:24:dd:76:4a:45:5c:f7:e9:35:f4:61:68:9c:a5:20:
                    f7:28:7a:c5:a8:31:7a:90:a9:90:33:80:d9:ea:ea:bb:
                    da:10:40:79:3b:e3:fc:0f:e5:61:d3:77:e2:67:4a:7b:
                    e7:5a:c5:38:ef:4a:54:78:93:e6:f8:51:f7:49:9f:9b:
                    cb:5b:83:bc:6b:9f:e1:dd:b3:4a:75:04:4a:b8:69:4f:
                    b3:75:a6:a4:d9:3d:c8:60:2b:03:a5:88:2d:3b:46:f7:
                    7a:6f:9a:f2:3c:d7:78:ca:5a:af:65:6f:61:03:06:d5:
                    f8:27:b8:7b:99:51:06:5f:e0:60:d8:d2:ab:c2:a8:03:
                    f5:fe:d2:87:c5:7b:5f:d3:49:22:53:0c:33:cf:b4:db:
                    80:9d:c6:32:1f:08:1d:4d:fe:1f:62:9b:3c:9c:0f:10:
                    99:af:db:eb:74:48:48:8c:37:56:e0:4c:cd:16:31:a7:
                    f2:9f:9e:f5:9b:4b:30:23:4d:18:86:a8:32:e2:a8:98:
                    f4:de:50:ca:a7:0c:12:4f:ca:74:04:74:8c:27:5c:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:90:48:eb:cc:7e:b0:e6:15:ce:ab:e6:77:be:99:89:
        04:d4:65:00:13:68:f7:f9:93:b0:55:d3:51:2a:f1:bf:
        03:b6:ac:85:c4:03:0a:3b:40:13:4f:4b:84:dc:77:71:
        a6:d4:fb:77:8a:1c:35:3e:49:57:19:ad:1e:88:28:c5:
        67:39:5e:cc:83:7a:fa:7a:36:d8:bb:cb:7b:b4:e6:fe:
        62:fb:26:11:93:cb:6a:e5:8d:19:12:cd:5c:46:01:34:
        e4:90:91:2e:e8:48:92:b1:b1:45:02:c6:5e:a9:8f:37:
        8b:73:14:27:e8:e5:5b:a5:9f:f2:2d:21:d5:4a:ad:1f:
        3d:67:1e:ed:e5:ff:8c:cb:40:3a:4a:42:3e:3a:46:40:
        1f:e9:ed:e3:dc:21:e8:dd:c3:4e:df:50:be:8c:b9:f4:
        4b:59:17:68:a8:27:a6:70:74:a2:36:9f:65:ff:28:4c:
        7b:0f:10:8c:e4:8c:82:80:9b:43:a6:e2:b4:c3:1f:e2:
        2a:23:8b:db:6b:4c:ab:21:eb:6d:da:9d:fa:44:35:0b:
        f5:50:8f:0a:06:58:f3:ba:c7:fa:ec:90:d2:de:91:0b:
        70:71:53:15:ec:53:5d:36:bc:2c:6c:0d:6c:16:e8:88:
        52:f1:bb:55:34:c2:7d:62:a8:2b:2b:2f:c9:e9:ba:68
    Fingerprint (SHA-256):
        13:87:14:BD:C5:E9:EF:2B:77:CB:87:E6:95:B5:A0:C2:6B:01:F4:0E:96:20:5C:8A:C1:73:81:13:9A:26:71:C7
    Fingerprint (SHA1):
        EA:7D:A3:A0:4E:BD:82:41:AE:07:6B:48:6F:5B:14:25:1B:C7:BC:54
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3066: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3067: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3068: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3069: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115301 (0x1e67bde5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:07 2017
            Not After : Tue May 10 11:53:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:e8:5f:7d:45:60:13:13:29:ea:5a:f9:e6:0b:28:55:
                    57:c6:54:ab:66:48:61:07:fa:2e:a2:4b:8c:bc:dc:d4:
                    f6:b3:45:58:df:13:d7:08:0a:d7:af:4e:f6:89:65:3a:
                    7b:24:dd:76:4a:45:5c:f7:e9:35:f4:61:68:9c:a5:20:
                    f7:28:7a:c5:a8:31:7a:90:a9:90:33:80:d9:ea:ea:bb:
                    da:10:40:79:3b:e3:fc:0f:e5:61:d3:77:e2:67:4a:7b:
                    e7:5a:c5:38:ef:4a:54:78:93:e6:f8:51:f7:49:9f:9b:
                    cb:5b:83:bc:6b:9f:e1:dd:b3:4a:75:04:4a:b8:69:4f:
                    b3:75:a6:a4:d9:3d:c8:60:2b:03:a5:88:2d:3b:46:f7:
                    7a:6f:9a:f2:3c:d7:78:ca:5a:af:65:6f:61:03:06:d5:
                    f8:27:b8:7b:99:51:06:5f:e0:60:d8:d2:ab:c2:a8:03:
                    f5:fe:d2:87:c5:7b:5f:d3:49:22:53:0c:33:cf:b4:db:
                    80:9d:c6:32:1f:08:1d:4d:fe:1f:62:9b:3c:9c:0f:10:
                    99:af:db:eb:74:48:48:8c:37:56:e0:4c:cd:16:31:a7:
                    f2:9f:9e:f5:9b:4b:30:23:4d:18:86:a8:32:e2:a8:98:
                    f4:de:50:ca:a7:0c:12:4f:ca:74:04:74:8c:27:5c:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:90:48:eb:cc:7e:b0:e6:15:ce:ab:e6:77:be:99:89:
        04:d4:65:00:13:68:f7:f9:93:b0:55:d3:51:2a:f1:bf:
        03:b6:ac:85:c4:03:0a:3b:40:13:4f:4b:84:dc:77:71:
        a6:d4:fb:77:8a:1c:35:3e:49:57:19:ad:1e:88:28:c5:
        67:39:5e:cc:83:7a:fa:7a:36:d8:bb:cb:7b:b4:e6:fe:
        62:fb:26:11:93:cb:6a:e5:8d:19:12:cd:5c:46:01:34:
        e4:90:91:2e:e8:48:92:b1:b1:45:02:c6:5e:a9:8f:37:
        8b:73:14:27:e8:e5:5b:a5:9f:f2:2d:21:d5:4a:ad:1f:
        3d:67:1e:ed:e5:ff:8c:cb:40:3a:4a:42:3e:3a:46:40:
        1f:e9:ed:e3:dc:21:e8:dd:c3:4e:df:50:be:8c:b9:f4:
        4b:59:17:68:a8:27:a6:70:74:a2:36:9f:65:ff:28:4c:
        7b:0f:10:8c:e4:8c:82:80:9b:43:a6:e2:b4:c3:1f:e2:
        2a:23:8b:db:6b:4c:ab:21:eb:6d:da:9d:fa:44:35:0b:
        f5:50:8f:0a:06:58:f3:ba:c7:fa:ec:90:d2:de:91:0b:
        70:71:53:15:ec:53:5d:36:bc:2c:6c:0d:6c:16:e8:88:
        52:f1:bb:55:34:c2:7d:62:a8:2b:2b:2f:c9:e9:ba:68
    Fingerprint (SHA-256):
        13:87:14:BD:C5:E9:EF:2B:77:CB:87:E6:95:B5:A0:C2:6B:01:F4:0E:96:20:5C:8A:C1:73:81:13:9A:26:71:C7
    Fingerprint (SHA1):
        EA:7D:A3:A0:4E:BD:82:41:AE:07:6B:48:6F:5B:14:25:1B:C7:BC:54
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3070: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3071: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3072: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3073: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115308 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3074: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3075: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3076: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3077: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115309   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3078: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3079: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3080: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3081: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115310   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3082: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3083: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3084: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3085: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510115311   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3086: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3087: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3088: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3089: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3090: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3091: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115308 (0x1e67bdec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:10 2017
            Not After : Tue May 10 11:53:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:6a:68:db:99:6c:ed:a6:97:9e:e8:8c:ba:70:75:60:
                    21:6f:0c:ed:9c:a6:64:c7:b3:db:19:8d:d1:0e:00:1e:
                    5f:19:b6:91:9e:14:dd:da:b7:99:9e:9a:ce:51:81:48:
                    20:9c:11:aa:64:ab:02:84:7b:f9:76:70:83:44:4e:70:
                    dd:fb:3a:6e:70:dd:35:d2:5d:29:64:46:07:f4:a8:77:
                    ae:c7:50:4a:7d:e2:b2:f0:03:33:06:77:2c:2c:1a:0c:
                    3f:dd:ed:e7:40:98:cb:41:ac:24:cc:8f:13:c5:e3:33:
                    b6:a3:04:25:53:59:10:35:2a:c0:8a:17:3b:ba:68:41:
                    2a:64:bd:34:68:ee:e6:71:71:4b:c7:b1:0f:ca:fc:b0:
                    71:76:3e:60:2d:35:85:27:38:c7:8b:4c:ad:78:17:16:
                    79:dd:94:ea:b0:e1:b4:09:73:73:d5:ab:da:c6:9c:42:
                    39:14:b1:ed:1b:8a:0a:70:49:d3:92:0b:8d:3e:cf:d1:
                    44:ec:1a:01:8d:46:f0:e2:2e:5b:d7:3c:aa:42:36:c5:
                    57:c5:d5:d3:6d:2f:58:ff:ed:73:a5:a4:8a:01:75:5a:
                    c4:4b:51:5a:38:ed:6d:a6:72:31:e4:2b:5d:e9:33:71:
                    fd:3f:19:de:c5:74:b9:9a:71:75:5a:85:1f:0d:88:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:4a:c8:ea:d3:6e:ce:bc:81:48:54:65:c3:fe:cb:f9:
        bd:55:fc:ea:be:93:18:38:c7:35:ef:fd:18:19:c1:b9:
        51:91:69:e4:ee:ce:08:b9:81:cd:bc:cc:e9:72:1d:9b:
        79:99:cb:44:88:36:fe:13:7b:b9:6d:a7:41:f1:26:c8:
        08:80:0b:00:90:65:2d:31:54:c7:f1:97:c1:24:c3:8a:
        aa:7d:ce:59:bc:6d:1e:a4:b0:48:45:57:d6:ed:06:63:
        6a:de:e0:1c:f0:3e:5b:f1:cb:b3:7b:29:1e:5b:58:b5:
        03:ae:7f:87:47:05:c6:cd:cc:20:a2:3d:36:d1:ed:65:
        ee:b3:7e:96:4c:e5:86:8f:a1:3f:10:d4:c8:89:58:84:
        2e:67:3e:ac:aa:34:8f:73:31:ab:85:67:5c:1f:11:5e:
        5f:2f:3c:f2:91:a0:ae:20:64:7c:bd:ee:6b:4b:b2:7c:
        99:a6:3a:78:a8:5c:e6:3f:21:54:1d:d6:4b:ca:23:8a:
        14:e0:79:45:e9:40:f3:43:f4:8b:49:d0:0b:03:35:02:
        58:19:77:1f:26:d2:ee:87:40:95:2f:31:db:94:59:a0:
        67:c0:87:51:01:b0:73:f0:19:e8:2b:36:3d:8b:a0:44:
        bc:c8:7f:5b:7a:4d:90:11:a0:0f:53:d0:bd:80:4c:7f
    Fingerprint (SHA-256):
        62:3D:23:56:24:DE:00:1E:08:88:3A:CA:90:E8:33:C1:C7:3A:02:CB:A7:F0:8F:9C:42:58:8F:6A:DF:25:E6:30
    Fingerprint (SHA1):
        39:7B:7A:2C:AD:01:B0:A7:F3:EE:63:37:CA:A6:1A:AA:29:48:0E:F0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3092: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3093: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3094: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115309 (0x1e67bded)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:10 2017
            Not After : Tue May 10 11:53:10 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:d9:29:7f:bb:d5:e0:97:6c:ab:85:8d:d6:a9:0e:b2:
                    5e:f2:58:5b:7a:b2:dc:be:7a:4e:a4:1b:93:85:bd:0f:
                    68:e7:a2:c5:8e:3c:1d:3c:92:4c:f7:8d:7b:48:16:8b:
                    c2:28:db:f9:a1:93:72:a3:58:7e:99:dd:41:61:a2:cf:
                    ae:2d:dc:d9:79:7b:25:06:45:86:ec:90:5d:5a:9b:b2:
                    a4:aa:bb:16:84:75:3f:30:97:ba:9a:92:3c:ee:5e:62:
                    02:76:70:d0:c7:66:11:6e:61:d7:02:fc:83:37:0f:7f:
                    3c:2f:fe:0c:17:02:5f:23:d2:55:0d:2a:48:48:68:c1:
                    47:a3:b5:a2:09:84:81:ed:5a:c5:ce:f0:5e:11:9c:d3:
                    e8:a5:b8:48:3b:fc:cf:e6:4d:93:3b:c2:76:62:9a:4a:
                    64:a9:31:ea:f2:84:0f:5e:e3:80:56:3a:4e:a8:7d:a7:
                    c3:4e:29:d2:49:5e:82:17:67:f6:47:85:35:d6:83:c4:
                    9a:5f:06:28:5a:91:a4:ff:e3:dc:98:17:04:65:6b:32:
                    38:fa:d6:22:c8:81:bc:1b:d7:3a:e3:24:a2:6f:f0:0a:
                    aa:9d:cd:c0:d0:cf:af:93:0b:6c:e9:80:8e:af:fb:70:
                    1e:fe:1e:89:dc:17:47:74:05:3f:34:dc:b3:6e:9c:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:26:30:79:f7:6f:01:67:c0:a0:13:38:63:27:f0:d4:
        59:a1:59:a9:9f:aa:52:ff:83:fc:6d:d1:ed:e0:64:47:
        a3:e8:eb:06:f5:85:24:8d:40:f4:22:04:99:32:a9:c0:
        00:ed:16:f3:61:24:8b:37:34:7b:b8:c8:26:a1:b9:41:
        62:04:93:91:83:12:5f:0b:bc:1b:7d:ca:b8:fa:c5:82:
        78:fe:3d:85:f8:7f:39:c3:d5:8c:03:4b:bd:32:d1:1b:
        70:47:87:eb:ad:8a:71:c9:16:a0:3b:b5:95:a9:73:8d:
        7d:7d:45:2d:c9:80:12:e6:be:38:c3:f7:7f:70:d5:eb:
        70:09:3d:97:06:04:39:92:01:4f:54:e5:10:b9:ca:54:
        14:5b:9a:78:d3:f4:99:60:ee:99:50:50:98:d4:b1:19:
        ec:cd:c6:67:18:cd:3e:fc:21:71:a4:9a:a3:da:d3:bb:
        be:9c:ce:45:b0:ba:3e:d6:7a:aa:71:97:17:32:1f:be:
        b8:ac:dc:08:69:8b:e4:56:79:f2:95:83:39:6e:27:c2:
        96:33:d4:d8:35:2f:70:5c:e8:a6:c5:6e:00:6e:3f:83:
        00:ec:93:05:5c:65:f7:25:d3:3a:45:7b:aa:e5:0f:9c:
        ec:25:e2:ff:86:24:3e:1f:4a:c7:2e:63:66:7b:fc:1d
    Fingerprint (SHA-256):
        2E:14:EB:8B:2E:65:69:7D:6A:0A:8B:8E:41:6B:93:D4:6B:AD:A8:A3:64:14:FE:68:A7:51:D7:A9:BB:50:5C:8A
    Fingerprint (SHA1):
        90:C9:29:8C:C2:EF:42:70:32:03:FA:7E:34:BF:BD:3C:81:5C:07:34
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3095: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3096: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115310 (0x1e67bdee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:53:11 2017
            Not After : Tue May 10 11:53:11 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:fc:09:15:c1:7f:d5:a6:5d:c8:ca:14:a3:aa:49:09:
                    01:ff:b0:34:89:36:f9:4a:04:0a:33:2d:13:50:79:3a:
                    5c:3b:d4:9a:7c:5e:7d:a2:da:4b:8b:4d:45:5b:41:54:
                    8c:d8:b4:bc:5f:15:e4:cf:91:25:5a:16:37:2f:65:ee:
                    ff:26:f3:14:21:f5:d7:d4:dc:df:8e:d3:36:f2:ab:dc:
                    41:45:87:f2:82:7c:27:59:e4:54:8e:65:e9:f9:be:c9:
                    e4:1d:b7:cf:81:19:fb:94:66:75:23:db:9d:86:b3:34:
                    7f:5e:f4:50:e0:95:20:59:7b:2a:d8:e7:f3:4d:00:9f:
                    a5:e0:45:e9:f9:4c:29:95:5f:1e:c8:5b:8a:0f:10:c3:
                    b7:00:ff:6a:12:60:5a:79:1a:36:0f:95:df:1a:51:fd:
                    32:ca:2d:0a:d8:f1:43:30:8b:0f:04:76:a0:b9:ac:06:
                    5f:37:90:2c:ca:7d:ed:0c:41:b0:15:ac:1d:b6:53:b0:
                    18:f4:d1:82:c1:cf:c5:b8:67:0a:68:92:c9:df:4f:6a:
                    36:48:f8:dd:4b:6f:eb:6d:ec:38:ec:97:ce:06:16:13:
                    d1:2a:14:ac:04:67:d4:6c:22:cd:6a:d2:b8:26:48:af:
                    67:1a:8a:6e:30:ba:2b:a2:32:cd:b4:b1:53:fe:ef:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:0b:82:d4:d1:2f:d6:ce:22:d4:75:17:c4:45:18:02:
        ec:a8:77:23:46:80:d6:ea:b6:c5:6f:d3:49:50:b7:39:
        d8:a2:97:72:ed:8c:09:45:4f:ba:6e:a4:db:8f:d9:d7:
        a2:f1:76:90:34:7f:34:8e:88:2b:92:bc:45:ae:d3:cd:
        bb:6d:ac:6c:d0:81:f5:94:cf:d8:57:87:48:d4:3d:42:
        19:13:b5:d6:86:3b:b7:3c:bc:35:06:9e:0a:b7:d5:82:
        01:75:27:a3:ca:90:3f:50:12:a6:06:67:01:4a:14:c2:
        2f:70:3a:c7:ed:a0:1e:ee:44:58:d1:2d:e8:f3:8f:f8:
        55:8f:f9:e3:01:c3:93:0c:ef:fc:c3:eb:9c:50:1f:19:
        ed:5a:26:2e:5c:4b:be:9b:ac:48:ef:c9:27:d8:70:78:
        ec:e9:76:03:1c:86:0d:81:c5:08:9f:81:4e:d2:78:e1:
        62:2e:f3:1d:de:dc:09:04:72:73:b6:1a:8d:74:89:7f:
        c1:ff:ab:db:f8:4c:d3:01:b2:da:ec:7f:06:db:51:0c:
        7b:0c:94:d2:72:a0:f8:9f:e4:8b:50:8c:a1:6d:bc:e3:
        a9:5b:f7:55:a9:a8:22:64:f3:b7:f4:f0:28:48:13:67:
        61:3f:e7:26:52:10:61:a9:52:5e:aa:88:1f:f5:e0:9f
    Fingerprint (SHA-256):
        5B:15:9A:A4:C0:60:D4:FD:F6:11:9F:63:DC:74:0A:F2:B8:63:48:00:56:46:30:E3:3F:16:8B:26:E7:B2:5D:0A
    Fingerprint (SHA1):
        0A:B4:AF:AA:8D:0B:E3:4B:51:A5:D0:9C:2F:ED:F5:4E:05:C1:61:83
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3097: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3098: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115312 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3099: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3100: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3101: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3102: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115313   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3103: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3104: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3105: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3106: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115314   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3107: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3108: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3109: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3110: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 510115315   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3111: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3112: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3113: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3114: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 510115316   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3115: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3116: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3117: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3118: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3119: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3120: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3121: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115312 (0x1e67bdf0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:12 2017
            Not After : Tue May 10 11:53:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:36:ba:79:9d:04:6b:d4:2f:3d:f2:cb:60:b7:b9:82:
                    b8:11:15:27:2f:52:63:ac:a8:7f:6c:cf:bb:d4:e4:57:
                    9d:bb:48:81:53:fb:6b:5c:ca:0c:c4:47:c0:99:97:25:
                    cc:19:f3:f5:ba:90:47:9c:65:a1:c7:1a:20:41:c5:a1:
                    72:0d:f8:a7:72:a3:15:0e:bf:44:88:f1:8f:d2:45:3b:
                    30:11:42:d3:7b:11:ce:21:43:51:66:2d:e7:86:ff:46:
                    c2:e1:07:c2:2c:c9:0b:4f:d4:aa:b9:6d:19:ff:54:39:
                    50:7f:f3:f7:16:b8:4b:72:42:05:ad:69:8f:93:3f:14:
                    3d:97:06:33:0b:75:eb:2f:87:6a:97:02:db:91:15:cc:
                    70:15:0d:a9:b7:0e:dd:8c:69:e8:7c:84:bf:e0:26:9c:
                    63:f8:3e:2f:20:e0:8e:e5:33:02:ca:ba:37:ba:b1:81:
                    df:b3:d7:a1:25:62:4c:a6:4f:f1:f3:0c:3b:e6:14:16:
                    3a:df:f7:ae:f3:60:45:88:70:a5:8e:4d:f8:8b:34:ab:
                    0c:f5:54:fc:7a:24:87:3c:02:8c:c9:60:ef:da:e9:a8:
                    0e:53:2b:99:d1:5b:f4:2a:8b:93:2a:ea:3a:38:e1:ae:
                    73:1a:ea:5d:af:c9:01:e3:ce:c2:ab:b9:6d:ed:79:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:f3:af:b6:c5:8a:f1:47:03:8a:69:e3:0f:b0:2f:9f:
        67:87:31:7d:24:96:5f:d1:ad:35:b6:2d:06:30:29:ff:
        29:5d:cf:0f:57:51:bf:b5:14:d2:84:50:98:e0:bd:b4:
        e5:50:20:b3:93:6c:f4:e8:ca:82:d0:5f:6b:76:43:83:
        ec:af:76:d3:0e:83:ef:f3:23:52:7b:a3:aa:23:b0:a1:
        9f:c2:a7:3b:f8:a5:cc:63:50:ab:90:12:9e:f5:f1:b7:
        44:8a:3a:85:2f:70:b5:18:38:8c:7f:60:1b:a8:1f:f1:
        da:ee:74:ef:66:83:9f:4e:b0:00:c1:82:25:34:2e:69:
        2a:fa:5a:21:ee:78:52:b4:91:8f:12:d6:9a:05:2a:34:
        ae:77:aa:97:30:c4:4f:30:46:70:cd:92:1e:65:df:dd:
        b2:36:ef:c0:ee:0c:4b:2d:48:41:0a:bb:72:f5:3f:40:
        41:08:c9:43:c8:4b:9a:39:8b:28:bd:7c:57:4f:aa:a7:
        1c:88:7f:f1:62:f6:53:d3:cb:fe:7a:cf:2e:56:25:f6:
        ed:44:5f:4d:71:1c:69:51:f2:0c:f0:af:cc:3e:89:25:
        92:8e:d1:ec:54:01:e4:b2:08:7b:ce:87:58:b5:4d:85:
        d3:6d:25:21:e8:9b:e1:13:a5:97:77:cf:68:b0:4e:80
    Fingerprint (SHA-256):
        00:EA:0B:8D:C8:5A:FB:B1:05:C0:4D:96:F9:82:59:32:D1:85:3F:1C:D2:7D:33:10:05:87:9B:84:77:49:C5:2A
    Fingerprint (SHA1):
        B7:F2:DD:42:31:05:62:EB:E8:AF:9D:6E:A8:ED:4D:78:E1:91:4D:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3122: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3123: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115313 (0x1e67bdf1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:12 2017
            Not After : Tue May 10 11:53:12 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:3e:82:09:64:c6:62:14:1f:92:97:10:ac:fb:a3:6a:
                    c5:9b:61:76:c6:a0:db:d0:54:fb:a4:cf:d4:65:e4:8e:
                    36:21:b2:a9:7e:73:ba:b8:16:b6:9c:29:b6:ee:5c:db:
                    6b:da:cd:03:f2:b4:85:c4:2d:09:54:13:a0:ab:21:a4:
                    73:b1:ff:fc:4d:c8:3f:94:a8:41:c2:e0:44:fe:97:42:
                    b4:a9:8b:e7:25:55:d4:a8:66:c4:81:df:7e:66:82:de:
                    41:c0:73:dc:c0:f4:74:1b:98:b2:2a:9e:66:18:f0:7e:
                    e1:dc:94:de:e5:17:12:c5:ac:c1:bc:95:ef:23:67:7c:
                    2c:a6:6c:24:32:4c:9f:03:53:e2:98:2d:d3:d5:59:ff:
                    e0:6d:e2:df:a6:95:da:92:f7:74:58:e1:a8:ea:bd:54:
                    00:1f:b9:44:45:b2:96:89:a1:aa:db:cd:03:4d:70:a9:
                    77:c2:a5:f3:7f:59:25:34:4f:82:a3:fc:ca:ab:32:39:
                    3c:87:2b:89:64:a1:66:af:b4:0c:9a:f3:b9:6c:86:5a:
                    41:d8:80:3d:f2:e2:7f:3a:0c:81:6b:74:ac:3e:4b:b2:
                    38:20:58:da:a1:53:2a:e9:23:e6:44:23:68:94:72:fe:
                    99:54:c3:33:1f:53:1e:df:23:01:4e:13:39:96:ad:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:6d:a1:b8:2f:8f:a5:b7:65:a2:9e:66:17:14:35:96:
        01:ec:99:26:16:a7:df:28:d5:9a:81:07:3f:63:63:83:
        62:91:f0:89:6c:c5:ff:7a:f1:c9:cd:02:0c:6a:c8:da:
        2b:20:9a:d7:f8:de:23:ac:e6:30:46:62:87:87:0f:68:
        05:03:b8:eb:c4:14:29:34:bf:b1:b8:ff:cb:18:b6:4e:
        5b:95:3e:6e:67:54:9a:1f:e0:bc:b7:ca:fd:0f:81:0d:
        cc:71:4d:c6:ad:0e:82:01:32:a8:b9:8a:49:e5:b1:2f:
        a0:2e:0d:de:81:6a:21:12:f8:f0:44:f7:ad:2c:b2:c7:
        4e:ac:1c:54:d3:25:77:a2:34:e3:8c:e6:cf:44:15:c1:
        b0:c2:bb:47:ce:6e:dc:d9:2d:db:da:2c:6f:1d:30:45:
        8b:65:ac:79:c2:c4:1b:ff:90:6c:a9:c6:32:2a:b1:5a:
        48:72:77:f3:04:9a:41:48:6a:fa:b7:2d:19:67:b1:c2:
        6d:5c:fd:a3:63:e0:5a:e6:8b:18:54:99:f7:4e:f5:76:
        10:f9:a9:7b:5f:47:74:2b:64:f4:77:78:46:63:4e:aa:
        7c:84:6f:0e:c7:0a:53:0e:00:23:66:a7:2f:2a:7b:27:
        a1:de:aa:31:34:57:c6:2d:00:38:e1:ec:a4:1f:a3:88
    Fingerprint (SHA-256):
        EC:0D:76:66:C5:2E:17:89:63:71:03:EA:74:CB:C5:E5:68:88:93:F6:D2:6D:A3:A4:7F:A3:FE:1D:75:0B:C8:A7
    Fingerprint (SHA1):
        24:16:0D:99:4E:05:2F:46:45:C7:E2:B1:EC:C7:5C:EE:84:16:01:21
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3124: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3125: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3126: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115314 (0x1e67bdf2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:53:12 2017
            Not After : Tue May 10 11:53:12 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:ab:01:6e:d0:62:5c:1e:14:2b:81:54:45:e4:8d:dc:
                    86:46:df:1e:01:c5:ee:dd:cb:26:8b:91:c2:e6:ef:8b:
                    eb:76:f3:4e:da:d0:b7:12:b4:e1:2a:0b:2d:83:4a:12:
                    1a:f7:7c:b4:0f:d5:bc:1f:68:0d:6c:a8:31:56:a8:0b:
                    87:86:92:78:08:90:32:2f:20:98:9a:d9:95:7d:4c:d4:
                    76:d5:f9:c6:63:3e:49:2a:3f:be:86:46:85:fe:c1:fc:
                    d5:53:20:76:79:62:8c:1d:e6:16:fc:b5:56:a0:25:f6:
                    71:06:06:c2:43:6e:f4:0a:b7:38:2b:47:dd:80:f1:11:
                    1d:77:4b:25:ff:cb:d3:18:5e:74:e9:64:82:d8:1f:aa:
                    95:f6:8c:50:d9:a7:3c:e8:52:08:d9:36:20:b8:55:89:
                    63:08:46:ae:63:af:b4:4e:3f:25:69:ec:32:8b:fa:a5:
                    d1:80:a0:fd:9c:00:74:91:f7:fd:41:88:04:9b:b6:e0:
                    a8:e9:10:55:71:76:ef:df:d3:73:de:47:52:a6:ea:e3:
                    55:05:fa:e7:0d:da:de:5c:6a:f5:1d:ba:3b:e7:9b:38:
                    7a:67:99:80:95:72:59:c5:a9:37:b1:2a:16:ea:47:8c:
                    76:ab:da:20:b3:e2:1d:28:71:7c:f9:ca:3b:51:39:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:79:01:05:2d:43:c9:37:d1:0f:7e:d0:d2:db:32:3d:
        b1:fd:a7:1d:20:62:a5:d3:3c:8b:92:c6:ae:dc:bc:2f:
        bf:ea:c4:82:72:35:b5:36:91:98:00:24:56:cf:05:ad:
        f8:89:d8:f9:2a:47:6b:05:fc:07:9b:0a:fa:1f:be:f0:
        36:fb:7e:ca:e0:4d:3d:07:32:16:26:6d:36:39:16:4c:
        c0:27:20:03:45:66:25:4c:c5:d7:a0:59:7c:7f:09:25:
        f3:bc:fc:e8:f5:c6:75:a6:46:27:bf:56:4b:4e:24:1a:
        00:82:56:bb:43:b0:c0:78:00:36:f8:11:93:c0:82:e2:
        a2:1b:9a:6d:d4:ab:ac:8f:3c:42:a2:08:8a:4a:e1:9f:
        5e:ae:b2:64:25:71:c6:02:eb:e5:10:15:a4:5c:f9:16:
        16:bf:8b:e5:66:45:d4:9c:52:ef:84:30:0d:9c:7e:08:
        c4:78:20:9d:23:c0:05:f4:67:1e:c5:e1:55:91:ce:50:
        f8:01:a2:9c:36:a4:52:f5:de:a1:b6:78:2a:e2:1a:7a:
        c1:51:2f:af:ed:63:c9:78:ff:07:1d:b7:c9:d1:f0:db:
        be:15:b6:40:3e:59:dc:c0:0d:ca:8a:ec:28:f7:ac:15:
        72:9d:1f:ef:95:3e:e4:a2:c7:d6:e9:f0:72:62:d1:16
    Fingerprint (SHA-256):
        F8:D4:CD:B8:E6:42:61:0E:D7:1C:5F:82:DE:D5:DE:41:4E:A9:C3:C1:ED:B0:D5:86:DE:EA:0F:F5:96:07:C0:75
    Fingerprint (SHA1):
        0E:83:A1:2D:A3:3B:85:CE:49:61:27:A6:FB:5F:15:63:C9:65:92:7F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3127: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3128: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115317 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3129: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3130: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3131: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3132: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115318   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3133: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3134: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3135: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3136: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115319   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA1Root-510115226.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3137: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3138: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3139: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3140: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510115320   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3141: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3142: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3143: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115317 (0x1e67bdf5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:13 2017
            Not After : Tue May 10 11:53:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:72:a1:59:09:17:64:1e:5e:f3:1e:45:ee:9a:37:39:
                    d1:d8:15:2d:4f:23:55:9d:d7:5c:9d:6e:97:c5:b3:65:
                    dc:58:cb:27:c2:88:90:e8:6f:51:b0:22:e9:7e:7e:c1:
                    c5:b7:8a:58:f7:00:0d:2d:ed:40:bf:d9:2b:3a:d3:d9:
                    3a:04:b3:dd:73:d7:06:19:bc:f3:fe:84:75:05:08:81:
                    4a:65:6d:4a:d4:86:81:f3:1b:38:d5:3b:39:c3:fd:2f:
                    09:37:49:e5:9c:7e:11:46:58:8f:da:76:f1:38:09:d8:
                    32:a2:e6:a5:29:e6:8a:99:93:72:df:6e:5b:da:d0:30:
                    2e:6d:79:96:6e:fd:6a:16:af:e0:8d:89:33:45:8a:e5:
                    4f:71:a2:7a:60:74:51:d2:3e:88:ac:fd:73:0d:f4:d4:
                    52:ba:27:81:40:a4:fe:d2:08:ee:a7:c0:ab:fc:a1:40:
                    24:4a:f2:f6:dd:c1:f2:37:4f:5a:f4:d7:f3:f2:ba:22:
                    98:cf:eb:95:48:e5:45:e2:7c:63:e7:1c:24:f5:1f:87:
                    5f:9c:ae:f6:90:21:0f:df:51:f8:ed:2e:d7:5e:2c:81:
                    bd:5c:7a:50:7f:34:fd:cb:09:44:b5:4d:a4:bd:4d:54:
                    1b:5a:f3:ad:8b:c3:a3:fe:77:86:be:49:e1:94:91:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:6f:dd:91:8a:39:89:29:95:d3:93:da:8b:e9:54:b1:
        0f:3c:6a:14:d4:72:91:f0:88:eb:e1:f3:6d:06:5d:40:
        72:59:77:0f:91:f6:30:3b:d4:f9:9f:39:24:75:a2:aa:
        3b:97:d2:79:13:78:2c:73:8c:e7:98:90:a9:6a:35:ca:
        55:1f:dc:5b:14:8a:7a:50:4c:8f:95:f0:71:69:63:e7:
        90:f4:5d:98:60:a9:f7:8a:e2:69:96:a3:72:ce:83:34:
        41:27:00:bb:46:9c:b7:a3:9b:68:54:82:ae:53:5f:cd:
        49:ac:38:64:15:d4:0f:fb:1e:21:2c:22:1d:73:39:fc:
        e6:60:3d:38:3c:29:16:b5:43:45:05:f3:6d:d4:c8:21:
        23:6c:24:6e:32:3e:e7:78:dd:71:34:4a:b3:75:b7:5e:
        84:64:73:5b:4e:a5:f7:36:b2:01:8f:ba:c0:39:e2:05:
        40:e2:f4:94:80:c3:93:86:9f:72:fd:a9:79:29:fb:85:
        fa:f6:62:9d:da:61:ae:c8:76:b3:66:e7:8b:83:1d:7a:
        cf:35:dc:cf:f5:c5:8f:86:d0:f0:3a:1a:89:7b:8e:06:
        72:bd:c0:6d:3e:12:63:b9:63:17:21:11:e6:e5:78:94:
        7a:26:1c:d0:3c:44:2a:cc:af:9a:4d:ea:91:3b:96:22
    Fingerprint (SHA-256):
        8C:CE:68:0B:64:7C:C3:E4:8D:84:B6:6D:EA:6A:D1:A4:BB:47:3F:1C:62:C2:DD:7A:DF:01:1D:1C:09:18:CE:23
    Fingerprint (SHA1):
        06:3E:51:1C:78:20:5D:1B:E0:0B:AD:58:21:51:3F:D6:F3:FC:3D:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3144: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3145: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115321 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3146: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3147: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3148: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115322 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3149: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3150: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3151: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3152: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510115323 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3153: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3154: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510115324 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3155: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3156: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3157: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3158: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3159: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510115325   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-Bridge-510115227.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3160: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3161: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3162: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3163: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115326   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3164: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3165: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3166: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3167: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115322 (0x1e67bdfa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:53:15 2017
            Not After : Tue May 10 11:53:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:72:5a:90:7a:aa:7c:3a:fe:93:16:fa:82:b8:70:8d:
                    73:6c:a4:57:b7:82:f9:d4:c5:91:d1:a3:5b:f3:30:08:
                    8f:da:f4:af:07:3c:aa:9d:44:d0:23:0a:a2:5e:5a:77:
                    e8:fc:b3:bb:2a:05:b2:69:c6:d9:1e:9f:89:0c:27:22:
                    61:de:b6:be:fc:df:35:28:ea:b3:62:eb:9a:21:48:c1:
                    95:97:fa:a0:19:33:40:ad:e0:04:45:2b:6e:d9:f2:4d:
                    78:2d:2f:67:4b:20:bd:d9:bf:78:a8:f1:3b:e0:cc:fb:
                    3e:af:70:db:bd:c5:11:70:87:16:4e:ea:05:d4:0a:98:
                    8f:c1:b0:b2:19:1e:b7:25:88:72:a9:99:1f:24:6d:fe:
                    cd:09:ef:d3:00:21:df:f3:70:85:f1:ce:64:08:9f:84:
                    46:27:85:56:1c:1f:82:a1:a5:a9:b3:d6:19:59:5b:4e:
                    29:90:56:49:d9:b8:20:88:36:bd:8a:99:f5:86:dc:74:
                    bc:e4:56:96:a6:ac:4b:6f:0b:4b:d5:38:a2:37:db:e1:
                    d9:62:b0:a7:d1:04:4d:9f:f6:39:5d:56:dd:3d:78:da:
                    25:a3:b5:79:c1:06:89:c5:d5:11:b4:01:87:9a:d0:21:
                    da:90:d0:93:68:06:4d:db:84:d7:dd:e2:fb:9c:73:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:91:1e:55:50:09:1a:17:5d:75:2d:4a:b0:72:a8:67:
        4a:85:37:12:0f:98:50:51:67:8c:44:3e:64:d6:d9:b2:
        3f:68:8f:50:23:2c:e3:60:36:6d:42:e7:25:cc:d1:66:
        07:bb:63:21:6d:fb:6b:8e:ed:6a:3d:67:34:50:a1:61:
        fb:90:f6:22:ac:5d:46:44:26:71:f5:6b:19:62:ff:81:
        9a:be:f6:8d:94:84:51:34:5b:dd:73:96:12:dc:c1:a1:
        31:91:44:93:76:24:57:c1:66:80:9d:af:6d:67:fd:c3:
        45:89:19:56:55:c0:19:25:bf:13:54:19:ef:15:ec:86:
        4d:11:a5:93:85:d2:67:cd:cc:22:09:5f:2e:69:79:dd:
        f0:43:49:98:62:a0:59:76:7a:de:c7:e6:a4:dd:4a:42:
        e4:57:c9:d7:bd:44:fc:31:9c:31:8b:7f:92:90:40:62:
        fb:5c:38:a7:d9:7e:11:52:0e:1e:25:a8:3c:fb:20:13:
        56:f8:f0:57:d5:22:8e:bc:2d:d9:36:9c:ac:36:5a:84:
        0a:63:1d:fa:69:12:f3:df:49:88:f4:be:03:61:e9:5c:
        aa:a3:25:3d:29:12:d4:70:35:28:5f:9d:6d:a1:80:5c:
        6e:f4:a0:a4:db:8e:bf:ea:94:c6:3c:c1:b6:31:4d:12
    Fingerprint (SHA-256):
        D2:93:DB:3A:23:96:3F:32:7E:3B:39:0F:D7:EC:AC:5C:4C:91:35:97:D8:68:DD:E3:CF:04:D1:23:21:EB:75:21
    Fingerprint (SHA1):
        A6:2E:62:3B:DC:9C:61:C7:FE:CD:B1:64:B6:DD:76:09:F5:BA:38:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3168: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115322 (0x1e67bdfa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:53:15 2017
            Not After : Tue May 10 11:53:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:72:5a:90:7a:aa:7c:3a:fe:93:16:fa:82:b8:70:8d:
                    73:6c:a4:57:b7:82:f9:d4:c5:91:d1:a3:5b:f3:30:08:
                    8f:da:f4:af:07:3c:aa:9d:44:d0:23:0a:a2:5e:5a:77:
                    e8:fc:b3:bb:2a:05:b2:69:c6:d9:1e:9f:89:0c:27:22:
                    61:de:b6:be:fc:df:35:28:ea:b3:62:eb:9a:21:48:c1:
                    95:97:fa:a0:19:33:40:ad:e0:04:45:2b:6e:d9:f2:4d:
                    78:2d:2f:67:4b:20:bd:d9:bf:78:a8:f1:3b:e0:cc:fb:
                    3e:af:70:db:bd:c5:11:70:87:16:4e:ea:05:d4:0a:98:
                    8f:c1:b0:b2:19:1e:b7:25:88:72:a9:99:1f:24:6d:fe:
                    cd:09:ef:d3:00:21:df:f3:70:85:f1:ce:64:08:9f:84:
                    46:27:85:56:1c:1f:82:a1:a5:a9:b3:d6:19:59:5b:4e:
                    29:90:56:49:d9:b8:20:88:36:bd:8a:99:f5:86:dc:74:
                    bc:e4:56:96:a6:ac:4b:6f:0b:4b:d5:38:a2:37:db:e1:
                    d9:62:b0:a7:d1:04:4d:9f:f6:39:5d:56:dd:3d:78:da:
                    25:a3:b5:79:c1:06:89:c5:d5:11:b4:01:87:9a:d0:21:
                    da:90:d0:93:68:06:4d:db:84:d7:dd:e2:fb:9c:73:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:91:1e:55:50:09:1a:17:5d:75:2d:4a:b0:72:a8:67:
        4a:85:37:12:0f:98:50:51:67:8c:44:3e:64:d6:d9:b2:
        3f:68:8f:50:23:2c:e3:60:36:6d:42:e7:25:cc:d1:66:
        07:bb:63:21:6d:fb:6b:8e:ed:6a:3d:67:34:50:a1:61:
        fb:90:f6:22:ac:5d:46:44:26:71:f5:6b:19:62:ff:81:
        9a:be:f6:8d:94:84:51:34:5b:dd:73:96:12:dc:c1:a1:
        31:91:44:93:76:24:57:c1:66:80:9d:af:6d:67:fd:c3:
        45:89:19:56:55:c0:19:25:bf:13:54:19:ef:15:ec:86:
        4d:11:a5:93:85:d2:67:cd:cc:22:09:5f:2e:69:79:dd:
        f0:43:49:98:62:a0:59:76:7a:de:c7:e6:a4:dd:4a:42:
        e4:57:c9:d7:bd:44:fc:31:9c:31:8b:7f:92:90:40:62:
        fb:5c:38:a7:d9:7e:11:52:0e:1e:25:a8:3c:fb:20:13:
        56:f8:f0:57:d5:22:8e:bc:2d:d9:36:9c:ac:36:5a:84:
        0a:63:1d:fa:69:12:f3:df:49:88:f4:be:03:61:e9:5c:
        aa:a3:25:3d:29:12:d4:70:35:28:5f:9d:6d:a1:80:5c:
        6e:f4:a0:a4:db:8e:bf:ea:94:c6:3c:c1:b6:31:4d:12
    Fingerprint (SHA-256):
        D2:93:DB:3A:23:96:3F:32:7E:3B:39:0F:D7:EC:AC:5C:4C:91:35:97:D8:68:DD:E3:CF:04:D1:23:21:EB:75:21
    Fingerprint (SHA1):
        A6:2E:62:3B:DC:9C:61:C7:FE:CD:B1:64:B6:DD:76:09:F5:BA:38:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3169: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3170: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115327 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3171: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3172: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3173: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115328 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3174: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3175: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3176: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3177: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510115329 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3178: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3179: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510115330 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3180: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3181: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3182: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3183: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3184: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510115331   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-Bridge-510115228.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3185: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3186: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3187: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3188: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115332   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3189: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3190: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3191: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3192: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510115333   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-BridgeNavy-510115229.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3193: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3194: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3195: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3196: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510115334   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3197: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3198: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3199: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3200: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115328 (0x1e67be00)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:53:17 2017
            Not After : Tue May 10 11:53:17 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:14:51:f5:24:25:fc:52:41:62:02:1a:b7:93:13:5d:
                    75:0a:37:68:c3:15:7f:89:8f:00:23:f9:8f:7f:3a:2a:
                    11:d5:08:9a:4c:bc:d4:1e:15:d5:76:1a:05:b4:b6:4a:
                    01:b0:d4:61:7f:97:9e:37:7d:ef:9b:f6:a8:4f:ab:35:
                    d6:58:1b:1f:92:91:32:be:62:be:42:9a:ac:71:7e:40:
                    e5:9f:05:af:86:3e:fa:c6:c8:a3:c0:0a:d4:15:2f:ff:
                    b0:d1:73:74:12:16:ba:bf:00:c9:64:b0:99:93:7a:7b:
                    10:9c:59:45:47:e8:29:26:80:1f:bd:d0:d4:3b:ca:3f:
                    a1:f2:6d:22:b4:dd:e9:a8:2d:1e:85:de:0c:5f:d2:8f:
                    ee:03:e5:b8:0f:00:0c:8f:af:99:9e:da:d5:8f:b5:91:
                    7f:b4:ee:ba:89:90:29:31:d2:30:d9:f8:64:f2:8f:cc:
                    7e:28:e2:4e:e5:a6:b1:e3:d4:22:83:cf:b2:c7:0d:9c:
                    ff:18:e3:34:bb:b4:02:a1:cf:2f:a0:20:9c:f3:37:f2:
                    0a:e6:da:ea:3d:d8:23:4e:62:dd:fe:fe:67:68:0d:95:
                    0f:fb:8f:8f:06:26:4d:5c:72:94:2e:71:d7:42:d6:86:
                    a1:d4:21:74:87:ba:e8:a2:63:54:07:60:1f:8b:98:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:fd:58:71:9e:20:11:df:05:67:aa:16:f3:e3:a3:7f:
        c1:63:10:50:68:80:68:ee:38:ef:18:aa:f8:3a:2d:05:
        47:5f:7b:a6:08:aa:0d:45:c5:fa:c5:d4:d4:93:b7:79:
        74:ac:9a:ae:44:91:80:c2:7f:26:2e:f3:41:2f:f0:14:
        7b:52:ff:85:e1:a6:c1:d8:f5:28:8d:58:62:05:47:21:
        09:99:c5:f1:2a:16:b1:c6:bb:7a:e2:4e:5a:7d:84:46:
        e5:b5:2b:ef:6b:4c:9d:a3:50:87:c2:6b:a3:9b:68:b0:
        97:aa:7e:52:02:92:ba:88:f3:1e:25:a5:e3:ce:39:cf:
        f1:42:91:f1:58:06:5b:46:57:51:d5:18:be:84:ab:d0:
        43:96:06:88:93:59:45:30:ec:e6:79:37:c2:67:d7:11:
        de:ef:78:5b:ea:4c:f5:e9:ab:d1:07:e7:cf:88:85:ed:
        1a:5a:f4:9e:9d:ae:05:bf:b4:f6:00:d9:ec:bf:32:71:
        81:2d:ef:eb:9f:88:da:be:1f:e6:06:15:81:f5:e2:19:
        1a:f4:83:ae:c5:f7:05:0a:9d:36:e1:f5:a6:4f:4c:80:
        2e:c5:6b:34:28:25:09:48:a0:22:23:cc:f1:07:f4:e6:
        8e:d2:75:3d:db:52:a7:36:15:06:d5:0e:27:05:fe:2e
    Fingerprint (SHA-256):
        A3:16:FC:77:59:DB:7F:97:7C:2B:22:3D:81:A6:C6:14:85:E4:A8:85:9D:5F:26:1B:4E:6C:D2:D9:2F:5B:44:14
    Fingerprint (SHA1):
        33:40:F5:B4:B0:36:80:51:2B:8C:5E:34:22:2C:CD:B7:27:1E:79:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3201: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115328 (0x1e67be00)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:53:17 2017
            Not After : Tue May 10 11:53:17 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:14:51:f5:24:25:fc:52:41:62:02:1a:b7:93:13:5d:
                    75:0a:37:68:c3:15:7f:89:8f:00:23:f9:8f:7f:3a:2a:
                    11:d5:08:9a:4c:bc:d4:1e:15:d5:76:1a:05:b4:b6:4a:
                    01:b0:d4:61:7f:97:9e:37:7d:ef:9b:f6:a8:4f:ab:35:
                    d6:58:1b:1f:92:91:32:be:62:be:42:9a:ac:71:7e:40:
                    e5:9f:05:af:86:3e:fa:c6:c8:a3:c0:0a:d4:15:2f:ff:
                    b0:d1:73:74:12:16:ba:bf:00:c9:64:b0:99:93:7a:7b:
                    10:9c:59:45:47:e8:29:26:80:1f:bd:d0:d4:3b:ca:3f:
                    a1:f2:6d:22:b4:dd:e9:a8:2d:1e:85:de:0c:5f:d2:8f:
                    ee:03:e5:b8:0f:00:0c:8f:af:99:9e:da:d5:8f:b5:91:
                    7f:b4:ee:ba:89:90:29:31:d2:30:d9:f8:64:f2:8f:cc:
                    7e:28:e2:4e:e5:a6:b1:e3:d4:22:83:cf:b2:c7:0d:9c:
                    ff:18:e3:34:bb:b4:02:a1:cf:2f:a0:20:9c:f3:37:f2:
                    0a:e6:da:ea:3d:d8:23:4e:62:dd:fe:fe:67:68:0d:95:
                    0f:fb:8f:8f:06:26:4d:5c:72:94:2e:71:d7:42:d6:86:
                    a1:d4:21:74:87:ba:e8:a2:63:54:07:60:1f:8b:98:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:fd:58:71:9e:20:11:df:05:67:aa:16:f3:e3:a3:7f:
        c1:63:10:50:68:80:68:ee:38:ef:18:aa:f8:3a:2d:05:
        47:5f:7b:a6:08:aa:0d:45:c5:fa:c5:d4:d4:93:b7:79:
        74:ac:9a:ae:44:91:80:c2:7f:26:2e:f3:41:2f:f0:14:
        7b:52:ff:85:e1:a6:c1:d8:f5:28:8d:58:62:05:47:21:
        09:99:c5:f1:2a:16:b1:c6:bb:7a:e2:4e:5a:7d:84:46:
        e5:b5:2b:ef:6b:4c:9d:a3:50:87:c2:6b:a3:9b:68:b0:
        97:aa:7e:52:02:92:ba:88:f3:1e:25:a5:e3:ce:39:cf:
        f1:42:91:f1:58:06:5b:46:57:51:d5:18:be:84:ab:d0:
        43:96:06:88:93:59:45:30:ec:e6:79:37:c2:67:d7:11:
        de:ef:78:5b:ea:4c:f5:e9:ab:d1:07:e7:cf:88:85:ed:
        1a:5a:f4:9e:9d:ae:05:bf:b4:f6:00:d9:ec:bf:32:71:
        81:2d:ef:eb:9f:88:da:be:1f:e6:06:15:81:f5:e2:19:
        1a:f4:83:ae:c5:f7:05:0a:9d:36:e1:f5:a6:4f:4c:80:
        2e:c5:6b:34:28:25:09:48:a0:22:23:cc:f1:07:f4:e6:
        8e:d2:75:3d:db:52:a7:36:15:06:d5:0e:27:05:fe:2e
    Fingerprint (SHA-256):
        A3:16:FC:77:59:DB:7F:97:7C:2B:22:3D:81:A6:C6:14:85:E4:A8:85:9D:5F:26:1B:4E:6C:D2:D9:2F:5B:44:14
    Fingerprint (SHA1):
        33:40:F5:B4:B0:36:80:51:2B:8C:5E:34:22:2C:CD:B7:27:1E:79:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3202: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #3203: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115327 (0x1e67bdff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:53:17 2017
            Not After : Tue May 10 11:53:17 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:44:99:a2:07:d6:5b:93:00:5f:fc:31:e4:e0:ee:37:
                    96:5c:72:82:c0:3a:a3:40:f3:4d:62:b5:c9:f5:b1:0c:
                    54:5a:f6:7b:84:8b:89:73:b3:0e:fe:76:3b:e5:a8:7e:
                    3c:9e:bd:75:3d:b6:8e:d0:e8:62:cc:a7:47:ed:7f:10:
                    d2:95:44:41:ad:92:a0:4e:a0:5a:ea:3e:26:14:66:43:
                    5c:0d:37:c0:a9:c9:17:25:19:92:88:4f:47:45:4f:c0:
                    92:02:c4:16:e6:c1:a7:b0:14:9d:37:55:b7:1d:2d:f5:
                    ce:8a:00:a2:27:ca:56:93:cd:0b:54:a5:f8:6c:4f:34:
                    8c:70:bb:36:ef:2b:f4:a3:73:50:89:d7:ec:2d:56:68:
                    e6:9f:35:0b:79:3c:ad:04:9d:be:cc:a1:48:a5:b1:92:
                    67:f8:c4:2f:78:59:bf:21:81:92:00:a4:02:a7:e3:2a:
                    4e:67:be:86:ff:e8:0c:57:09:83:32:9f:f4:fe:c6:1f:
                    86:36:be:d8:63:34:dc:7b:2c:f0:bb:72:43:e4:1b:69:
                    c6:1f:d1:29:02:58:d4:7f:ab:ce:13:30:65:88:a6:dc:
                    fe:a3:d2:da:a0:5e:a1:5f:da:b7:7c:41:8e:aa:e2:03:
                    fb:2d:32:23:f3:7d:2d:63:3b:6f:75:1a:7e:a1:a9:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:54:3c:6e:38:60:e0:8b:a7:bb:1a:76:79:b0:88:5c:
        d5:52:fe:f7:13:27:81:52:17:c7:e1:8e:ad:ac:a2:be:
        34:76:fa:6a:af:26:6c:ae:72:85:79:14:e9:74:78:2d:
        df:0b:4b:80:53:0a:8a:f9:75:19:8a:44:b9:6e:86:a8:
        92:d8:7f:6e:12:5f:79:a8:5b:82:81:aa:b6:51:a1:0a:
        cd:47:c6:19:2b:f0:a3:b1:b6:7a:fa:90:bd:d8:ad:e7:
        ce:ab:c0:c5:bf:c0:fc:ff:81:75:61:15:a3:bb:c8:20:
        76:4d:ac:eb:41:eb:0e:72:9c:92:ca:b0:ef:fa:e3:9a:
        0c:99:9a:df:8c:ca:d9:47:b1:ac:43:33:b5:6f:17:26:
        74:ee:41:29:f6:a3:65:99:6d:72:7d:a0:93:ce:da:a8:
        bf:06:12:a8:d5:7b:b4:f1:d8:d1:78:19:a5:e3:93:75:
        c8:3c:80:1c:20:21:fa:60:96:bd:9f:68:36:53:5a:22:
        bc:6d:e7:09:29:83:fd:dd:55:a5:67:99:87:8b:dd:34:
        7c:9b:a5:7f:21:22:28:85:59:61:bd:ec:ed:ea:00:39:
        03:6d:7b:99:bb:c5:81:e4:80:7b:b8:51:6d:8f:63:73:
        17:3b:23:cc:95:f5:f3:e0:78:5c:6a:94:52:12:d1:e1
    Fingerprint (SHA-256):
        8C:42:98:03:56:27:72:21:E7:53:D2:7D:67:40:3D:D4:4E:60:7C:AE:8A:26:B0:F0:E4:BE:0D:05:70:D4:69:23
    Fingerprint (SHA1):
        29:82:3C:EC:5A:96:6A:B8:C5:48:37:F3:5A:B9:9D:C4:11:C6:9A:A0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3204: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115328 (0x1e67be00)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:53:17 2017
            Not After : Tue May 10 11:53:17 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:14:51:f5:24:25:fc:52:41:62:02:1a:b7:93:13:5d:
                    75:0a:37:68:c3:15:7f:89:8f:00:23:f9:8f:7f:3a:2a:
                    11:d5:08:9a:4c:bc:d4:1e:15:d5:76:1a:05:b4:b6:4a:
                    01:b0:d4:61:7f:97:9e:37:7d:ef:9b:f6:a8:4f:ab:35:
                    d6:58:1b:1f:92:91:32:be:62:be:42:9a:ac:71:7e:40:
                    e5:9f:05:af:86:3e:fa:c6:c8:a3:c0:0a:d4:15:2f:ff:
                    b0:d1:73:74:12:16:ba:bf:00:c9:64:b0:99:93:7a:7b:
                    10:9c:59:45:47:e8:29:26:80:1f:bd:d0:d4:3b:ca:3f:
                    a1:f2:6d:22:b4:dd:e9:a8:2d:1e:85:de:0c:5f:d2:8f:
                    ee:03:e5:b8:0f:00:0c:8f:af:99:9e:da:d5:8f:b5:91:
                    7f:b4:ee:ba:89:90:29:31:d2:30:d9:f8:64:f2:8f:cc:
                    7e:28:e2:4e:e5:a6:b1:e3:d4:22:83:cf:b2:c7:0d:9c:
                    ff:18:e3:34:bb:b4:02:a1:cf:2f:a0:20:9c:f3:37:f2:
                    0a:e6:da:ea:3d:d8:23:4e:62:dd:fe:fe:67:68:0d:95:
                    0f:fb:8f:8f:06:26:4d:5c:72:94:2e:71:d7:42:d6:86:
                    a1:d4:21:74:87:ba:e8:a2:63:54:07:60:1f:8b:98:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:fd:58:71:9e:20:11:df:05:67:aa:16:f3:e3:a3:7f:
        c1:63:10:50:68:80:68:ee:38:ef:18:aa:f8:3a:2d:05:
        47:5f:7b:a6:08:aa:0d:45:c5:fa:c5:d4:d4:93:b7:79:
        74:ac:9a:ae:44:91:80:c2:7f:26:2e:f3:41:2f:f0:14:
        7b:52:ff:85:e1:a6:c1:d8:f5:28:8d:58:62:05:47:21:
        09:99:c5:f1:2a:16:b1:c6:bb:7a:e2:4e:5a:7d:84:46:
        e5:b5:2b:ef:6b:4c:9d:a3:50:87:c2:6b:a3:9b:68:b0:
        97:aa:7e:52:02:92:ba:88:f3:1e:25:a5:e3:ce:39:cf:
        f1:42:91:f1:58:06:5b:46:57:51:d5:18:be:84:ab:d0:
        43:96:06:88:93:59:45:30:ec:e6:79:37:c2:67:d7:11:
        de:ef:78:5b:ea:4c:f5:e9:ab:d1:07:e7:cf:88:85:ed:
        1a:5a:f4:9e:9d:ae:05:bf:b4:f6:00:d9:ec:bf:32:71:
        81:2d:ef:eb:9f:88:da:be:1f:e6:06:15:81:f5:e2:19:
        1a:f4:83:ae:c5:f7:05:0a:9d:36:e1:f5:a6:4f:4c:80:
        2e:c5:6b:34:28:25:09:48:a0:22:23:cc:f1:07:f4:e6:
        8e:d2:75:3d:db:52:a7:36:15:06:d5:0e:27:05:fe:2e
    Fingerprint (SHA-256):
        A3:16:FC:77:59:DB:7F:97:7C:2B:22:3D:81:A6:C6:14:85:E4:A8:85:9D:5F:26:1B:4E:6C:D2:D9:2F:5B:44:14
    Fingerprint (SHA1):
        33:40:F5:B4:B0:36:80:51:2B:8C:5E:34:22:2C:CD:B7:27:1E:79:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3205: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115328 (0x1e67be00)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:53:17 2017
            Not After : Tue May 10 11:53:17 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:14:51:f5:24:25:fc:52:41:62:02:1a:b7:93:13:5d:
                    75:0a:37:68:c3:15:7f:89:8f:00:23:f9:8f:7f:3a:2a:
                    11:d5:08:9a:4c:bc:d4:1e:15:d5:76:1a:05:b4:b6:4a:
                    01:b0:d4:61:7f:97:9e:37:7d:ef:9b:f6:a8:4f:ab:35:
                    d6:58:1b:1f:92:91:32:be:62:be:42:9a:ac:71:7e:40:
                    e5:9f:05:af:86:3e:fa:c6:c8:a3:c0:0a:d4:15:2f:ff:
                    b0:d1:73:74:12:16:ba:bf:00:c9:64:b0:99:93:7a:7b:
                    10:9c:59:45:47:e8:29:26:80:1f:bd:d0:d4:3b:ca:3f:
                    a1:f2:6d:22:b4:dd:e9:a8:2d:1e:85:de:0c:5f:d2:8f:
                    ee:03:e5:b8:0f:00:0c:8f:af:99:9e:da:d5:8f:b5:91:
                    7f:b4:ee:ba:89:90:29:31:d2:30:d9:f8:64:f2:8f:cc:
                    7e:28:e2:4e:e5:a6:b1:e3:d4:22:83:cf:b2:c7:0d:9c:
                    ff:18:e3:34:bb:b4:02:a1:cf:2f:a0:20:9c:f3:37:f2:
                    0a:e6:da:ea:3d:d8:23:4e:62:dd:fe:fe:67:68:0d:95:
                    0f:fb:8f:8f:06:26:4d:5c:72:94:2e:71:d7:42:d6:86:
                    a1:d4:21:74:87:ba:e8:a2:63:54:07:60:1f:8b:98:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:fd:58:71:9e:20:11:df:05:67:aa:16:f3:e3:a3:7f:
        c1:63:10:50:68:80:68:ee:38:ef:18:aa:f8:3a:2d:05:
        47:5f:7b:a6:08:aa:0d:45:c5:fa:c5:d4:d4:93:b7:79:
        74:ac:9a:ae:44:91:80:c2:7f:26:2e:f3:41:2f:f0:14:
        7b:52:ff:85:e1:a6:c1:d8:f5:28:8d:58:62:05:47:21:
        09:99:c5:f1:2a:16:b1:c6:bb:7a:e2:4e:5a:7d:84:46:
        e5:b5:2b:ef:6b:4c:9d:a3:50:87:c2:6b:a3:9b:68:b0:
        97:aa:7e:52:02:92:ba:88:f3:1e:25:a5:e3:ce:39:cf:
        f1:42:91:f1:58:06:5b:46:57:51:d5:18:be:84:ab:d0:
        43:96:06:88:93:59:45:30:ec:e6:79:37:c2:67:d7:11:
        de:ef:78:5b:ea:4c:f5:e9:ab:d1:07:e7:cf:88:85:ed:
        1a:5a:f4:9e:9d:ae:05:bf:b4:f6:00:d9:ec:bf:32:71:
        81:2d:ef:eb:9f:88:da:be:1f:e6:06:15:81:f5:e2:19:
        1a:f4:83:ae:c5:f7:05:0a:9d:36:e1:f5:a6:4f:4c:80:
        2e:c5:6b:34:28:25:09:48:a0:22:23:cc:f1:07:f4:e6:
        8e:d2:75:3d:db:52:a7:36:15:06:d5:0e:27:05:fe:2e
    Fingerprint (SHA-256):
        A3:16:FC:77:59:DB:7F:97:7C:2B:22:3D:81:A6:C6:14:85:E4:A8:85:9D:5F:26:1B:4E:6C:D2:D9:2F:5B:44:14
    Fingerprint (SHA1):
        33:40:F5:B4:B0:36:80:51:2B:8C:5E:34:22:2C:CD:B7:27:1E:79:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3206: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3207: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115335 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3208: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3209: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3210: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115336 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3211: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3212: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #3213: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3214: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 510115337   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3215: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3216: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #3217: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3218: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 510115338   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3219: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3220: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3221: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3222: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 510115339 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3223: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3224: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 510115340 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3225: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3226: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #3227: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3228: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3229: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510115341   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3230: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3231: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3232: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3233: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510115342   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3234: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3235: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3236: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3237: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115343   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3238: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3239: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3240: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3241: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510115344   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3242: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3243: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3244: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115335 (0x1e67be07)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:53:20 2017
            Not After : Tue May 10 11:53:20 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:0e:83:99:c4:e6:2d:ef:16:a3:69:1f:ff:a8:4e:25:
                    d0:f8:c2:95:46:bc:b9:cf:62:b8:b8:db:b5:85:40:7b:
                    23:17:03:f6:6d:de:5a:50:21:7a:57:0c:ba:ea:84:c9:
                    10:20:6d:8c:65:13:ba:16:25:ef:47:ed:c4:ae:95:a3:
                    97:7d:9a:08:b1:eb:7e:62:81:7b:01:e7:05:94:dc:fc:
                    ba:00:ae:2d:b6:b5:fa:10:b3:54:35:3b:64:02:34:21:
                    1f:49:aa:8d:61:0a:8b:29:71:e7:fc:82:e6:b8:9c:ed:
                    e4:ce:84:fa:47:56:00:cf:69:9b:53:dc:c0:12:2e:00:
                    66:48:16:93:4d:59:d7:96:a0:31:6a:18:27:48:a4:7e:
                    40:60:39:73:dc:92:e1:3f:d8:25:0f:eb:76:b3:5a:91:
                    c4:11:36:bc:5e:7c:db:b9:ff:26:02:98:59:87:7c:d4:
                    03:33:e2:59:52:de:27:5e:5a:48:66:76:c3:a9:33:4c:
                    3c:5e:fe:72:71:25:a2:9a:21:18:44:1b:5b:00:9e:a6:
                    28:d9:e3:41:84:8c:fc:92:6d:91:76:a5:50:ea:62:5b:
                    40:7d:33:07:e8:2a:d0:34:e9:2a:0c:c3:9c:f6:c4:43:
                    d0:55:12:a9:ee:f1:c4:48:12:84:cf:c1:0b:f5:4e:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:12:14:cb:f0:c6:fe:bb:14:5c:d5:53:3d:33:59:78:
        d2:00:8e:13:f7:4c:16:8a:93:52:bc:64:0c:37:ce:12:
        58:70:08:8c:83:c9:d4:ee:59:dd:31:ed:2c:92:37:a8:
        6d:26:e4:b3:70:58:f5:24:49:5b:a5:d0:c4:96:29:b7:
        a9:9d:fb:26:b2:b8:4d:e9:5d:50:79:5b:6d:a7:aa:fe:
        5e:8b:85:77:e2:f9:85:27:e3:b0:6e:bb:c0:7c:34:98:
        22:4f:09:a9:b0:e6:b9:f9:c2:89:cc:50:c0:d9:74:55:
        b9:bc:7d:a3:3c:8b:8b:bc:f4:a2:bc:69:7e:c2:2a:70:
        1d:ff:c6:62:eb:4e:7e:67:48:1f:50:a0:93:a3:5e:5d:
        6c:b1:22:cb:ff:e8:b8:0f:2e:98:71:74:2a:24:71:a2:
        c7:b4:bf:74:83:f5:31:b3:b7:6a:a7:ac:7c:d6:2c:30:
        f0:16:16:80:e9:60:e5:a7:21:0b:bd:b3:87:69:89:4a:
        1e:54:c8:4d:cc:8a:b7:7c:9c:14:16:56:18:1a:bf:fa:
        de:8e:65:2d:17:41:44:06:45:fb:b5:cd:da:1e:fe:27:
        c2:dd:53:aa:08:54:4d:ec:22:0c:77:29:47:ed:71:75:
        e3:60:df:85:63:3d:dd:c4:aa:84:84:47:14:5e:c9:8e
    Fingerprint (SHA-256):
        6C:F7:EB:04:CD:37:2A:A1:7B:F3:AD:3A:CB:31:86:5A:40:5E:F6:AB:DC:9C:35:E6:D9:07:0D:AC:90:1D:CA:FE
    Fingerprint (SHA1):
        CA:A5:6E:8A:F2:7E:00:6B:2E:7F:5F:78:B1:61:BB:D0:49:A2:46:07
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3245: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3246: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3247: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3248: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3249: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3250: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3251: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3252: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3253: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115336 (0x1e67be08)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:53:21 2017
            Not After : Tue May 10 11:53:21 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:33:ad:ec:30:a3:c8:a8:e1:8a:37:22:6f:84:e5:4b:
                    2b:92:e3:79:38:6d:a3:8e:a9:88:fc:63:6c:03:8a:24:
                    22:f8:44:c5:82:dd:55:6d:15:86:21:81:c1:b2:99:c2:
                    a8:08:74:99:96:46:d5:cf:08:7f:b0:bb:28:30:03:74:
                    f3:60:4a:47:c1:20:5a:80:3b:f6:6f:72:a8:60:cd:24:
                    82:2a:43:39:e4:f7:e7:72:d3:49:ca:83:e7:f6:bd:48:
                    05:c0:b3:dd:26:17:44:03:0d:68:79:4d:1c:80:46:bc:
                    5a:38:7c:d2:35:bd:f5:93:c6:dc:6a:6d:c2:80:54:35:
                    de:91:35:64:0d:f2:86:cf:b7:52:ef:2a:1e:8c:8f:47:
                    a6:cf:16:69:bf:88:a7:32:9e:f1:e9:ac:7a:c1:29:7f:
                    da:51:e7:10:a5:2b:cf:cb:d7:4c:43:5f:86:67:01:87:
                    29:c1:d5:29:a7:f5:d4:dd:bb:1a:bb:c6:f1:60:aa:ac:
                    97:fc:4c:a5:c2:e3:9f:a7:0b:36:90:c2:86:db:97:95:
                    b8:bb:27:9a:8a:ba:9a:bb:ef:8b:30:3b:c6:06:34:e2:
                    89:7a:98:77:5e:66:7a:9a:c4:f1:d1:be:a6:50:60:44:
                    30:a5:99:79:1e:1b:b6:67:f1:56:26:83:9c:5d:1f:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:08:36:08:30:1d:eb:86:74:88:15:b1:db:66:ef:f7:
        f6:8b:23:e5:3d:ad:53:39:f1:67:86:36:82:9c:2e:5a:
        2a:d4:6b:37:82:22:f0:ee:92:00:a9:7a:9b:dd:e6:d5:
        c0:93:8f:3c:a5:09:42:5d:be:e2:eb:6e:61:f1:d7:17:
        ed:f0:93:35:06:4e:04:89:a2:88:07:d3:b2:53:7a:92:
        7a:60:1d:db:a4:47:5e:cf:c3:ed:90:4e:e4:f7:d7:9c:
        ca:bd:a0:2c:45:71:38:cd:a3:b2:80:01:07:80:ba:59:
        f2:07:d1:be:ee:5b:3c:98:d6:a7:62:75:9b:aa:5a:2b:
        db:61:44:5a:d7:21:ad:1f:b7:2b:c5:b3:53:8d:f8:4c:
        78:17:1c:25:3c:12:42:c7:c5:91:bd:c7:47:3e:4a:d7:
        07:45:0e:8e:1c:ac:e2:f1:52:04:a2:90:4e:d1:cf:95:
        77:e4:e6:c7:c7:76:98:fe:de:8a:9d:d9:98:dd:f5:de:
        5f:c2:55:9c:bc:e1:01:f1:14:1e:47:db:35:c6:ee:bc:
        d0:a1:5d:d6:a6:f6:1d:bc:27:a9:fa:78:37:5b:17:b8:
        44:de:95:5f:bf:f6:78:8e:ac:53:c5:d4:f5:1c:5a:b3:
        22:eb:41:83:e4:b0:aa:33:66:8b:7a:e1:f8:03:6f:e6
    Fingerprint (SHA-256):
        EA:27:D7:41:3C:77:A8:29:FC:90:89:73:DC:56:A7:86:1F:73:88:05:34:A4:52:8A:4F:23:43:82:73:1A:8F:D6
    Fingerprint (SHA1):
        AB:B2:59:D8:B7:63:42:06:0F:08:1B:63:05:CC:A4:BB:9F:7E:95:D4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3254: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3255: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3256: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3257: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3258: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3259: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3260: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #3261: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #3262: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #3263: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #3264: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #3265: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #3266: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #3267: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3268: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3269: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #3270: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #3271: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3272: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115345 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3273: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3274: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3275: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3276: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115346   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3277: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3278: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3279: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3280: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115347   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3281: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3282: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3283: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3284: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 510115348   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3285: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3286: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3287: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3288: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510115349   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3289: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3290: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3291: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3292: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 510115350   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3293: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3294: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3295: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3296: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 510115351   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3297: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3298: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #3299: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3300: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 510115352   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3301: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3302: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3303: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3304: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 510115353   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3305: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3306: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3307: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115345 (0x1e67be11)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:24 2017
            Not After : Tue May 10 11:53:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ab:d0:cc:f6:81:84:8a:1b:2f:e4:53:b4:0e:2a:f6:42:
                    63:58:9f:f8:7e:84:35:03:f4:ee:0c:55:fa:04:c3:cb:
                    08:74:12:40:ee:33:92:49:3c:6d:f3:13:50:37:ee:45:
                    51:2d:e2:2f:35:4a:55:92:ac:58:60:dc:ae:90:f4:a3:
                    cb:a4:96:ee:2b:56:23:cf:17:73:27:00:93:d4:69:ce:
                    de:10:41:ae:4e:21:4d:49:98:c6:c3:25:18:cb:78:27:
                    de:78:62:8c:bc:3b:6a:59:e6:a4:01:3f:e3:c9:2b:25:
                    e7:4a:d0:a2:34:fe:e3:c5:6e:ac:e0:d0:1f:1b:74:be:
                    90:76:39:94:aa:4c:fb:3d:1f:ce:c3:27:85:af:40:6b:
                    b1:83:e9:14:b2:4b:1e:88:a9:94:0d:95:ff:9c:08:23:
                    26:87:68:65:12:a5:9b:c0:e3:ed:82:c7:0e:32:f0:42:
                    74:ac:98:db:38:91:63:08:39:91:7e:ae:27:35:5e:71:
                    17:11:99:4c:0f:06:6c:c8:e6:8d:be:3d:87:ec:8c:bf:
                    86:57:da:05:4e:ab:ad:ee:25:94:d3:0d:49:31:62:15:
                    e5:ce:ae:5c:a1:cd:2f:c8:c6:ff:43:52:34:85:cd:c4:
                    a9:16:c7:20:ab:5a:0a:77:de:07:b3:4b:49:7f:b5:e4
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:9e:8e:7f:5f:ea:2b:f6:70:03:19:1e:
        43:51:88:bb:0e:32:e9:55:6a:74:f7:9e:8a:72:70:26:
        18:02:1c:2d:56:48:4b:e7:ae:1d:d0:96:ce:9d:1d:94:
        e4:f0:4f:72:c2:19:49:ae:a8:7f:04:cc:85:cd:e8
    Fingerprint (SHA-256):
        41:FB:F6:E1:5B:FD:7C:78:5D:C7:55:C7:51:5E:4F:D3:93:6A:B6:9E:AF:B3:8A:6A:42:DA:52:BD:95:0A:ED:7F
    Fingerprint (SHA1):
        01:F8:04:19:DC:18:40:18:66:B3:E2:7A:EA:E4:B7:73:C4:59:15:B0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3308: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115345 (0x1e67be11)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:24 2017
            Not After : Tue May 10 11:53:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ab:d0:cc:f6:81:84:8a:1b:2f:e4:53:b4:0e:2a:f6:42:
                    63:58:9f:f8:7e:84:35:03:f4:ee:0c:55:fa:04:c3:cb:
                    08:74:12:40:ee:33:92:49:3c:6d:f3:13:50:37:ee:45:
                    51:2d:e2:2f:35:4a:55:92:ac:58:60:dc:ae:90:f4:a3:
                    cb:a4:96:ee:2b:56:23:cf:17:73:27:00:93:d4:69:ce:
                    de:10:41:ae:4e:21:4d:49:98:c6:c3:25:18:cb:78:27:
                    de:78:62:8c:bc:3b:6a:59:e6:a4:01:3f:e3:c9:2b:25:
                    e7:4a:d0:a2:34:fe:e3:c5:6e:ac:e0:d0:1f:1b:74:be:
                    90:76:39:94:aa:4c:fb:3d:1f:ce:c3:27:85:af:40:6b:
                    b1:83:e9:14:b2:4b:1e:88:a9:94:0d:95:ff:9c:08:23:
                    26:87:68:65:12:a5:9b:c0:e3:ed:82:c7:0e:32:f0:42:
                    74:ac:98:db:38:91:63:08:39:91:7e:ae:27:35:5e:71:
                    17:11:99:4c:0f:06:6c:c8:e6:8d:be:3d:87:ec:8c:bf:
                    86:57:da:05:4e:ab:ad:ee:25:94:d3:0d:49:31:62:15:
                    e5:ce:ae:5c:a1:cd:2f:c8:c6:ff:43:52:34:85:cd:c4:
                    a9:16:c7:20:ab:5a:0a:77:de:07:b3:4b:49:7f:b5:e4
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:9e:8e:7f:5f:ea:2b:f6:70:03:19:1e:
        43:51:88:bb:0e:32:e9:55:6a:74:f7:9e:8a:72:70:26:
        18:02:1c:2d:56:48:4b:e7:ae:1d:d0:96:ce:9d:1d:94:
        e4:f0:4f:72:c2:19:49:ae:a8:7f:04:cc:85:cd:e8
    Fingerprint (SHA-256):
        41:FB:F6:E1:5B:FD:7C:78:5D:C7:55:C7:51:5E:4F:D3:93:6A:B6:9E:AF:B3:8A:6A:42:DA:52:BD:95:0A:ED:7F
    Fingerprint (SHA1):
        01:F8:04:19:DC:18:40:18:66:B3:E2:7A:EA:E4:B7:73:C4:59:15:B0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3309: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115345 (0x1e67be11)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:24 2017
            Not After : Tue May 10 11:53:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ab:d0:cc:f6:81:84:8a:1b:2f:e4:53:b4:0e:2a:f6:42:
                    63:58:9f:f8:7e:84:35:03:f4:ee:0c:55:fa:04:c3:cb:
                    08:74:12:40:ee:33:92:49:3c:6d:f3:13:50:37:ee:45:
                    51:2d:e2:2f:35:4a:55:92:ac:58:60:dc:ae:90:f4:a3:
                    cb:a4:96:ee:2b:56:23:cf:17:73:27:00:93:d4:69:ce:
                    de:10:41:ae:4e:21:4d:49:98:c6:c3:25:18:cb:78:27:
                    de:78:62:8c:bc:3b:6a:59:e6:a4:01:3f:e3:c9:2b:25:
                    e7:4a:d0:a2:34:fe:e3:c5:6e:ac:e0:d0:1f:1b:74:be:
                    90:76:39:94:aa:4c:fb:3d:1f:ce:c3:27:85:af:40:6b:
                    b1:83:e9:14:b2:4b:1e:88:a9:94:0d:95:ff:9c:08:23:
                    26:87:68:65:12:a5:9b:c0:e3:ed:82:c7:0e:32:f0:42:
                    74:ac:98:db:38:91:63:08:39:91:7e:ae:27:35:5e:71:
                    17:11:99:4c:0f:06:6c:c8:e6:8d:be:3d:87:ec:8c:bf:
                    86:57:da:05:4e:ab:ad:ee:25:94:d3:0d:49:31:62:15:
                    e5:ce:ae:5c:a1:cd:2f:c8:c6:ff:43:52:34:85:cd:c4:
                    a9:16:c7:20:ab:5a:0a:77:de:07:b3:4b:49:7f:b5:e4
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:9e:8e:7f:5f:ea:2b:f6:70:03:19:1e:
        43:51:88:bb:0e:32:e9:55:6a:74:f7:9e:8a:72:70:26:
        18:02:1c:2d:56:48:4b:e7:ae:1d:d0:96:ce:9d:1d:94:
        e4:f0:4f:72:c2:19:49:ae:a8:7f:04:cc:85:cd:e8
    Fingerprint (SHA-256):
        41:FB:F6:E1:5B:FD:7C:78:5D:C7:55:C7:51:5E:4F:D3:93:6A:B6:9E:AF:B3:8A:6A:42:DA:52:BD:95:0A:ED:7F
    Fingerprint (SHA1):
        01:F8:04:19:DC:18:40:18:66:B3:E2:7A:EA:E4:B7:73:C4:59:15:B0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3310: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115345 (0x1e67be11)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:24 2017
            Not After : Tue May 10 11:53:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ab:d0:cc:f6:81:84:8a:1b:2f:e4:53:b4:0e:2a:f6:42:
                    63:58:9f:f8:7e:84:35:03:f4:ee:0c:55:fa:04:c3:cb:
                    08:74:12:40:ee:33:92:49:3c:6d:f3:13:50:37:ee:45:
                    51:2d:e2:2f:35:4a:55:92:ac:58:60:dc:ae:90:f4:a3:
                    cb:a4:96:ee:2b:56:23:cf:17:73:27:00:93:d4:69:ce:
                    de:10:41:ae:4e:21:4d:49:98:c6:c3:25:18:cb:78:27:
                    de:78:62:8c:bc:3b:6a:59:e6:a4:01:3f:e3:c9:2b:25:
                    e7:4a:d0:a2:34:fe:e3:c5:6e:ac:e0:d0:1f:1b:74:be:
                    90:76:39:94:aa:4c:fb:3d:1f:ce:c3:27:85:af:40:6b:
                    b1:83:e9:14:b2:4b:1e:88:a9:94:0d:95:ff:9c:08:23:
                    26:87:68:65:12:a5:9b:c0:e3:ed:82:c7:0e:32:f0:42:
                    74:ac:98:db:38:91:63:08:39:91:7e:ae:27:35:5e:71:
                    17:11:99:4c:0f:06:6c:c8:e6:8d:be:3d:87:ec:8c:bf:
                    86:57:da:05:4e:ab:ad:ee:25:94:d3:0d:49:31:62:15:
                    e5:ce:ae:5c:a1:cd:2f:c8:c6:ff:43:52:34:85:cd:c4:
                    a9:16:c7:20:ab:5a:0a:77:de:07:b3:4b:49:7f:b5:e4
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:9e:8e:7f:5f:ea:2b:f6:70:03:19:1e:
        43:51:88:bb:0e:32:e9:55:6a:74:f7:9e:8a:72:70:26:
        18:02:1c:2d:56:48:4b:e7:ae:1d:d0:96:ce:9d:1d:94:
        e4:f0:4f:72:c2:19:49:ae:a8:7f:04:cc:85:cd:e8
    Fingerprint (SHA-256):
        41:FB:F6:E1:5B:FD:7C:78:5D:C7:55:C7:51:5E:4F:D3:93:6A:B6:9E:AF:B3:8A:6A:42:DA:52:BD:95:0A:ED:7F
    Fingerprint (SHA1):
        01:F8:04:19:DC:18:40:18:66:B3:E2:7A:EA:E4:B7:73:C4:59:15:B0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #3311: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3312: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3313: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3314: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3315: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3316: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3317: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3318: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3319: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3320: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3321: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3322: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3323: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3324: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3325: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3326: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #3327: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3328: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3329: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3330: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3331: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3332: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3333: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3334: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3335: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3336: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3337: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3338: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510115329Z
nextupdate=20180510115329Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 11:53:29 2017
    Next Update: Thu May 10 11:53:29 2018
    CRL Extensions:
chains.sh: #3339: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115329Z
nextupdate=20180510115329Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:53:29 2017
    Next Update: Thu May 10 11:53:29 2018
    CRL Extensions:
chains.sh: #3340: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510115329Z
nextupdate=20180510115329Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 11:53:29 2017
    Next Update: Thu May 10 11:53:29 2018
    CRL Extensions:
chains.sh: #3341: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510115329Z
nextupdate=20180510115329Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 11:53:29 2017
    Next Update: Thu May 10 11:53:29 2018
    CRL Extensions:
chains.sh: #3342: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510115330Z
addcert 14 20170510115330Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 11:53:30 2017
    Next Update: Thu May 10 11:53:29 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed May 10 11:53:30 2017
    CRL Extensions:
chains.sh: #3343: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115331Z
addcert 15 20170510115331Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:53:31 2017
    Next Update: Thu May 10 11:53:29 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed May 10 11:53:31 2017
    CRL Extensions:
chains.sh: #3344: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3345: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3346: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3347: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #3348: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #3349: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #3350: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #3351: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #3352: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #3353: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:26 2017
            Not After : Tue May 10 11:53:26 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:6c:1d:3b:fb:d4:a3:de:68:67:c1:d5:7d:a2:e5:03:
                    8b:16:d7:f6:d7:ca:93:94:e6:2c:0a:4a:3f:e5:bc:c4:
                    7b:f9:4b:1f:11:5b:bd:f8:08:ec:0d:98:60:0c:53:6b:
                    d6:40:0c:2c:44:9c:e4:c0:20:83:b7:9b:14:64:d0:b7:
                    dd:4d:02:dc:eb:b0:2a:d6:13:c6:dc:8d:68:f6:c2:11:
                    51:b2:ed:18:68:9e:ad:7d:84:13:f9:9c:10:06:5e:c0:
                    42:8a:2a:1f:cd:d0:33:97:e3:d3:76:a9:4a:35:b6:c2:
                    89:70:c5:39:cc:3f:9d:95:1f:fa:1e:f7:8c:f3:7c:36:
                    79:c7:fa:c1:9f:6a:53:6b:64:2c:9e:42:1c:ba:1f:ee:
                    07:00:01:af:70:d4:4c:f6:80:4e:45:89:e0:62:7d:fd:
                    a4:38:93:b5:19:97:4e:1a:7e:40:f0:57:da:ff:be:d4:
                    35:de:89:ad:0d:df:08:9d:db:44:d0:a7:17:55:76:81:
                    2f:74:59:ce:28:6a:03:94:82:87:06:d6:b1:3b:87:24:
                    65:18:4c:46:2a:1f:30:64:1f:56:85:4d:25:e3:8e:bf:
                    37:0e:35:10:7a:db:ea:74:6b:75:b6:a6:26:aa:66:27:
                    a9:ce:2d:84:8e:d0:b7:98:24:c8:61:08:8a:0b:98:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:39:f1:93:bb:8f:a3:57:0a:8d:1a:98:71:d9:ca:c5:
        a0:72:ef:f9:e0:12:be:a6:f6:41:b9:8a:13:d1:16:8d:
        ef:20:a9:9a:13:bb:b7:73:cb:df:1c:67:0a:d8:3b:4a:
        25:3b:f7:03:df:83:2d:e1:12:74:72:53:8e:cd:6c:e7:
        a4:25:02:30:93:36:ef:43:36:f9:7c:66:d1:ca:40:19:
        50:69:5e:1e:f2:7b:fe:09:a3:a7:c0:9a:c0:8e:53:61:
        14:b1:35:12:b7:41:49:87:28:17:e0:20:6f:72:13:e5:
        27:b5:ee:2b:9d:1d:62:bb:57:ac:06:8f:5a:f9:2e:fb:
        ed:f6:35:8a:f7:f5:83:a2:7a:6e:92:b5:9d:d1:d8:c4:
        5c:fe:0f:50:01:85:35:36:bf:4e:dd:0c:58:1b:51:58:
        5f:0c:37:cd:48:a2:20:c1:bd:33:ff:ef:b1:60:e8:3b:
        e0:db:e8:db:19:b2:19:14:30:55:fc:c6:ca:0f:73:5a:
        2b:73:66:b2:ae:52:db:6f:ab:5e:c8:0e:91:f2:a8:aa:
        af:43:88:4b:f3:d1:db:be:c3:dd:c3:63:c3:48:f0:55:
        ed:0b:00:25:25:2d:f3:28:e3:db:5a:b8:8d:2b:71:35:
        b8:84:26:ae:da:16:7f:dd:95:3d:e2:b7:48:98:78:7d
    Fingerprint (SHA-256):
        A5:06:61:19:78:50:CA:8F:28:CD:2B:60:22:CA:73:F3:5A:CB:AC:7D:A9:C4:52:DF:FA:C4:F6:35:DD:33:50:74
    Fingerprint (SHA1):
        6E:0D:E7:DB:DB:28:A8:0A:99:0F:FD:4E:7D:DE:79:02:6A:01:FC:46
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3354: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3355: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:26 2017
            Not After : Tue May 10 11:53:26 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:6c:1d:3b:fb:d4:a3:de:68:67:c1:d5:7d:a2:e5:03:
                    8b:16:d7:f6:d7:ca:93:94:e6:2c:0a:4a:3f:e5:bc:c4:
                    7b:f9:4b:1f:11:5b:bd:f8:08:ec:0d:98:60:0c:53:6b:
                    d6:40:0c:2c:44:9c:e4:c0:20:83:b7:9b:14:64:d0:b7:
                    dd:4d:02:dc:eb:b0:2a:d6:13:c6:dc:8d:68:f6:c2:11:
                    51:b2:ed:18:68:9e:ad:7d:84:13:f9:9c:10:06:5e:c0:
                    42:8a:2a:1f:cd:d0:33:97:e3:d3:76:a9:4a:35:b6:c2:
                    89:70:c5:39:cc:3f:9d:95:1f:fa:1e:f7:8c:f3:7c:36:
                    79:c7:fa:c1:9f:6a:53:6b:64:2c:9e:42:1c:ba:1f:ee:
                    07:00:01:af:70:d4:4c:f6:80:4e:45:89:e0:62:7d:fd:
                    a4:38:93:b5:19:97:4e:1a:7e:40:f0:57:da:ff:be:d4:
                    35:de:89:ad:0d:df:08:9d:db:44:d0:a7:17:55:76:81:
                    2f:74:59:ce:28:6a:03:94:82:87:06:d6:b1:3b:87:24:
                    65:18:4c:46:2a:1f:30:64:1f:56:85:4d:25:e3:8e:bf:
                    37:0e:35:10:7a:db:ea:74:6b:75:b6:a6:26:aa:66:27:
                    a9:ce:2d:84:8e:d0:b7:98:24:c8:61:08:8a:0b:98:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:39:f1:93:bb:8f:a3:57:0a:8d:1a:98:71:d9:ca:c5:
        a0:72:ef:f9:e0:12:be:a6:f6:41:b9:8a:13:d1:16:8d:
        ef:20:a9:9a:13:bb:b7:73:cb:df:1c:67:0a:d8:3b:4a:
        25:3b:f7:03:df:83:2d:e1:12:74:72:53:8e:cd:6c:e7:
        a4:25:02:30:93:36:ef:43:36:f9:7c:66:d1:ca:40:19:
        50:69:5e:1e:f2:7b:fe:09:a3:a7:c0:9a:c0:8e:53:61:
        14:b1:35:12:b7:41:49:87:28:17:e0:20:6f:72:13:e5:
        27:b5:ee:2b:9d:1d:62:bb:57:ac:06:8f:5a:f9:2e:fb:
        ed:f6:35:8a:f7:f5:83:a2:7a:6e:92:b5:9d:d1:d8:c4:
        5c:fe:0f:50:01:85:35:36:bf:4e:dd:0c:58:1b:51:58:
        5f:0c:37:cd:48:a2:20:c1:bd:33:ff:ef:b1:60:e8:3b:
        e0:db:e8:db:19:b2:19:14:30:55:fc:c6:ca:0f:73:5a:
        2b:73:66:b2:ae:52:db:6f:ab:5e:c8:0e:91:f2:a8:aa:
        af:43:88:4b:f3:d1:db:be:c3:dd:c3:63:c3:48:f0:55:
        ed:0b:00:25:25:2d:f3:28:e3:db:5a:b8:8d:2b:71:35:
        b8:84:26:ae:da:16:7f:dd:95:3d:e2:b7:48:98:78:7d
    Fingerprint (SHA-256):
        A5:06:61:19:78:50:CA:8F:28:CD:2B:60:22:CA:73:F3:5A:CB:AC:7D:A9:C4:52:DF:FA:C4:F6:35:DD:33:50:74
    Fingerprint (SHA1):
        6E:0D:E7:DB:DB:28:A8:0A:99:0F:FD:4E:7D:DE:79:02:6A:01:FC:46
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3356: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3357: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3358: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115354 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3359: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3360: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3361: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3362: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 510115355   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3363: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3364: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3365: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115245.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3366: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115230.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3367: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3368: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3369: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115245.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3370: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 510115356   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3371: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3372: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3373: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115245.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3374: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115231.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3375: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3376: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3377: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3378: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 510115357   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3379: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3380: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3381: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115245.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3382: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115232.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3383: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3384: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3385: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115245.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3386: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115233.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3387: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3388: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510115334Z
nextupdate=20180510115334Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 11:53:34 2017
    Next Update: Thu May 10 11:53:34 2018
    CRL Extensions:
chains.sh: #3389: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115334Z
nextupdate=20180510115335Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:53:34 2017
    Next Update: Thu May 10 11:53:35 2018
    CRL Extensions:
chains.sh: #3390: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510115335Z
nextupdate=20180510115335Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 11:53:35 2017
    Next Update: Thu May 10 11:53:35 2018
    CRL Extensions:
chains.sh: #3391: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510115335Z
nextupdate=20180510115335Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 11:53:35 2017
    Next Update: Thu May 10 11:53:35 2018
    CRL Extensions:
chains.sh: #3392: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115336Z
addcert 20 20170510115336Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:53:36 2017
    Next Update: Thu May 10 11:53:35 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 11:53:36 2017
    CRL Extensions:
chains.sh: #3393: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115337Z
addcert 40 20170510115337Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:53:37 2017
    Next Update: Thu May 10 11:53:35 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 11:53:36 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 11:53:37 2017
    CRL Extensions:
chains.sh: #3394: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3395: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3396: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3397: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115354 (0x1e67be1a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:31 2017
            Not After : Tue May 10 11:53:31 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:aa:99:99:a2:d2:d6:f3:df:f7:7d:40:95:cf:09:7c:
                    d0:48:e6:1e:ac:e4:9e:73:4d:f9:6e:46:c9:7c:bb:22:
                    42:6b:f9:58:fd:36:69:4c:76:62:55:ec:c9:51:0a:77:
                    3b:d0:84:ab:a5:40:55:7f:31:1f:35:47:d5:ea:d4:19:
                    d5:ad:8d:5d:14:00:ba:eb:26:16:bd:4c:a5:ac:86:0e:
                    00:2a:82:b4:a4:53:bc:9e:6c:7b:6a:b3:d1:11:5a:af:
                    c6:8d:bf:4d:93:9b:b0:79:e1:e8:8a:ad:e1:06:ac:87:
                    29:37:0b:6b:1e:60:19:c1:54:eb:a0:a8:9a:8b:95:ee:
                    8d:db:e1:cc:ea:d4:53:b7:cf:ab:de:de:18:b7:05:98:
                    91:c4:88:4e:ee:c6:56:14:7a:ef:79:17:23:c1:e1:4e:
                    6d:3a:63:e7:59:91:17:80:b6:85:0e:9a:3a:25:88:af:
                    8e:f9:92:4b:68:00:b7:69:09:99:b2:59:1f:bf:81:48:
                    58:b5:77:ea:c9:dd:ef:01:24:f6:6a:66:98:ed:8b:79:
                    9a:3c:ab:2e:c2:de:59:7a:43:1f:85:a0:a8:98:23:0b:
                    bb:1e:ee:a2:27:67:f5:e2:2f:79:44:66:53:03:ce:5e:
                    aa:a6:c8:a0:c5:93:99:37:ba:f5:36:0e:b4:50:85:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:9f:83:1a:bc:9d:09:fb:ab:e9:8d:f3:de:4d:62:2c:
        d3:86:5b:39:ba:06:cc:78:01:25:12:7a:89:12:74:2f:
        e5:51:27:bc:c7:e8:25:7d:99:e4:4c:8f:f8:6e:fa:e9:
        41:28:22:e6:63:bd:47:72:74:a2:57:0c:6e:b1:e3:ea:
        18:a3:5c:70:4a:99:eb:7a:e1:70:d4:6c:80:c6:28:16:
        5c:bf:f3:a5:f0:3e:98:12:1a:ef:26:e7:c8:fa:39:07:
        93:66:06:84:31:86:88:ab:29:d6:47:36:bf:04:4b:40:
        e6:29:00:fa:ce:08:9e:a0:67:24:ab:fc:b1:8b:73:50:
        a0:be:0c:bf:19:7e:0b:e1:df:eb:a4:b6:a1:cf:57:4d:
        44:12:a4:eb:e9:38:d9:ab:7d:9c:36:3c:7b:94:f5:ef:
        bf:c1:45:c5:aa:ef:1a:d5:16:a8:ca:9e:84:71:a8:cc:
        3b:d3:12:6f:8c:74:c0:b8:0e:90:e1:fa:52:b3:fa:65:
        4b:6a:05:e1:6f:05:a5:b0:08:24:ec:bd:51:4d:cc:8b:
        ca:bc:25:56:10:b6:ba:53:5a:1f:d5:b9:b1:56:c7:ab:
        51:6c:75:67:5f:d7:68:51:dd:b8:c9:5d:de:6e:8b:f6:
        4e:39:e7:1d:fb:6d:de:f0:2b:0a:90:98:fe:78:4d:24
    Fingerprint (SHA-256):
        A2:29:AF:6B:7E:62:65:05:8F:F8:13:E8:3D:98:B8:BF:3D:72:C5:3A:E9:2D:04:E6:76:94:1F:5D:6A:2A:CF:02
    Fingerprint (SHA1):
        8C:1A:63:CC:62:3C:A4:FF:FB:F3:2C:E7:5B:F6:BA:51:83:75:F2:81
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3398: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3399: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115354 (0x1e67be1a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:31 2017
            Not After : Tue May 10 11:53:31 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:aa:99:99:a2:d2:d6:f3:df:f7:7d:40:95:cf:09:7c:
                    d0:48:e6:1e:ac:e4:9e:73:4d:f9:6e:46:c9:7c:bb:22:
                    42:6b:f9:58:fd:36:69:4c:76:62:55:ec:c9:51:0a:77:
                    3b:d0:84:ab:a5:40:55:7f:31:1f:35:47:d5:ea:d4:19:
                    d5:ad:8d:5d:14:00:ba:eb:26:16:bd:4c:a5:ac:86:0e:
                    00:2a:82:b4:a4:53:bc:9e:6c:7b:6a:b3:d1:11:5a:af:
                    c6:8d:bf:4d:93:9b:b0:79:e1:e8:8a:ad:e1:06:ac:87:
                    29:37:0b:6b:1e:60:19:c1:54:eb:a0:a8:9a:8b:95:ee:
                    8d:db:e1:cc:ea:d4:53:b7:cf:ab:de:de:18:b7:05:98:
                    91:c4:88:4e:ee:c6:56:14:7a:ef:79:17:23:c1:e1:4e:
                    6d:3a:63:e7:59:91:17:80:b6:85:0e:9a:3a:25:88:af:
                    8e:f9:92:4b:68:00:b7:69:09:99:b2:59:1f:bf:81:48:
                    58:b5:77:ea:c9:dd:ef:01:24:f6:6a:66:98:ed:8b:79:
                    9a:3c:ab:2e:c2:de:59:7a:43:1f:85:a0:a8:98:23:0b:
                    bb:1e:ee:a2:27:67:f5:e2:2f:79:44:66:53:03:ce:5e:
                    aa:a6:c8:a0:c5:93:99:37:ba:f5:36:0e:b4:50:85:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:9f:83:1a:bc:9d:09:fb:ab:e9:8d:f3:de:4d:62:2c:
        d3:86:5b:39:ba:06:cc:78:01:25:12:7a:89:12:74:2f:
        e5:51:27:bc:c7:e8:25:7d:99:e4:4c:8f:f8:6e:fa:e9:
        41:28:22:e6:63:bd:47:72:74:a2:57:0c:6e:b1:e3:ea:
        18:a3:5c:70:4a:99:eb:7a:e1:70:d4:6c:80:c6:28:16:
        5c:bf:f3:a5:f0:3e:98:12:1a:ef:26:e7:c8:fa:39:07:
        93:66:06:84:31:86:88:ab:29:d6:47:36:bf:04:4b:40:
        e6:29:00:fa:ce:08:9e:a0:67:24:ab:fc:b1:8b:73:50:
        a0:be:0c:bf:19:7e:0b:e1:df:eb:a4:b6:a1:cf:57:4d:
        44:12:a4:eb:e9:38:d9:ab:7d:9c:36:3c:7b:94:f5:ef:
        bf:c1:45:c5:aa:ef:1a:d5:16:a8:ca:9e:84:71:a8:cc:
        3b:d3:12:6f:8c:74:c0:b8:0e:90:e1:fa:52:b3:fa:65:
        4b:6a:05:e1:6f:05:a5:b0:08:24:ec:bd:51:4d:cc:8b:
        ca:bc:25:56:10:b6:ba:53:5a:1f:d5:b9:b1:56:c7:ab:
        51:6c:75:67:5f:d7:68:51:dd:b8:c9:5d:de:6e:8b:f6:
        4e:39:e7:1d:fb:6d:de:f0:2b:0a:90:98:fe:78:4d:24
    Fingerprint (SHA-256):
        A2:29:AF:6B:7E:62:65:05:8F:F8:13:E8:3D:98:B8:BF:3D:72:C5:3A:E9:2D:04:E6:76:94:1F:5D:6A:2A:CF:02
    Fingerprint (SHA1):
        8C:1A:63:CC:62:3C:A4:FF:FB:F3:2C:E7:5B:F6:BA:51:83:75:F2:81
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3400: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3401: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3402: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115358 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3403: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3404: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3405: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3406: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510115359   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3407: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3408: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3409: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3410: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115360   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3411: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3412: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3413: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3414: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 510115361   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3415: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3416: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #3417: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115362 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3418: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #3419: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #3420: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3421: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 510115363   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3422: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3423: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3424: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3425: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 510115364   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3426: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3427: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #3428: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #3429: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #3430: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115358 (0x1e67be1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:37 2017
            Not After : Tue May 10 11:53:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:a6:92:8e:d4:2d:e9:ae:8f:aa:32:9e:f8:6d:9e:5e:
                    01:74:6d:fc:31:cd:5f:23:e5:44:9c:e1:51:31:59:ad:
                    57:f4:8d:de:4a:8f:68:5c:5f:0c:a4:90:78:b9:1b:a6:
                    03:7a:bc:0c:14:1a:12:45:e3:d0:84:19:0f:a9:02:0b:
                    b0:7b:5f:0e:6c:44:6f:65:59:18:7c:5a:07:ad:07:fc:
                    d7:ff:b1:d6:43:96:8c:bc:71:c7:b1:c5:4b:83:11:c6:
                    00:f5:29:26:1b:20:2a:03:e2:f2:94:87:29:f5:e9:c2:
                    3a:bc:38:ea:3e:bb:4d:ea:f6:ba:c9:09:1d:99:26:c0:
                    b9:31:50:02:f3:6e:24:49:1d:ba:67:b9:1e:3d:96:95:
                    be:39:a6:15:d3:6d:a9:3b:d0:cb:78:09:4c:95:dd:4b:
                    96:68:2d:3e:98:02:64:9d:98:3d:d8:f7:7e:f2:12:1c:
                    e2:d6:c7:e4:32:ae:b2:1a:24:73:ad:a9:ae:fb:ce:c5:
                    06:b7:c6:08:06:75:c8:5f:a6:1a:7c:ee:d8:b9:28:21:
                    f2:ab:b4:b6:88:8f:4f:40:e2:79:7a:ae:bf:a2:6d:fc:
                    9c:df:bf:13:c2:5f:4e:c2:29:f2:ae:91:0b:6f:c2:42:
                    f6:50:13:ca:12:37:e1:8d:16:ac:24:f7:7a:63:0f:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:5c:28:0c:3a:ba:2a:eb:1c:43:6e:6b:50:be:03:f4:
        9e:3d:b6:c3:48:17:62:99:b9:a4:5e:d4:de:d0:df:b2:
        9a:4e:ea:3d:a2:60:48:0d:b4:4c:d3:e3:22:e9:c9:d2:
        0e:d6:e4:a9:ae:a5:ce:a1:e8:3a:da:5c:aa:a7:52:bf:
        6a:10:e9:af:c2:61:85:95:f7:ce:c9:d3:95:d7:24:91:
        1a:58:3c:38:95:10:83:25:7a:5d:42:1a:0e:bd:ed:97:
        2c:5f:19:59:37:25:6a:19:90:ac:e1:3f:b1:3a:f6:11:
        e3:19:06:8a:e3:dc:d9:1f:37:0d:7d:99:18:b6:83:44:
        ad:53:8f:06:e5:14:ff:ed:92:a6:8e:da:43:e9:9a:32:
        12:da:9d:ed:20:cf:a1:84:b4:26:cf:91:01:60:93:53:
        af:08:56:fd:68:87:3c:1e:22:7a:bf:cb:94:3f:2d:6e:
        7d:5c:87:37:55:f3:dd:d8:01:d7:26:58:60:22:6b:4a:
        7c:d0:24:45:3c:d8:1a:0f:27:37:17:22:97:32:1d:ae:
        56:8f:df:65:8a:ec:f0:33:84:c9:08:57:a6:9e:e4:44:
        cd:80:9d:36:69:22:da:15:51:24:5e:fd:5b:2f:00:c2:
        79:54:4a:89:e0:d5:ff:db:aa:32:e9:7e:11:b6:9d:9a
    Fingerprint (SHA-256):
        BC:99:2C:ED:E5:BE:D8:90:1F:30:AA:C7:F8:DD:D8:CA:B1:F9:8E:4E:9B:4C:E3:C0:47:68:B7:D7:AC:11:28:07
    Fingerprint (SHA1):
        14:8B:30:E1:67:70:69:B5:E8:1D:30:23:D6:74:49:F7:3B:7C:AF:CE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3431: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115360 (0x1e67be20)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:53:38 2017
            Not After : Tue May 10 11:53:38 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:98:24:a4:96:23:e3:a7:50:0a:18:e6:f3:cc:5c:12:
                    fb:fe:80:83:77:e8:09:8d:d6:23:ee:71:4a:ef:26:5e:
                    cb:03:d7:40:43:7f:95:8c:c1:b2:d7:53:6d:ed:3a:10:
                    59:f4:fb:cc:98:34:57:2c:7a:2c:0b:3b:a1:5d:54:91:
                    2e:ce:0b:cd:a6:ad:b1:49:36:c6:9e:11:b0:40:7e:b0:
                    e9:2a:77:8a:51:91:23:6c:79:d8:c6:de:ea:00:c2:9b:
                    20:6e:d5:20:5e:8c:c3:4d:c9:19:75:04:1f:0d:d4:81:
                    78:85:f7:9f:e9:32:4d:5c:1a:cc:f4:5c:68:08:80:1f:
                    e2:95:ed:34:2d:7b:8a:e4:ba:dc:a9:a2:aa:90:5b:86:
                    07:24:03:6c:59:a5:97:e5:85:c3:3b:59:80:e0:07:e8:
                    0e:9a:85:1f:49:94:b7:ec:58:41:25:b3:84:4b:4d:a0:
                    7f:4c:42:9d:ad:5e:18:bc:b2:ad:1e:e6:c7:54:9c:1d:
                    2f:57:d1:20:c1:d4:0d:66:ff:46:24:a2:22:81:70:6e:
                    9f:26:4c:0c:62:f9:38:6c:5c:a0:71:d6:9a:50:ae:f3:
                    a1:4f:58:64:e4:f2:e1:d1:ce:57:dc:71:95:92:70:3b:
                    e6:9a:71:e3:22:3d:17:5c:bb:97:3e:7f:c8:b6:b3:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:dd:87:f6:81:a0:62:82:45:91:d9:6d:da:14:71:4c:
        8e:7b:b4:87:e4:f2:cd:58:64:70:7c:3e:9e:5a:12:c1:
        ae:02:c4:8f:a5:00:51:cb:d1:a3:58:45:59:06:00:82:
        c1:52:84:c2:29:c0:64:e7:79:8e:15:67:e4:b3:00:ed:
        33:e7:e4:60:85:5d:f6:5f:97:3a:dc:8c:c1:b7:62:fe:
        cc:ca:25:ee:8b:05:dc:28:8b:f7:19:71:db:32:0a:84:
        35:82:48:6b:3d:d7:0c:32:1e:ff:fd:e3:de:7b:66:d4:
        b3:bb:c3:77:5d:fd:d0:73:c7:c4:dc:d7:20:32:cc:14:
        c3:7d:d2:23:39:f0:a1:f0:8c:54:b4:83:ba:81:f6:b1:
        85:b1:a5:54:c7:a8:97:2a:87:e1:b1:54:08:db:e6:e6:
        a9:2b:cc:1b:25:aa:8c:56:eb:35:ed:0e:de:b7:ac:85:
        f6:fb:52:ef:7a:63:33:e2:44:28:83:d9:a9:b5:6b:3c:
        b1:9d:ca:44:26:6f:f8:12:ad:05:d6:b9:39:99:b7:ed:
        ff:92:ff:f2:ed:0b:b2:c8:23:e5:e2:39:91:a5:1b:7e:
        fe:ca:23:f8:b5:93:61:9d:00:03:b6:ff:9b:2d:b4:22:
        9f:dc:df:ed:f8:36:df:e3:98:c1:0a:91:19:18:9a:02
    Fingerprint (SHA-256):
        B9:8D:41:6B:0B:84:39:60:2D:F1:EA:BC:DE:D5:CF:41:44:2B:3A:D0:65:C5:AF:69:02:AE:64:5E:FA:64:F5:AA
    Fingerprint (SHA1):
        A9:72:DA:16:D2:0B:10:A9:DE:6B:C8:ED:97:7E:BA:DD:33:1F:AD:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3432: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115358 (0x1e67be1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:37 2017
            Not After : Tue May 10 11:53:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:a6:92:8e:d4:2d:e9:ae:8f:aa:32:9e:f8:6d:9e:5e:
                    01:74:6d:fc:31:cd:5f:23:e5:44:9c:e1:51:31:59:ad:
                    57:f4:8d:de:4a:8f:68:5c:5f:0c:a4:90:78:b9:1b:a6:
                    03:7a:bc:0c:14:1a:12:45:e3:d0:84:19:0f:a9:02:0b:
                    b0:7b:5f:0e:6c:44:6f:65:59:18:7c:5a:07:ad:07:fc:
                    d7:ff:b1:d6:43:96:8c:bc:71:c7:b1:c5:4b:83:11:c6:
                    00:f5:29:26:1b:20:2a:03:e2:f2:94:87:29:f5:e9:c2:
                    3a:bc:38:ea:3e:bb:4d:ea:f6:ba:c9:09:1d:99:26:c0:
                    b9:31:50:02:f3:6e:24:49:1d:ba:67:b9:1e:3d:96:95:
                    be:39:a6:15:d3:6d:a9:3b:d0:cb:78:09:4c:95:dd:4b:
                    96:68:2d:3e:98:02:64:9d:98:3d:d8:f7:7e:f2:12:1c:
                    e2:d6:c7:e4:32:ae:b2:1a:24:73:ad:a9:ae:fb:ce:c5:
                    06:b7:c6:08:06:75:c8:5f:a6:1a:7c:ee:d8:b9:28:21:
                    f2:ab:b4:b6:88:8f:4f:40:e2:79:7a:ae:bf:a2:6d:fc:
                    9c:df:bf:13:c2:5f:4e:c2:29:f2:ae:91:0b:6f:c2:42:
                    f6:50:13:ca:12:37:e1:8d:16:ac:24:f7:7a:63:0f:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:5c:28:0c:3a:ba:2a:eb:1c:43:6e:6b:50:be:03:f4:
        9e:3d:b6:c3:48:17:62:99:b9:a4:5e:d4:de:d0:df:b2:
        9a:4e:ea:3d:a2:60:48:0d:b4:4c:d3:e3:22:e9:c9:d2:
        0e:d6:e4:a9:ae:a5:ce:a1:e8:3a:da:5c:aa:a7:52:bf:
        6a:10:e9:af:c2:61:85:95:f7:ce:c9:d3:95:d7:24:91:
        1a:58:3c:38:95:10:83:25:7a:5d:42:1a:0e:bd:ed:97:
        2c:5f:19:59:37:25:6a:19:90:ac:e1:3f:b1:3a:f6:11:
        e3:19:06:8a:e3:dc:d9:1f:37:0d:7d:99:18:b6:83:44:
        ad:53:8f:06:e5:14:ff:ed:92:a6:8e:da:43:e9:9a:32:
        12:da:9d:ed:20:cf:a1:84:b4:26:cf:91:01:60:93:53:
        af:08:56:fd:68:87:3c:1e:22:7a:bf:cb:94:3f:2d:6e:
        7d:5c:87:37:55:f3:dd:d8:01:d7:26:58:60:22:6b:4a:
        7c:d0:24:45:3c:d8:1a:0f:27:37:17:22:97:32:1d:ae:
        56:8f:df:65:8a:ec:f0:33:84:c9:08:57:a6:9e:e4:44:
        cd:80:9d:36:69:22:da:15:51:24:5e:fd:5b:2f:00:c2:
        79:54:4a:89:e0:d5:ff:db:aa:32:e9:7e:11:b6:9d:9a
    Fingerprint (SHA-256):
        BC:99:2C:ED:E5:BE:D8:90:1F:30:AA:C7:F8:DD:D8:CA:B1:F9:8E:4E:9B:4C:E3:C0:47:68:B7:D7:AC:11:28:07
    Fingerprint (SHA1):
        14:8B:30:E1:67:70:69:B5:E8:1D:30:23:D6:74:49:F7:3B:7C:AF:CE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3433: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #3434: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115358 (0x1e67be1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:37 2017
            Not After : Tue May 10 11:53:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:a6:92:8e:d4:2d:e9:ae:8f:aa:32:9e:f8:6d:9e:5e:
                    01:74:6d:fc:31:cd:5f:23:e5:44:9c:e1:51:31:59:ad:
                    57:f4:8d:de:4a:8f:68:5c:5f:0c:a4:90:78:b9:1b:a6:
                    03:7a:bc:0c:14:1a:12:45:e3:d0:84:19:0f:a9:02:0b:
                    b0:7b:5f:0e:6c:44:6f:65:59:18:7c:5a:07:ad:07:fc:
                    d7:ff:b1:d6:43:96:8c:bc:71:c7:b1:c5:4b:83:11:c6:
                    00:f5:29:26:1b:20:2a:03:e2:f2:94:87:29:f5:e9:c2:
                    3a:bc:38:ea:3e:bb:4d:ea:f6:ba:c9:09:1d:99:26:c0:
                    b9:31:50:02:f3:6e:24:49:1d:ba:67:b9:1e:3d:96:95:
                    be:39:a6:15:d3:6d:a9:3b:d0:cb:78:09:4c:95:dd:4b:
                    96:68:2d:3e:98:02:64:9d:98:3d:d8:f7:7e:f2:12:1c:
                    e2:d6:c7:e4:32:ae:b2:1a:24:73:ad:a9:ae:fb:ce:c5:
                    06:b7:c6:08:06:75:c8:5f:a6:1a:7c:ee:d8:b9:28:21:
                    f2:ab:b4:b6:88:8f:4f:40:e2:79:7a:ae:bf:a2:6d:fc:
                    9c:df:bf:13:c2:5f:4e:c2:29:f2:ae:91:0b:6f:c2:42:
                    f6:50:13:ca:12:37:e1:8d:16:ac:24:f7:7a:63:0f:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:5c:28:0c:3a:ba:2a:eb:1c:43:6e:6b:50:be:03:f4:
        9e:3d:b6:c3:48:17:62:99:b9:a4:5e:d4:de:d0:df:b2:
        9a:4e:ea:3d:a2:60:48:0d:b4:4c:d3:e3:22:e9:c9:d2:
        0e:d6:e4:a9:ae:a5:ce:a1:e8:3a:da:5c:aa:a7:52:bf:
        6a:10:e9:af:c2:61:85:95:f7:ce:c9:d3:95:d7:24:91:
        1a:58:3c:38:95:10:83:25:7a:5d:42:1a:0e:bd:ed:97:
        2c:5f:19:59:37:25:6a:19:90:ac:e1:3f:b1:3a:f6:11:
        e3:19:06:8a:e3:dc:d9:1f:37:0d:7d:99:18:b6:83:44:
        ad:53:8f:06:e5:14:ff:ed:92:a6:8e:da:43:e9:9a:32:
        12:da:9d:ed:20:cf:a1:84:b4:26:cf:91:01:60:93:53:
        af:08:56:fd:68:87:3c:1e:22:7a:bf:cb:94:3f:2d:6e:
        7d:5c:87:37:55:f3:dd:d8:01:d7:26:58:60:22:6b:4a:
        7c:d0:24:45:3c:d8:1a:0f:27:37:17:22:97:32:1d:ae:
        56:8f:df:65:8a:ec:f0:33:84:c9:08:57:a6:9e:e4:44:
        cd:80:9d:36:69:22:da:15:51:24:5e:fd:5b:2f:00:c2:
        79:54:4a:89:e0:d5:ff:db:aa:32:e9:7e:11:b6:9d:9a
    Fingerprint (SHA-256):
        BC:99:2C:ED:E5:BE:D8:90:1F:30:AA:C7:F8:DD:D8:CA:B1:F9:8E:4E:9B:4C:E3:C0:47:68:B7:D7:AC:11:28:07
    Fingerprint (SHA1):
        14:8B:30:E1:67:70:69:B5:E8:1D:30:23:D6:74:49:F7:3B:7C:AF:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3435: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115360 (0x1e67be20)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:53:38 2017
            Not After : Tue May 10 11:53:38 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:98:24:a4:96:23:e3:a7:50:0a:18:e6:f3:cc:5c:12:
                    fb:fe:80:83:77:e8:09:8d:d6:23:ee:71:4a:ef:26:5e:
                    cb:03:d7:40:43:7f:95:8c:c1:b2:d7:53:6d:ed:3a:10:
                    59:f4:fb:cc:98:34:57:2c:7a:2c:0b:3b:a1:5d:54:91:
                    2e:ce:0b:cd:a6:ad:b1:49:36:c6:9e:11:b0:40:7e:b0:
                    e9:2a:77:8a:51:91:23:6c:79:d8:c6:de:ea:00:c2:9b:
                    20:6e:d5:20:5e:8c:c3:4d:c9:19:75:04:1f:0d:d4:81:
                    78:85:f7:9f:e9:32:4d:5c:1a:cc:f4:5c:68:08:80:1f:
                    e2:95:ed:34:2d:7b:8a:e4:ba:dc:a9:a2:aa:90:5b:86:
                    07:24:03:6c:59:a5:97:e5:85:c3:3b:59:80:e0:07:e8:
                    0e:9a:85:1f:49:94:b7:ec:58:41:25:b3:84:4b:4d:a0:
                    7f:4c:42:9d:ad:5e:18:bc:b2:ad:1e:e6:c7:54:9c:1d:
                    2f:57:d1:20:c1:d4:0d:66:ff:46:24:a2:22:81:70:6e:
                    9f:26:4c:0c:62:f9:38:6c:5c:a0:71:d6:9a:50:ae:f3:
                    a1:4f:58:64:e4:f2:e1:d1:ce:57:dc:71:95:92:70:3b:
                    e6:9a:71:e3:22:3d:17:5c:bb:97:3e:7f:c8:b6:b3:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:dd:87:f6:81:a0:62:82:45:91:d9:6d:da:14:71:4c:
        8e:7b:b4:87:e4:f2:cd:58:64:70:7c:3e:9e:5a:12:c1:
        ae:02:c4:8f:a5:00:51:cb:d1:a3:58:45:59:06:00:82:
        c1:52:84:c2:29:c0:64:e7:79:8e:15:67:e4:b3:00:ed:
        33:e7:e4:60:85:5d:f6:5f:97:3a:dc:8c:c1:b7:62:fe:
        cc:ca:25:ee:8b:05:dc:28:8b:f7:19:71:db:32:0a:84:
        35:82:48:6b:3d:d7:0c:32:1e:ff:fd:e3:de:7b:66:d4:
        b3:bb:c3:77:5d:fd:d0:73:c7:c4:dc:d7:20:32:cc:14:
        c3:7d:d2:23:39:f0:a1:f0:8c:54:b4:83:ba:81:f6:b1:
        85:b1:a5:54:c7:a8:97:2a:87:e1:b1:54:08:db:e6:e6:
        a9:2b:cc:1b:25:aa:8c:56:eb:35:ed:0e:de:b7:ac:85:
        f6:fb:52:ef:7a:63:33:e2:44:28:83:d9:a9:b5:6b:3c:
        b1:9d:ca:44:26:6f:f8:12:ad:05:d6:b9:39:99:b7:ed:
        ff:92:ff:f2:ed:0b:b2:c8:23:e5:e2:39:91:a5:1b:7e:
        fe:ca:23:f8:b5:93:61:9d:00:03:b6:ff:9b:2d:b4:22:
        9f:dc:df:ed:f8:36:df:e3:98:c1:0a:91:19:18:9a:02
    Fingerprint (SHA-256):
        B9:8D:41:6B:0B:84:39:60:2D:F1:EA:BC:DE:D5:CF:41:44:2B:3A:D0:65:C5:AF:69:02:AE:64:5E:FA:64:F5:AA
    Fingerprint (SHA1):
        A9:72:DA:16:D2:0B:10:A9:DE:6B:C8:ED:97:7E:BA:DD:33:1F:AD:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3436: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #3437: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #3438: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #3439: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115358 (0x1e67be1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:37 2017
            Not After : Tue May 10 11:53:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:a6:92:8e:d4:2d:e9:ae:8f:aa:32:9e:f8:6d:9e:5e:
                    01:74:6d:fc:31:cd:5f:23:e5:44:9c:e1:51:31:59:ad:
                    57:f4:8d:de:4a:8f:68:5c:5f:0c:a4:90:78:b9:1b:a6:
                    03:7a:bc:0c:14:1a:12:45:e3:d0:84:19:0f:a9:02:0b:
                    b0:7b:5f:0e:6c:44:6f:65:59:18:7c:5a:07:ad:07:fc:
                    d7:ff:b1:d6:43:96:8c:bc:71:c7:b1:c5:4b:83:11:c6:
                    00:f5:29:26:1b:20:2a:03:e2:f2:94:87:29:f5:e9:c2:
                    3a:bc:38:ea:3e:bb:4d:ea:f6:ba:c9:09:1d:99:26:c0:
                    b9:31:50:02:f3:6e:24:49:1d:ba:67:b9:1e:3d:96:95:
                    be:39:a6:15:d3:6d:a9:3b:d0:cb:78:09:4c:95:dd:4b:
                    96:68:2d:3e:98:02:64:9d:98:3d:d8:f7:7e:f2:12:1c:
                    e2:d6:c7:e4:32:ae:b2:1a:24:73:ad:a9:ae:fb:ce:c5:
                    06:b7:c6:08:06:75:c8:5f:a6:1a:7c:ee:d8:b9:28:21:
                    f2:ab:b4:b6:88:8f:4f:40:e2:79:7a:ae:bf:a2:6d:fc:
                    9c:df:bf:13:c2:5f:4e:c2:29:f2:ae:91:0b:6f:c2:42:
                    f6:50:13:ca:12:37:e1:8d:16:ac:24:f7:7a:63:0f:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:5c:28:0c:3a:ba:2a:eb:1c:43:6e:6b:50:be:03:f4:
        9e:3d:b6:c3:48:17:62:99:b9:a4:5e:d4:de:d0:df:b2:
        9a:4e:ea:3d:a2:60:48:0d:b4:4c:d3:e3:22:e9:c9:d2:
        0e:d6:e4:a9:ae:a5:ce:a1:e8:3a:da:5c:aa:a7:52:bf:
        6a:10:e9:af:c2:61:85:95:f7:ce:c9:d3:95:d7:24:91:
        1a:58:3c:38:95:10:83:25:7a:5d:42:1a:0e:bd:ed:97:
        2c:5f:19:59:37:25:6a:19:90:ac:e1:3f:b1:3a:f6:11:
        e3:19:06:8a:e3:dc:d9:1f:37:0d:7d:99:18:b6:83:44:
        ad:53:8f:06:e5:14:ff:ed:92:a6:8e:da:43:e9:9a:32:
        12:da:9d:ed:20:cf:a1:84:b4:26:cf:91:01:60:93:53:
        af:08:56:fd:68:87:3c:1e:22:7a:bf:cb:94:3f:2d:6e:
        7d:5c:87:37:55:f3:dd:d8:01:d7:26:58:60:22:6b:4a:
        7c:d0:24:45:3c:d8:1a:0f:27:37:17:22:97:32:1d:ae:
        56:8f:df:65:8a:ec:f0:33:84:c9:08:57:a6:9e:e4:44:
        cd:80:9d:36:69:22:da:15:51:24:5e:fd:5b:2f:00:c2:
        79:54:4a:89:e0:d5:ff:db:aa:32:e9:7e:11:b6:9d:9a
    Fingerprint (SHA-256):
        BC:99:2C:ED:E5:BE:D8:90:1F:30:AA:C7:F8:DD:D8:CA:B1:F9:8E:4E:9B:4C:E3:C0:47:68:B7:D7:AC:11:28:07
    Fingerprint (SHA1):
        14:8B:30:E1:67:70:69:B5:E8:1D:30:23:D6:74:49:F7:3B:7C:AF:CE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3440: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115362 (0x1e67be22)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 11:53:39 2017
            Not After : Tue May 10 11:53:39 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:51:0d:17:27:8f:cd:56:e7:12:49:7c:67:08:41:f4:
                    c3:a8:17:97:bb:a7:b6:57:28:20:40:14:79:86:45:f9:
                    dd:6b:5f:b9:b9:52:78:5e:59:81:a5:47:96:a7:a8:89:
                    40:8f:b7:57:9c:b3:86:9a:13:81:93:bf:f6:81:56:d6:
                    f7:26:c7:87:3b:7c:b1:ed:55:e5:73:64:7a:16:93:c8:
                    f5:8f:7f:32:65:86:ee:f0:e8:82:dc:9e:ed:1e:9d:fd:
                    d2:50:20:b3:ed:ff:f9:a2:93:f1:e4:b3:bc:0e:5c:b5:
                    d2:27:86:2e:43:df:87:92:d4:e6:0f:1a:6e:f4:5a:8b:
                    7a:53:be:c4:e0:e6:16:a7:4e:52:da:42:77:87:74:b6:
                    62:56:16:5e:e6:41:b6:2c:d0:70:65:eb:6c:28:84:34:
                    3e:43:da:3f:e6:82:ee:c2:be:0d:56:bc:7b:f9:df:08:
                    b8:05:bd:64:7f:83:50:80:b8:9f:62:aa:10:3e:cc:db:
                    39:74:a4:37:e1:c7:a2:38:d2:60:14:db:3b:62:c2:3c:
                    dc:ad:22:a2:ec:e1:82:41:71:04:11:a7:2b:9e:cf:fb:
                    f0:dc:8f:b6:f8:aa:94:df:d1:92:34:05:8e:a0:c6:f6:
                    b0:b1:60:a0:12:c8:5b:65:ee:ff:7a:c4:44:1a:d4:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:76:a6:9e:58:0b:46:5a:f9:82:3a:71:46:17:4d:3a:
        3a:49:7d:eb:66:6e:1a:89:89:f9:81:5d:ce:57:30:0a:
        08:e3:f1:fb:f4:20:c4:9d:9d:7f:df:22:d4:72:c7:f5:
        13:aa:6a:be:76:0e:83:94:b0:35:7c:95:91:cd:92:43:
        8a:be:c8:d8:35:2f:91:5d:1c:85:81:48:fc:2d:0c:37:
        87:98:53:29:31:5b:8a:28:06:02:4f:d8:09:1c:ed:d6:
        7a:57:97:a9:19:d3:f7:5b:3c:49:68:99:1e:5d:02:b3:
        df:29:f0:e6:aa:29:94:3f:78:38:f8:fd:f0:78:10:9e:
        1c:69:7a:dd:c8:80:eb:e4:53:1e:d9:0f:93:ff:66:32:
        c2:e2:06:ff:c2:c8:92:bc:8c:db:59:f7:39:e1:a6:77:
        c3:74:5d:bc:e6:14:d4:41:d4:79:8c:59:97:4b:5e:4a:
        49:43:db:1b:13:bc:9a:cf:66:89:ec:58:db:9c:4b:e4:
        0d:09:7d:b4:95:51:7d:ab:bf:77:75:72:5a:1e:9a:17:
        c3:7f:15:8b:35:a0:b9:05:55:e8:27:c1:13:37:7c:fa:
        70:0a:93:87:40:c6:c4:44:48:83:2f:2b:6b:c2:07:3b:
        e6:a0:72:56:3f:69:7a:f7:0d:1d:0c:bb:64:1c:a0:a8
    Fingerprint (SHA-256):
        0B:5C:B1:11:5E:01:A1:D6:F3:31:FE:5A:FA:B8:4A:98:65:C2:D3:53:17:FD:CE:3D:C8:77:D6:C3:5F:BA:00:12
    Fingerprint (SHA1):
        45:65:4D:F2:B2:48:C1:2D:56:43:A3:1F:D2:28:2C:10:DF:F2:5D:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #3441: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115358 (0x1e67be1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:37 2017
            Not After : Tue May 10 11:53:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:a6:92:8e:d4:2d:e9:ae:8f:aa:32:9e:f8:6d:9e:5e:
                    01:74:6d:fc:31:cd:5f:23:e5:44:9c:e1:51:31:59:ad:
                    57:f4:8d:de:4a:8f:68:5c:5f:0c:a4:90:78:b9:1b:a6:
                    03:7a:bc:0c:14:1a:12:45:e3:d0:84:19:0f:a9:02:0b:
                    b0:7b:5f:0e:6c:44:6f:65:59:18:7c:5a:07:ad:07:fc:
                    d7:ff:b1:d6:43:96:8c:bc:71:c7:b1:c5:4b:83:11:c6:
                    00:f5:29:26:1b:20:2a:03:e2:f2:94:87:29:f5:e9:c2:
                    3a:bc:38:ea:3e:bb:4d:ea:f6:ba:c9:09:1d:99:26:c0:
                    b9:31:50:02:f3:6e:24:49:1d:ba:67:b9:1e:3d:96:95:
                    be:39:a6:15:d3:6d:a9:3b:d0:cb:78:09:4c:95:dd:4b:
                    96:68:2d:3e:98:02:64:9d:98:3d:d8:f7:7e:f2:12:1c:
                    e2:d6:c7:e4:32:ae:b2:1a:24:73:ad:a9:ae:fb:ce:c5:
                    06:b7:c6:08:06:75:c8:5f:a6:1a:7c:ee:d8:b9:28:21:
                    f2:ab:b4:b6:88:8f:4f:40:e2:79:7a:ae:bf:a2:6d:fc:
                    9c:df:bf:13:c2:5f:4e:c2:29:f2:ae:91:0b:6f:c2:42:
                    f6:50:13:ca:12:37:e1:8d:16:ac:24:f7:7a:63:0f:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:5c:28:0c:3a:ba:2a:eb:1c:43:6e:6b:50:be:03:f4:
        9e:3d:b6:c3:48:17:62:99:b9:a4:5e:d4:de:d0:df:b2:
        9a:4e:ea:3d:a2:60:48:0d:b4:4c:d3:e3:22:e9:c9:d2:
        0e:d6:e4:a9:ae:a5:ce:a1:e8:3a:da:5c:aa:a7:52:bf:
        6a:10:e9:af:c2:61:85:95:f7:ce:c9:d3:95:d7:24:91:
        1a:58:3c:38:95:10:83:25:7a:5d:42:1a:0e:bd:ed:97:
        2c:5f:19:59:37:25:6a:19:90:ac:e1:3f:b1:3a:f6:11:
        e3:19:06:8a:e3:dc:d9:1f:37:0d:7d:99:18:b6:83:44:
        ad:53:8f:06:e5:14:ff:ed:92:a6:8e:da:43:e9:9a:32:
        12:da:9d:ed:20:cf:a1:84:b4:26:cf:91:01:60:93:53:
        af:08:56:fd:68:87:3c:1e:22:7a:bf:cb:94:3f:2d:6e:
        7d:5c:87:37:55:f3:dd:d8:01:d7:26:58:60:22:6b:4a:
        7c:d0:24:45:3c:d8:1a:0f:27:37:17:22:97:32:1d:ae:
        56:8f:df:65:8a:ec:f0:33:84:c9:08:57:a6:9e:e4:44:
        cd:80:9d:36:69:22:da:15:51:24:5e:fd:5b:2f:00:c2:
        79:54:4a:89:e0:d5:ff:db:aa:32:e9:7e:11:b6:9d:9a
    Fingerprint (SHA-256):
        BC:99:2C:ED:E5:BE:D8:90:1F:30:AA:C7:F8:DD:D8:CA:B1:F9:8E:4E:9B:4C:E3:C0:47:68:B7:D7:AC:11:28:07
    Fingerprint (SHA1):
        14:8B:30:E1:67:70:69:B5:E8:1D:30:23:D6:74:49:F7:3B:7C:AF:CE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3442: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #3443: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #3444: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #3445: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #3446: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #3447: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115363 (0x1e67be23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 11:53:39 2017
            Not After : Tue May 10 11:53:39 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:33:b3:9d:cf:e4:64:92:d8:cd:8d:f4:69:b8:e2:fb:
                    64:76:7c:e8:83:7b:14:f2:3e:53:08:b7:d8:a3:b7:74:
                    7d:81:47:48:e1:13:a3:27:ec:4a:02:63:6e:12:2c:8c:
                    df:ef:77:a4:e0:61:8d:2f:ca:1c:4f:0b:f9:4c:f3:e0:
                    c4:42:87:6c:ea:cf:59:18:cf:37:df:75:b0:eb:32:f8:
                    32:95:f6:19:bc:5c:6f:f5:37:b5:d3:38:63:1a:1f:1d:
                    70:19:7b:b1:04:cc:a3:5f:e5:91:41:24:7c:69:e8:c5:
                    3b:3f:94:cb:21:da:5d:6f:dc:cb:d8:cf:32:f6:1e:e1:
                    ea:3a:63:e3:79:1a:dd:20:e9:f1:11:13:2d:b5:b4:84:
                    1a:59:4e:ec:d5:3b:9e:5a:60:eb:53:26:4d:ae:87:ed:
                    e7:10:14:dd:7d:29:54:4a:fa:e0:28:e5:7f:95:46:fc:
                    6f:30:f1:c5:ba:fa:d7:62:25:11:95:51:92:0e:01:44:
                    1c:75:c2:ea:e3:b1:97:cb:3b:e6:83:fb:8f:12:52:a3:
                    aa:c7:83:a6:4e:13:f2:81:ce:9e:e0:30:81:5d:16:44:
                    96:38:24:54:00:0d:e5:03:de:ae:47:cb:59:57:09:b6:
                    86:15:0f:ec:89:4f:f8:b8:27:4a:9c:20:8e:de:a2:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:f9:a7:80:33:08:d2:65:0b:9d:2b:59:a5:36:f4:50:
        38:97:f7:be:c4:88:2b:94:a1:a6:5e:56:e1:f4:b3:f5:
        ed:f9:78:5f:b8:67:04:9e:bb:e8:37:23:bd:04:eb:c8:
        14:71:e5:80:0f:2d:fb:7c:a3:f4:c2:75:c2:68:04:ab:
        51:dc:37:09:42:69:e9:96:45:ee:63:cc:ba:3d:32:c1:
        9e:74:cd:cc:6f:32:7a:67:17:51:b1:58:a4:aa:d3:d1:
        73:3c:54:33:98:c9:30:6f:0a:96:c8:23:43:d0:a8:ab:
        0e:9e:06:e9:ef:b7:76:22:69:c7:04:1c:57:d0:c7:ba:
        b1:73:22:d7:40:ad:d0:d6:12:ef:74:dd:70:3a:3c:e6:
        56:db:ed:0c:9d:c0:81:a2:85:5f:65:83:74:2d:f6:1c:
        3f:a6:60:f5:c9:41:5a:29:eb:94:84:1d:2c:0f:23:9f:
        8a:c1:3e:84:48:8c:d0:19:68:f5:05:d4:0f:2e:2f:91:
        92:0a:b0:fd:46:55:54:fa:61:e9:59:75:9a:6f:43:a1:
        6d:9e:79:ae:c2:3e:b2:38:7e:25:da:f3:27:7f:df:a7:
        37:c5:19:ed:e5:11:a0:44:0c:c7:2a:34:65:f1:44:48:
        16:dc:58:19:ca:71:04:66:5d:2f:43:9d:6b:3d:ad:1d
    Fingerprint (SHA-256):
        27:7B:1F:B5:42:EB:14:BB:65:F3:6B:CF:03:6B:F1:BC:15:76:93:11:EE:8D:AC:03:E4:25:A4:CE:77:20:F7:87
    Fingerprint (SHA1):
        E2:67:4B:65:42:E0:34:7D:14:B9:9A:75:B1:B6:7A:A2:DD:89:BD:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3448: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #3449: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #3450: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #3451: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #3452: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3453: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3454: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3455: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3456: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3457: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3458: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3459: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3460: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3461: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3462: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3463: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3464: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3465: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3466: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #3467: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3468: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3469: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3470: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3471: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 772 at Wed May 10 11:53:41 UTC 2017
kill -USR1 772
httpserv: normal termination
httpserv -b -p 9333 2>/dev/null;
httpserv with PID 772 killed at Wed May 10 11:53:41 UTC 2017
httpserv starting at Wed May 10 11:53:41 UTC 2017
httpserv -D -p 9333  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/aiahttp/http_pid.24947  &
trying to connect to httpserv at Wed May 10 11:53:41 UTC 2017
tstclnt -p 9333 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9333 (address=::1)
tstclnt: exiting with return code 0
kill -0 16257 >/dev/null 2>/dev/null
httpserv with PID 16257 found at Wed May 10 11:53:41 UTC 2017
httpserv with PID 16257 started at Wed May 10 11:53:41 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3472: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115365 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3473: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3474: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3475: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115366 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3476: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3477: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3478: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3479: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510115367 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3480: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3481: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510115368 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3482: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3483: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3484: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3485: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3486: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 510115369   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3487: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3488: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3489: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #3490: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #3491: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115366 (0x1e67be26)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:53:42 2017
            Not After : Tue May 10 11:53:42 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:85:a1:27:af:48:fc:47:ed:e7:95:49:d6:fc:e3:f7:
                    26:2a:4f:af:f1:de:08:b3:cf:06:f1:aa:6d:07:fd:18:
                    22:d3:79:3b:ac:eb:f7:57:84:f5:ff:e6:3d:02:6d:fa:
                    73:76:1a:17:33:6b:89:2f:3a:dc:3f:c7:d8:d6:a2:cd:
                    1e:50:92:9f:12:c8:a7:60:1d:17:14:29:a4:00:a8:17:
                    78:b8:d8:1c:f2:98:d2:7e:2c:2c:6b:7a:2f:84:fe:5d:
                    d9:b9:ab:23:ff:05:8e:26:03:5a:2d:de:b2:1c:e1:68:
                    48:9d:98:d4:d6:98:82:93:f9:f3:8a:ec:52:64:70:62:
                    1c:5b:e0:dd:dc:ef:de:ae:22:16:1c:f5:15:dc:9b:e5:
                    75:f7:8b:29:55:6b:41:f3:77:51:c4:50:81:fa:27:4c:
                    95:63:e5:ad:b4:ba:df:0d:64:94:8b:14:b7:17:f8:53:
                    14:f9:7c:da:a8:a1:10:15:20:a1:52:cb:73:46:4b:bc:
                    36:fe:17:8e:65:08:ba:19:0b:96:fa:93:c4:47:6b:0c:
                    eb:26:9a:29:ec:01:bd:53:89:74:cf:5d:79:45:44:e1:
                    ee:2a:7a:38:4b:66:02:b2:cd:20:52:d9:fa:42:66:f4:
                    ae:a7:9b:e6:bc:cb:02:15:53:5a:d0:08:a8:52:62:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:c2:e4:d2:3a:7f:0b:dd:cf:21:0a:40:44:29:5e:e2:
        6d:ad:c6:d6:7b:17:a0:2b:a8:f2:9f:a2:0c:5a:cc:a1:
        3c:24:94:46:46:17:4c:92:9a:05:a0:2f:6f:f0:4d:1d:
        96:f2:34:72:8e:97:f3:67:54:fe:ce:63:2b:0e:0a:6a:
        7e:63:a4:d5:ef:07:48:e5:20:4f:96:ba:e6:df:9b:f7:
        f8:ff:2f:75:3d:52:bd:b0:6c:98:67:9d:4c:ac:50:31:
        cb:d9:d8:cb:5e:bd:59:b4:69:7e:81:37:f5:a4:e3:af:
        d2:01:0d:dd:85:a3:f7:e6:27:82:40:c3:36:b3:0c:f9:
        9b:c1:65:0e:4c:d5:0e:4b:b9:58:80:87:6a:f1:6e:9d:
        52:3e:59:66:2e:02:06:6c:00:0f:b3:9e:3f:69:17:80:
        b0:04:81:4c:75:b7:da:ed:ca:c2:c9:21:36:45:40:77:
        c4:95:29:3b:11:f0:f8:31:0c:83:ab:d2:50:40:69:00:
        7e:51:77:5e:8a:0e:06:89:fb:6e:8f:0b:0d:84:ce:d6:
        7c:d9:d1:b5:c0:26:58:5d:d2:f7:58:81:4d:8a:a0:e8:
        7f:68:b9:d6:d9:28:3a:ae:ac:82:78:f2:4d:b3:5a:a0:
        ff:f5:0e:45:ad:63:b9:c9:1b:43:0f:c4:66:17:51:9c
    Fingerprint (SHA-256):
        E6:22:CF:82:91:E0:BB:00:4A:37:19:12:66:01:3A:AE:06:EB:E0:FD:FE:2F:D6:58:22:AC:A6:8D:0D:30:8A:B3
    Fingerprint (SHA1):
        BF:08:04:79:EB:D5:2B:1D:36:30:9F:95:E4:E3:72:26:2A:34:84:DC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3492: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115365 (0x1e67be25)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:53:41 2017
            Not After : Tue May 10 11:53:41 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:aa:4e:5d:dd:d5:2d:00:2e:7d:c3:4f:3c:ab:b7:72:
                    fb:38:38:ae:fe:1a:3b:4e:49:4b:c6:4b:c3:f4:77:a0:
                    33:97:59:4d:9e:da:17:6e:01:99:50:09:80:19:04:68:
                    36:07:ec:a3:45:e4:6b:d8:32:2a:99:f0:16:6a:20:da:
                    e9:4a:14:b7:16:52:15:66:f2:a6:7c:50:96:cb:97:81:
                    f1:90:af:16:f4:60:20:ca:e6:10:36:57:98:d5:68:d9:
                    5e:1d:7f:5f:f6:dc:d0:70:70:48:5d:f2:a5:80:c0:ff:
                    8b:80:0c:a2:17:d8:98:bd:60:af:1d:5d:eb:e7:37:d6:
                    d0:ba:15:5d:ce:e0:44:fe:90:b7:65:7d:0c:61:12:e1:
                    63:8f:d2:a0:25:bd:08:ac:33:69:ed:65:c0:be:06:37:
                    63:56:e7:e3:1a:1d:0b:8d:99:81:a3:25:e7:c9:43:ed:
                    df:26:75:29:55:95:dc:18:d4:b8:8b:82:7c:94:44:a4:
                    65:49:54:39:7b:af:d5:bb:e2:3f:ca:b1:97:cd:75:bc:
                    32:5f:58:60:b0:ac:ec:23:91:34:fb:44:82:2e:f6:b7:
                    64:35:e7:bd:10:86:4d:d0:2c:6d:7d:82:52:33:6c:37:
                    e3:29:e4:84:ac:75:74:e4:69:21:78:4c:24:b4:ba:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:d4:d6:33:fc:50:a4:ee:49:7c:68:72:aa:c0:83:09:
        14:65:bf:b8:2e:e7:32:97:15:19:92:7c:e9:2b:a2:99:
        08:05:22:7b:2d:44:ff:89:df:01:6b:a7:2d:2a:e4:8b:
        70:b0:18:5c:f1:5c:c9:87:72:f2:d5:e8:8b:a8:f1:c8:
        c0:2f:07:c5:2e:d0:5c:5a:fc:ec:ab:aa:d3:4b:09:94:
        39:94:08:fc:d1:0c:f8:43:9d:0f:8f:7f:11:d4:e9:01:
        39:f4:d2:6c:6f:18:4c:8e:68:41:96:53:11:a3:38:13:
        54:37:ad:f5:43:bc:6a:32:bb:b3:d1:d4:c0:7c:68:65:
        6e:89:32:51:8f:06:92:3a:9e:53:a1:28:84:9b:a3:75:
        10:71:c0:1b:1b:02:d8:82:23:b3:68:25:4c:38:95:e2:
        87:43:dd:18:fd:35:2f:3c:c6:6f:6c:ca:5e:50:3b:43:
        70:b3:da:f4:85:ad:b7:36:39:48:01:f3:ab:24:c4:9d:
        e7:8d:fd:20:b0:9d:3c:f3:ab:90:ed:6a:a9:ec:2b:4e:
        6e:f1:5e:fe:f2:41:78:47:1d:81:fb:ca:e0:65:db:84:
        1e:7b:39:dd:f7:01:30:74:08:61:5f:0f:cf:9b:52:aa:
        34:5f:d3:34:2d:bc:4c:4e:57:5e:5f:de:12:49:d8:7b
    Fingerprint (SHA-256):
        30:26:5B:7E:71:D6:42:C5:7D:E8:F7:86:4D:00:7F:E2:B8:B0:DF:1A:7B:59:88:9A:9C:91:EA:DE:24:84:26:2B
    Fingerprint (SHA1):
        28:0C:92:D0:F4:40:7C:43:48:91:AB:BF:4F:84:E8:47:C0:20:2D:AC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3493: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3494: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #3495: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #3496: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115365 (0x1e67be25)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:53:41 2017
            Not After : Tue May 10 11:53:41 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:aa:4e:5d:dd:d5:2d:00:2e:7d:c3:4f:3c:ab:b7:72:
                    fb:38:38:ae:fe:1a:3b:4e:49:4b:c6:4b:c3:f4:77:a0:
                    33:97:59:4d:9e:da:17:6e:01:99:50:09:80:19:04:68:
                    36:07:ec:a3:45:e4:6b:d8:32:2a:99:f0:16:6a:20:da:
                    e9:4a:14:b7:16:52:15:66:f2:a6:7c:50:96:cb:97:81:
                    f1:90:af:16:f4:60:20:ca:e6:10:36:57:98:d5:68:d9:
                    5e:1d:7f:5f:f6:dc:d0:70:70:48:5d:f2:a5:80:c0:ff:
                    8b:80:0c:a2:17:d8:98:bd:60:af:1d:5d:eb:e7:37:d6:
                    d0:ba:15:5d:ce:e0:44:fe:90:b7:65:7d:0c:61:12:e1:
                    63:8f:d2:a0:25:bd:08:ac:33:69:ed:65:c0:be:06:37:
                    63:56:e7:e3:1a:1d:0b:8d:99:81:a3:25:e7:c9:43:ed:
                    df:26:75:29:55:95:dc:18:d4:b8:8b:82:7c:94:44:a4:
                    65:49:54:39:7b:af:d5:bb:e2:3f:ca:b1:97:cd:75:bc:
                    32:5f:58:60:b0:ac:ec:23:91:34:fb:44:82:2e:f6:b7:
                    64:35:e7:bd:10:86:4d:d0:2c:6d:7d:82:52:33:6c:37:
                    e3:29:e4:84:ac:75:74:e4:69:21:78:4c:24:b4:ba:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:d4:d6:33:fc:50:a4:ee:49:7c:68:72:aa:c0:83:09:
        14:65:bf:b8:2e:e7:32:97:15:19:92:7c:e9:2b:a2:99:
        08:05:22:7b:2d:44:ff:89:df:01:6b:a7:2d:2a:e4:8b:
        70:b0:18:5c:f1:5c:c9:87:72:f2:d5:e8:8b:a8:f1:c8:
        c0:2f:07:c5:2e:d0:5c:5a:fc:ec:ab:aa:d3:4b:09:94:
        39:94:08:fc:d1:0c:f8:43:9d:0f:8f:7f:11:d4:e9:01:
        39:f4:d2:6c:6f:18:4c:8e:68:41:96:53:11:a3:38:13:
        54:37:ad:f5:43:bc:6a:32:bb:b3:d1:d4:c0:7c:68:65:
        6e:89:32:51:8f:06:92:3a:9e:53:a1:28:84:9b:a3:75:
        10:71:c0:1b:1b:02:d8:82:23:b3:68:25:4c:38:95:e2:
        87:43:dd:18:fd:35:2f:3c:c6:6f:6c:ca:5e:50:3b:43:
        70:b3:da:f4:85:ad:b7:36:39:48:01:f3:ab:24:c4:9d:
        e7:8d:fd:20:b0:9d:3c:f3:ab:90:ed:6a:a9:ec:2b:4e:
        6e:f1:5e:fe:f2:41:78:47:1d:81:fb:ca:e0:65:db:84:
        1e:7b:39:dd:f7:01:30:74:08:61:5f:0f:cf:9b:52:aa:
        34:5f:d3:34:2d:bc:4c:4e:57:5e:5f:de:12:49:d8:7b
    Fingerprint (SHA-256):
        30:26:5B:7E:71:D6:42:C5:7D:E8:F7:86:4D:00:7F:E2:B8:B0:DF:1A:7B:59:88:9A:9C:91:EA:DE:24:84:26:2B
    Fingerprint (SHA1):
        28:0C:92:D0:F4:40:7C:43:48:91:AB:BF:4F:84:E8:47:C0:20:2D:AC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3497: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115366 (0x1e67be26)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:53:42 2017
            Not After : Tue May 10 11:53:42 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:85:a1:27:af:48:fc:47:ed:e7:95:49:d6:fc:e3:f7:
                    26:2a:4f:af:f1:de:08:b3:cf:06:f1:aa:6d:07:fd:18:
                    22:d3:79:3b:ac:eb:f7:57:84:f5:ff:e6:3d:02:6d:fa:
                    73:76:1a:17:33:6b:89:2f:3a:dc:3f:c7:d8:d6:a2:cd:
                    1e:50:92:9f:12:c8:a7:60:1d:17:14:29:a4:00:a8:17:
                    78:b8:d8:1c:f2:98:d2:7e:2c:2c:6b:7a:2f:84:fe:5d:
                    d9:b9:ab:23:ff:05:8e:26:03:5a:2d:de:b2:1c:e1:68:
                    48:9d:98:d4:d6:98:82:93:f9:f3:8a:ec:52:64:70:62:
                    1c:5b:e0:dd:dc:ef:de:ae:22:16:1c:f5:15:dc:9b:e5:
                    75:f7:8b:29:55:6b:41:f3:77:51:c4:50:81:fa:27:4c:
                    95:63:e5:ad:b4:ba:df:0d:64:94:8b:14:b7:17:f8:53:
                    14:f9:7c:da:a8:a1:10:15:20:a1:52:cb:73:46:4b:bc:
                    36:fe:17:8e:65:08:ba:19:0b:96:fa:93:c4:47:6b:0c:
                    eb:26:9a:29:ec:01:bd:53:89:74:cf:5d:79:45:44:e1:
                    ee:2a:7a:38:4b:66:02:b2:cd:20:52:d9:fa:42:66:f4:
                    ae:a7:9b:e6:bc:cb:02:15:53:5a:d0:08:a8:52:62:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:c2:e4:d2:3a:7f:0b:dd:cf:21:0a:40:44:29:5e:e2:
        6d:ad:c6:d6:7b:17:a0:2b:a8:f2:9f:a2:0c:5a:cc:a1:
        3c:24:94:46:46:17:4c:92:9a:05:a0:2f:6f:f0:4d:1d:
        96:f2:34:72:8e:97:f3:67:54:fe:ce:63:2b:0e:0a:6a:
        7e:63:a4:d5:ef:07:48:e5:20:4f:96:ba:e6:df:9b:f7:
        f8:ff:2f:75:3d:52:bd:b0:6c:98:67:9d:4c:ac:50:31:
        cb:d9:d8:cb:5e:bd:59:b4:69:7e:81:37:f5:a4:e3:af:
        d2:01:0d:dd:85:a3:f7:e6:27:82:40:c3:36:b3:0c:f9:
        9b:c1:65:0e:4c:d5:0e:4b:b9:58:80:87:6a:f1:6e:9d:
        52:3e:59:66:2e:02:06:6c:00:0f:b3:9e:3f:69:17:80:
        b0:04:81:4c:75:b7:da:ed:ca:c2:c9:21:36:45:40:77:
        c4:95:29:3b:11:f0:f8:31:0c:83:ab:d2:50:40:69:00:
        7e:51:77:5e:8a:0e:06:89:fb:6e:8f:0b:0d:84:ce:d6:
        7c:d9:d1:b5:c0:26:58:5d:d2:f7:58:81:4d:8a:a0:e8:
        7f:68:b9:d6:d9:28:3a:ae:ac:82:78:f2:4d:b3:5a:a0:
        ff:f5:0e:45:ad:63:b9:c9:1b:43:0f:c4:66:17:51:9c
    Fingerprint (SHA-256):
        E6:22:CF:82:91:E0:BB:00:4A:37:19:12:66:01:3A:AE:06:EB:E0:FD:FE:2F:D6:58:22:AC:A6:8D:0D:30:8A:B3
    Fingerprint (SHA1):
        BF:08:04:79:EB:D5:2B:1D:36:30:9F:95:E4:E3:72:26:2A:34:84:DC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3498: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #3499: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #3500: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3501: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3502: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3503: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115366 (0x1e67be26)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:53:42 2017
            Not After : Tue May 10 11:53:42 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:85:a1:27:af:48:fc:47:ed:e7:95:49:d6:fc:e3:f7:
                    26:2a:4f:af:f1:de:08:b3:cf:06:f1:aa:6d:07:fd:18:
                    22:d3:79:3b:ac:eb:f7:57:84:f5:ff:e6:3d:02:6d:fa:
                    73:76:1a:17:33:6b:89:2f:3a:dc:3f:c7:d8:d6:a2:cd:
                    1e:50:92:9f:12:c8:a7:60:1d:17:14:29:a4:00:a8:17:
                    78:b8:d8:1c:f2:98:d2:7e:2c:2c:6b:7a:2f:84:fe:5d:
                    d9:b9:ab:23:ff:05:8e:26:03:5a:2d:de:b2:1c:e1:68:
                    48:9d:98:d4:d6:98:82:93:f9:f3:8a:ec:52:64:70:62:
                    1c:5b:e0:dd:dc:ef:de:ae:22:16:1c:f5:15:dc:9b:e5:
                    75:f7:8b:29:55:6b:41:f3:77:51:c4:50:81:fa:27:4c:
                    95:63:e5:ad:b4:ba:df:0d:64:94:8b:14:b7:17:f8:53:
                    14:f9:7c:da:a8:a1:10:15:20:a1:52:cb:73:46:4b:bc:
                    36:fe:17:8e:65:08:ba:19:0b:96:fa:93:c4:47:6b:0c:
                    eb:26:9a:29:ec:01:bd:53:89:74:cf:5d:79:45:44:e1:
                    ee:2a:7a:38:4b:66:02:b2:cd:20:52:d9:fa:42:66:f4:
                    ae:a7:9b:e6:bc:cb:02:15:53:5a:d0:08:a8:52:62:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:c2:e4:d2:3a:7f:0b:dd:cf:21:0a:40:44:29:5e:e2:
        6d:ad:c6:d6:7b:17:a0:2b:a8:f2:9f:a2:0c:5a:cc:a1:
        3c:24:94:46:46:17:4c:92:9a:05:a0:2f:6f:f0:4d:1d:
        96:f2:34:72:8e:97:f3:67:54:fe:ce:63:2b:0e:0a:6a:
        7e:63:a4:d5:ef:07:48:e5:20:4f:96:ba:e6:df:9b:f7:
        f8:ff:2f:75:3d:52:bd:b0:6c:98:67:9d:4c:ac:50:31:
        cb:d9:d8:cb:5e:bd:59:b4:69:7e:81:37:f5:a4:e3:af:
        d2:01:0d:dd:85:a3:f7:e6:27:82:40:c3:36:b3:0c:f9:
        9b:c1:65:0e:4c:d5:0e:4b:b9:58:80:87:6a:f1:6e:9d:
        52:3e:59:66:2e:02:06:6c:00:0f:b3:9e:3f:69:17:80:
        b0:04:81:4c:75:b7:da:ed:ca:c2:c9:21:36:45:40:77:
        c4:95:29:3b:11:f0:f8:31:0c:83:ab:d2:50:40:69:00:
        7e:51:77:5e:8a:0e:06:89:fb:6e:8f:0b:0d:84:ce:d6:
        7c:d9:d1:b5:c0:26:58:5d:d2:f7:58:81:4d:8a:a0:e8:
        7f:68:b9:d6:d9:28:3a:ae:ac:82:78:f2:4d:b3:5a:a0:
        ff:f5:0e:45:ad:63:b9:c9:1b:43:0f:c4:66:17:51:9c
    Fingerprint (SHA-256):
        E6:22:CF:82:91:E0:BB:00:4A:37:19:12:66:01:3A:AE:06:EB:E0:FD:FE:2F:D6:58:22:AC:A6:8D:0D:30:8A:B3
    Fingerprint (SHA1):
        BF:08:04:79:EB:D5:2B:1D:36:30:9F:95:E4:E3:72:26:2A:34:84:DC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3504: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115366 (0x1e67be26)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:53:42 2017
            Not After : Tue May 10 11:53:42 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:85:a1:27:af:48:fc:47:ed:e7:95:49:d6:fc:e3:f7:
                    26:2a:4f:af:f1:de:08:b3:cf:06:f1:aa:6d:07:fd:18:
                    22:d3:79:3b:ac:eb:f7:57:84:f5:ff:e6:3d:02:6d:fa:
                    73:76:1a:17:33:6b:89:2f:3a:dc:3f:c7:d8:d6:a2:cd:
                    1e:50:92:9f:12:c8:a7:60:1d:17:14:29:a4:00:a8:17:
                    78:b8:d8:1c:f2:98:d2:7e:2c:2c:6b:7a:2f:84:fe:5d:
                    d9:b9:ab:23:ff:05:8e:26:03:5a:2d:de:b2:1c:e1:68:
                    48:9d:98:d4:d6:98:82:93:f9:f3:8a:ec:52:64:70:62:
                    1c:5b:e0:dd:dc:ef:de:ae:22:16:1c:f5:15:dc:9b:e5:
                    75:f7:8b:29:55:6b:41:f3:77:51:c4:50:81:fa:27:4c:
                    95:63:e5:ad:b4:ba:df:0d:64:94:8b:14:b7:17:f8:53:
                    14:f9:7c:da:a8:a1:10:15:20:a1:52:cb:73:46:4b:bc:
                    36:fe:17:8e:65:08:ba:19:0b:96:fa:93:c4:47:6b:0c:
                    eb:26:9a:29:ec:01:bd:53:89:74:cf:5d:79:45:44:e1:
                    ee:2a:7a:38:4b:66:02:b2:cd:20:52:d9:fa:42:66:f4:
                    ae:a7:9b:e6:bc:cb:02:15:53:5a:d0:08:a8:52:62:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:c2:e4:d2:3a:7f:0b:dd:cf:21:0a:40:44:29:5e:e2:
        6d:ad:c6:d6:7b:17:a0:2b:a8:f2:9f:a2:0c:5a:cc:a1:
        3c:24:94:46:46:17:4c:92:9a:05:a0:2f:6f:f0:4d:1d:
        96:f2:34:72:8e:97:f3:67:54:fe:ce:63:2b:0e:0a:6a:
        7e:63:a4:d5:ef:07:48:e5:20:4f:96:ba:e6:df:9b:f7:
        f8:ff:2f:75:3d:52:bd:b0:6c:98:67:9d:4c:ac:50:31:
        cb:d9:d8:cb:5e:bd:59:b4:69:7e:81:37:f5:a4:e3:af:
        d2:01:0d:dd:85:a3:f7:e6:27:82:40:c3:36:b3:0c:f9:
        9b:c1:65:0e:4c:d5:0e:4b:b9:58:80:87:6a:f1:6e:9d:
        52:3e:59:66:2e:02:06:6c:00:0f:b3:9e:3f:69:17:80:
        b0:04:81:4c:75:b7:da:ed:ca:c2:c9:21:36:45:40:77:
        c4:95:29:3b:11:f0:f8:31:0c:83:ab:d2:50:40:69:00:
        7e:51:77:5e:8a:0e:06:89:fb:6e:8f:0b:0d:84:ce:d6:
        7c:d9:d1:b5:c0:26:58:5d:d2:f7:58:81:4d:8a:a0:e8:
        7f:68:b9:d6:d9:28:3a:ae:ac:82:78:f2:4d:b3:5a:a0:
        ff:f5:0e:45:ad:63:b9:c9:1b:43:0f:c4:66:17:51:9c
    Fingerprint (SHA-256):
        E6:22:CF:82:91:E0:BB:00:4A:37:19:12:66:01:3A:AE:06:EB:E0:FD:FE:2F:D6:58:22:AC:A6:8D:0D:30:8A:B3
    Fingerprint (SHA1):
        BF:08:04:79:EB:D5:2B:1D:36:30:9F:95:E4:E3:72:26:2A:34:84:DC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3505: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #3506: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #3507: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3508: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3509: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3510: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115365 (0x1e67be25)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:53:41 2017
            Not After : Tue May 10 11:53:41 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:aa:4e:5d:dd:d5:2d:00:2e:7d:c3:4f:3c:ab:b7:72:
                    fb:38:38:ae:fe:1a:3b:4e:49:4b:c6:4b:c3:f4:77:a0:
                    33:97:59:4d:9e:da:17:6e:01:99:50:09:80:19:04:68:
                    36:07:ec:a3:45:e4:6b:d8:32:2a:99:f0:16:6a:20:da:
                    e9:4a:14:b7:16:52:15:66:f2:a6:7c:50:96:cb:97:81:
                    f1:90:af:16:f4:60:20:ca:e6:10:36:57:98:d5:68:d9:
                    5e:1d:7f:5f:f6:dc:d0:70:70:48:5d:f2:a5:80:c0:ff:
                    8b:80:0c:a2:17:d8:98:bd:60:af:1d:5d:eb:e7:37:d6:
                    d0:ba:15:5d:ce:e0:44:fe:90:b7:65:7d:0c:61:12:e1:
                    63:8f:d2:a0:25:bd:08:ac:33:69:ed:65:c0:be:06:37:
                    63:56:e7:e3:1a:1d:0b:8d:99:81:a3:25:e7:c9:43:ed:
                    df:26:75:29:55:95:dc:18:d4:b8:8b:82:7c:94:44:a4:
                    65:49:54:39:7b:af:d5:bb:e2:3f:ca:b1:97:cd:75:bc:
                    32:5f:58:60:b0:ac:ec:23:91:34:fb:44:82:2e:f6:b7:
                    64:35:e7:bd:10:86:4d:d0:2c:6d:7d:82:52:33:6c:37:
                    e3:29:e4:84:ac:75:74:e4:69:21:78:4c:24:b4:ba:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:d4:d6:33:fc:50:a4:ee:49:7c:68:72:aa:c0:83:09:
        14:65:bf:b8:2e:e7:32:97:15:19:92:7c:e9:2b:a2:99:
        08:05:22:7b:2d:44:ff:89:df:01:6b:a7:2d:2a:e4:8b:
        70:b0:18:5c:f1:5c:c9:87:72:f2:d5:e8:8b:a8:f1:c8:
        c0:2f:07:c5:2e:d0:5c:5a:fc:ec:ab:aa:d3:4b:09:94:
        39:94:08:fc:d1:0c:f8:43:9d:0f:8f:7f:11:d4:e9:01:
        39:f4:d2:6c:6f:18:4c:8e:68:41:96:53:11:a3:38:13:
        54:37:ad:f5:43:bc:6a:32:bb:b3:d1:d4:c0:7c:68:65:
        6e:89:32:51:8f:06:92:3a:9e:53:a1:28:84:9b:a3:75:
        10:71:c0:1b:1b:02:d8:82:23:b3:68:25:4c:38:95:e2:
        87:43:dd:18:fd:35:2f:3c:c6:6f:6c:ca:5e:50:3b:43:
        70:b3:da:f4:85:ad:b7:36:39:48:01:f3:ab:24:c4:9d:
        e7:8d:fd:20:b0:9d:3c:f3:ab:90:ed:6a:a9:ec:2b:4e:
        6e:f1:5e:fe:f2:41:78:47:1d:81:fb:ca:e0:65:db:84:
        1e:7b:39:dd:f7:01:30:74:08:61:5f:0f:cf:9b:52:aa:
        34:5f:d3:34:2d:bc:4c:4e:57:5e:5f:de:12:49:d8:7b
    Fingerprint (SHA-256):
        30:26:5B:7E:71:D6:42:C5:7D:E8:F7:86:4D:00:7F:E2:B8:B0:DF:1A:7B:59:88:9A:9C:91:EA:DE:24:84:26:2B
    Fingerprint (SHA1):
        28:0C:92:D0:F4:40:7C:43:48:91:AB:BF:4F:84:E8:47:C0:20:2D:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3511: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115365 (0x1e67be25)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:53:41 2017
            Not After : Tue May 10 11:53:41 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:aa:4e:5d:dd:d5:2d:00:2e:7d:c3:4f:3c:ab:b7:72:
                    fb:38:38:ae:fe:1a:3b:4e:49:4b:c6:4b:c3:f4:77:a0:
                    33:97:59:4d:9e:da:17:6e:01:99:50:09:80:19:04:68:
                    36:07:ec:a3:45:e4:6b:d8:32:2a:99:f0:16:6a:20:da:
                    e9:4a:14:b7:16:52:15:66:f2:a6:7c:50:96:cb:97:81:
                    f1:90:af:16:f4:60:20:ca:e6:10:36:57:98:d5:68:d9:
                    5e:1d:7f:5f:f6:dc:d0:70:70:48:5d:f2:a5:80:c0:ff:
                    8b:80:0c:a2:17:d8:98:bd:60:af:1d:5d:eb:e7:37:d6:
                    d0:ba:15:5d:ce:e0:44:fe:90:b7:65:7d:0c:61:12:e1:
                    63:8f:d2:a0:25:bd:08:ac:33:69:ed:65:c0:be:06:37:
                    63:56:e7:e3:1a:1d:0b:8d:99:81:a3:25:e7:c9:43:ed:
                    df:26:75:29:55:95:dc:18:d4:b8:8b:82:7c:94:44:a4:
                    65:49:54:39:7b:af:d5:bb:e2:3f:ca:b1:97:cd:75:bc:
                    32:5f:58:60:b0:ac:ec:23:91:34:fb:44:82:2e:f6:b7:
                    64:35:e7:bd:10:86:4d:d0:2c:6d:7d:82:52:33:6c:37:
                    e3:29:e4:84:ac:75:74:e4:69:21:78:4c:24:b4:ba:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:d4:d6:33:fc:50:a4:ee:49:7c:68:72:aa:c0:83:09:
        14:65:bf:b8:2e:e7:32:97:15:19:92:7c:e9:2b:a2:99:
        08:05:22:7b:2d:44:ff:89:df:01:6b:a7:2d:2a:e4:8b:
        70:b0:18:5c:f1:5c:c9:87:72:f2:d5:e8:8b:a8:f1:c8:
        c0:2f:07:c5:2e:d0:5c:5a:fc:ec:ab:aa:d3:4b:09:94:
        39:94:08:fc:d1:0c:f8:43:9d:0f:8f:7f:11:d4:e9:01:
        39:f4:d2:6c:6f:18:4c:8e:68:41:96:53:11:a3:38:13:
        54:37:ad:f5:43:bc:6a:32:bb:b3:d1:d4:c0:7c:68:65:
        6e:89:32:51:8f:06:92:3a:9e:53:a1:28:84:9b:a3:75:
        10:71:c0:1b:1b:02:d8:82:23:b3:68:25:4c:38:95:e2:
        87:43:dd:18:fd:35:2f:3c:c6:6f:6c:ca:5e:50:3b:43:
        70:b3:da:f4:85:ad:b7:36:39:48:01:f3:ab:24:c4:9d:
        e7:8d:fd:20:b0:9d:3c:f3:ab:90:ed:6a:a9:ec:2b:4e:
        6e:f1:5e:fe:f2:41:78:47:1d:81:fb:ca:e0:65:db:84:
        1e:7b:39:dd:f7:01:30:74:08:61:5f:0f:cf:9b:52:aa:
        34:5f:d3:34:2d:bc:4c:4e:57:5e:5f:de:12:49:d8:7b
    Fingerprint (SHA-256):
        30:26:5B:7E:71:D6:42:C5:7D:E8:F7:86:4D:00:7F:E2:B8:B0:DF:1A:7B:59:88:9A:9C:91:EA:DE:24:84:26:2B
    Fingerprint (SHA1):
        28:0C:92:D0:F4:40:7C:43:48:91:AB:BF:4F:84:E8:47:C0:20:2D:AC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3512: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #3513: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115370 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3514: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #3515: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #3516: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115371 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3517: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #3518: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #3519: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115372 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3520: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #3521: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #3522: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115373 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3523: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #3524: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #3525: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115374 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3526: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #3527: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #3528: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115375 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3529: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #3530: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #3531: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115376 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3532: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #3533: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #3534: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115377 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3535: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #3536: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #3537: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115378 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3538: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #3539: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #3540: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3541: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 510115379 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3542: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3543: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 510115380 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3544: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3545: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 510115381 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3546: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3547: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #3548: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #3549: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3550: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 510115382 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3551: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3552: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 510115383 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3553: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3554: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 510115384 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3555: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3556: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #3557: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #3558: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3559: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 510115385 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3560: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3561: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 510115386 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3562: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3563: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 510115387 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3564: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3565: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #3566: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #3567: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3568: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 510115388 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3569: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3570: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 510115389 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3571: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3572: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 510115390 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3573: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3574: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #3575: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3576: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3577: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 510115391   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3578: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3579: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3580: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3581: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115392   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3582: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3583: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115370 (0x1e67be2a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed May 10 11:53:43 2017
            Not After : Tue May 10 11:53:43 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:9a:5c:5e:cc:33:b7:7e:1e:4b:90:ee:1a:b2:03:20:
                    5d:f2:1d:14:f5:91:e1:7b:1e:d4:68:64:2f:a4:fa:47:
                    44:4b:f8:3a:86:3d:10:59:3a:61:09:19:a7:47:ff:9d:
                    d7:b3:04:17:2e:2b:98:9c:ed:eb:aa:ec:59:c2:66:d7:
                    a1:b3:bd:d8:ac:dd:c1:95:50:5c:f0:92:1f:40:0e:e9:
                    98:60:b3:f4:00:b4:72:1a:4e:47:e2:b0:3e:6b:0a:80:
                    84:b5:62:d9:05:9d:38:58:1e:37:d1:4f:f4:7e:3e:77:
                    27:5d:74:cc:cb:e7:e4:ec:89:c2:24:3c:ae:69:80:ca:
                    c1:99:20:a6:37:b1:56:e8:09:c4:8a:45:66:5a:60:66:
                    ee:4b:9c:bd:69:c8:cf:16:f7:f8:ed:3a:a9:98:6d:ca:
                    ad:21:bf:0b:e4:c4:88:9f:b8:98:5f:1a:45:81:fd:73:
                    d2:16:b6:45:02:d8:30:4b:38:44:38:cd:12:ca:6d:70:
                    b5:b1:b5:10:62:d4:b7:97:0e:8e:fb:09:3f:7c:ce:62:
                    bc:31:fb:9f:f8:db:3f:d6:b9:51:a3:02:3d:39:08:8b:
                    a5:ad:ee:65:b5:57:2e:c2:4e:e6:79:d3:ba:e9:9e:55:
                    6a:da:ef:00:cf:24:93:78:06:a8:05:2a:29:44:ce:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:13:cb:21:2c:3d:61:c9:17:8f:4d:98:c1:7f:39:78:
        82:83:38:af:a9:2f:a8:6f:56:e0:c3:84:3b:d2:31:bd:
        d5:3b:46:c9:47:d8:07:d2:2b:ba:82:0e:e2:39:07:0d:
        d3:75:af:3f:ab:bf:a1:76:a4:f7:44:c6:8d:58:10:83:
        52:6a:c3:22:5e:3a:b1:1b:25:9d:5f:ea:be:7e:2e:57:
        20:97:5b:fc:df:55:7d:ac:a9:34:9c:60:66:2c:8b:c3:
        76:f6:21:b7:5e:48:f6:76:51:83:22:18:32:ee:e9:2c:
        7f:22:77:3a:c6:42:3e:1d:8c:41:31:aa:1e:94:65:10:
        af:2c:1a:04:d1:c9:12:ff:f8:2d:ed:dc:8f:74:f7:17:
        4b:ce:85:25:21:43:15:69:95:d0:f1:e7:09:32:12:f2:
        b0:8d:90:1c:35:60:70:9a:41:8c:12:61:05:dc:f1:d2:
        c5:eb:dd:02:03:4a:d3:a2:61:71:47:1c:7b:9d:2c:18:
        88:8c:22:fb:09:48:51:d3:a4:24:71:09:d2:8e:74:b1:
        2f:68:19:16:6a:cd:25:71:9b:52:1f:24:57:3e:ec:7a:
        31:fa:9c:5d:15:e8:d5:6f:05:5b:5a:5e:a4:48:a7:49:
        a3:a6:f9:35:5b:27:b4:e6:2c:27:55:84:a5:f3:a1:f2
    Fingerprint (SHA-256):
        DF:97:0D:EA:0D:91:83:1A:1E:12:A0:90:C4:17:50:A6:D9:5B:24:2B:94:E4:2D:91:8F:19:F1:42:86:B5:55:DC
    Fingerprint (SHA1):
        4D:F3:F9:96:FE:16:E5:31:EB:AC:5B:19:3F:51:40:7A:A8:E9:A1:C5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3584: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115371 (0x1e67be2b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed May 10 11:53:44 2017
            Not After : Tue May 10 11:53:44 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:95:f9:7a:2b:f1:a5:dd:10:8c:7a:5b:ac:06:64:3d:
                    9d:6d:95:ac:cc:b1:6b:cf:67:cd:d8:46:f9:e7:65:7c:
                    a2:9e:36:b9:ce:75:95:de:2e:c7:37:28:08:a6:de:e3:
                    a4:b0:81:ed:a4:8f:69:0f:5c:1f:f5:a6:bd:9a:8d:1d:
                    15:2d:5f:b2:d2:5c:0a:08:4b:14:ef:f5:ed:92:b6:a4:
                    98:36:e8:44:82:f3:c1:82:55:34:f7:22:dd:66:74:5b:
                    29:7c:6d:20:1c:67:f4:12:fd:bf:16:78:63:0e:96:44:
                    2d:68:db:84:28:1e:ac:53:88:74:7e:cc:95:6f:04:c5:
                    b0:74:01:29:23:40:4a:e2:e2:a2:61:cf:1b:30:bd:ac:
                    1d:f0:2a:87:65:1b:e5:cc:9e:7b:75:c2:00:f6:06:b4:
                    9b:7d:a6:49:80:36:63:fc:75:ac:ad:25:38:5f:62:7f:
                    a7:47:c9:c6:e4:7c:c7:80:2b:35:81:cf:b1:71:63:46:
                    71:20:f3:96:b6:1f:38:f9:a1:65:5d:3f:bf:f6:ab:45:
                    2c:ae:86:e6:9e:7b:75:fe:01:b3:0e:2b:2c:e2:b1:eb:
                    fb:38:d5:8b:5b:fe:12:a0:ea:85:52:da:66:a2:7c:ce:
                    a8:de:91:d5:dc:97:6d:48:f7:1a:b5:e8:8e:8c:7f:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ce:61:3b:c2:0f:fb:ea:64:5b:cd:8b:fb:44:38:7d:8e:
        65:28:8a:4c:38:e3:48:a4:67:91:14:ec:7d:d3:ab:aa:
        c7:ca:af:dc:73:01:8f:46:8c:13:f2:71:df:03:d8:f3:
        01:8a:fa:c1:3e:ab:f0:26:84:70:3a:66:9a:60:d0:da:
        65:ba:d0:f2:8f:d2:10:39:b7:be:eb:77:a0:cb:ca:c6:
        ee:f1:de:69:32:b4:43:2a:29:ea:e2:b9:e4:f3:5d:68:
        ae:8c:2b:0c:03:82:61:40:fc:90:ee:e1:f7:1e:cf:92:
        c4:af:68:ea:5c:16:e3:96:d8:a8:b3:f0:5f:4a:0d:82:
        87:d7:8d:c3:f3:3a:53:38:a8:ad:de:ec:e9:96:d4:ce:
        4d:55:d7:94:cb:10:9b:f4:ce:36:c6:89:b1:62:5f:e0:
        29:07:49:82:49:6f:04:02:80:d9:69:da:b5:e6:8c:fb:
        13:37:e7:a3:95:fc:18:6f:64:64:e6:38:5d:6d:0e:42:
        c6:6d:70:14:f3:10:c1:ba:8b:f6:cf:31:94:e1:c9:7d:
        ac:65:26:2e:f3:80:f3:1e:5f:fe:34:19:9d:56:c3:ac:
        7e:53:82:4c:4e:ea:a4:d6:f8:44:ff:e0:f6:47:13:31:
        76:a3:08:44:00:44:68:5a:94:6a:87:ca:95:3d:ca:7d
    Fingerprint (SHA-256):
        02:FB:7C:32:3E:5A:29:35:12:C5:46:5C:01:6B:19:1D:0B:46:77:9A:9A:2D:EB:5E:D6:D0:AF:0F:10:04:E0:4D
    Fingerprint (SHA1):
        62:05:6B:34:AF:10:68:76:98:23:7F:BC:46:C2:80:01:FE:AE:B5:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3585: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115372 (0x1e67be2c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed May 10 11:53:44 2017
            Not After : Tue May 10 11:53:44 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:0b:d1:bd:c9:c3:c2:17:47:6b:f8:cd:ab:f3:49:98:
                    1a:a8:9e:5c:88:d9:b0:44:f2:1d:97:5f:77:14:ec:d1:
                    14:1e:3e:1f:a2:e5:af:b4:45:f5:61:c8:36:2c:66:c2:
                    ff:3b:c7:b7:e6:f2:b1:28:0d:88:66:0c:28:cb:d0:3b:
                    af:27:a1:55:5e:e7:c0:77:bb:ec:92:47:1d:93:8b:a5:
                    5e:57:b7:68:c6:de:8e:71:5c:c7:b5:62:ee:e4:f8:f3:
                    06:12:98:22:ae:e0:90:83:55:c9:94:5f:a8:53:eb:81:
                    e5:3c:09:df:15:10:c7:68:24:b1:6b:9b:80:bc:c0:76:
                    ec:98:f1:e1:55:66:ba:e9:d2:a1:3c:41:41:71:49:a2:
                    60:35:2d:85:81:a5:51:ee:99:c9:ad:5e:c1:b5:3d:7a:
                    92:b3:f5:73:b6:21:8a:39:a3:41:26:93:b2:d5:27:68:
                    63:a8:33:4b:50:41:aa:e5:0b:f3:3a:50:2f:ed:1a:ca:
                    74:3e:9b:42:e0:52:d3:52:8b:d3:87:cf:5a:25:c6:27:
                    01:f6:16:c1:9d:74:c0:d1:5d:f9:43:3d:0c:ef:da:5e:
                    ad:38:06:ac:54:16:f6:b1:d2:b6:81:ce:fc:e0:37:f6:
                    b0:92:8c:14:6d:d6:9a:7d:8c:4e:c3:b9:c4:b6:a4:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:80:6f:52:50:33:e0:c7:23:6c:07:fd:8c:98:af:94:
        85:fd:61:d2:8e:c9:18:e0:41:52:6e:00:36:05:66:fe:
        86:a3:0b:f0:4f:be:af:f9:8a:8d:d4:59:ea:80:fa:da:
        c1:e8:e9:cd:0a:65:b0:63:0e:50:cb:59:09:ee:e7:97:
        e3:09:9c:35:c7:ef:5f:c6:b8:cf:fd:89:3b:80:bb:7f:
        13:5c:98:e4:91:e5:1b:0a:d1:78:fa:e7:64:c9:9a:6a:
        36:1a:b9:ff:62:eb:9a:25:65:0b:fc:da:2f:96:d9:11:
        4d:fb:37:7c:f8:ad:fb:bb:62:27:dd:5e:9c:2e:dd:55:
        d5:9b:be:5b:f8:f4:6d:a7:c1:12:06:50:7e:bc:80:3f:
        48:26:cb:f9:44:43:21:0e:b5:7a:4a:5f:4a:30:ab:41:
        8a:a2:27:83:a7:93:6e:a6:11:2e:38:83:16:26:4d:97:
        82:1e:e2:ba:e9:13:6e:10:83:e3:13:2a:b2:6a:92:ca:
        49:24:9d:85:8d:15:4e:fd:0d:e0:79:51:4c:98:57:45:
        68:8d:e5:4a:00:cd:4f:01:ee:69:5a:69:20:a8:d3:ed:
        cc:47:31:93:fe:54:c6:41:85:a3:e0:73:5a:0a:1e:db:
        94:f0:8e:af:1a:b6:80:7a:a2:f8:0a:08:57:3f:e1:fa
    Fingerprint (SHA-256):
        88:C0:2A:F0:C8:2B:FB:7B:AB:E8:87:65:02:82:1D:51:A8:A8:BE:84:A7:16:63:17:DD:50:67:48:B2:25:70:75
    Fingerprint (SHA1):
        5C:9E:1F:53:CA:6C:BB:25:CB:53:E4:CD:01:2B:BE:99:AF:4D:3A:CB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3586: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115373 (0x1e67be2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed May 10 11:53:44 2017
            Not After : Tue May 10 11:53:44 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:b3:7f:5c:2d:42:14:85:2b:85:dd:85:d6:ad:cf:0b:
                    e8:92:6b:83:fa:fd:ab:78:48:56:ac:1f:31:ca:d4:10:
                    5c:3d:5e:3b:03:80:1b:81:19:45:79:63:0b:ad:2c:b3:
                    f2:a9:d5:5e:f6:7c:b4:78:7c:aa:0a:fb:76:0e:25:43:
                    90:be:41:02:2d:d7:85:7f:3b:1c:89:fe:aa:cc:51:d7:
                    71:cd:d0:8e:1d:0e:a6:14:a4:ae:67:3e:4d:6a:54:d0:
                    fc:9e:4b:8e:ee:9a:d3:15:26:67:18:d5:ad:e4:fa:a3:
                    ea:8e:90:d7:38:cc:54:34:04:bb:b1:35:1d:78:84:f5:
                    34:80:a2:62:b7:55:e3:74:e2:85:32:98:89:d2:db:1d:
                    2f:40:7e:b5:17:f6:4d:4a:16:fe:ce:9d:9d:39:47:93:
                    c2:ae:fd:7b:be:93:00:de:08:44:d7:f0:40:84:80:6d:
                    aa:4b:86:6e:22:83:e1:98:a5:9d:d9:7c:f2:15:6e:ff:
                    d5:5d:93:56:68:87:4c:0b:f0:74:69:73:16:20:93:85:
                    92:bd:23:3a:9d:9c:76:44:48:df:4a:47:e9:29:10:3c:
                    f0:eb:5a:f9:0b:97:e9:42:0f:64:57:bd:4e:ca:6c:17:
                    b9:dd:93:30:d9:71:0b:95:54:7b:24:de:17:8a:95:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        24:76:9b:60:b6:1b:81:26:d3:db:db:e2:25:c7:4e:57:
        d5:7a:52:cd:cb:21:2d:3d:d1:63:8f:0b:f0:22:d8:96:
        9e:bf:08:04:9c:0d:4e:5d:15:e2:2e:8a:ce:55:9a:f5:
        2c:f1:ec:fc:36:6d:1f:59:ab:c7:62:4a:1d:7a:2d:4d:
        8f:f8:8f:d5:a5:02:06:12:08:05:43:f3:8c:d9:f4:91:
        2d:ee:db:29:55:98:58:34:e8:0e:b7:9e:6e:d7:14:e7:
        71:b4:4b:02:4a:c8:86:da:b6:05:88:b3:a3:cf:0f:07:
        a1:6f:5f:f2:47:f7:47:aa:da:90:db:1d:9b:21:4c:48:
        33:23:df:f8:b9:97:57:f8:60:a1:51:41:69:0c:1e:1d:
        1b:4f:a8:1f:fc:51:78:48:19:c0:8c:dc:5e:0d:ee:58:
        87:77:2c:23:0a:a2:b5:b3:5f:48:55:74:3a:b0:f4:a4:
        bb:ed:1c:f1:95:88:7f:87:b6:09:a0:9a:1e:77:ee:2b:
        ff:c8:86:17:b6:ca:0c:26:69:59:9e:33:15:ab:0c:4c:
        72:f6:c8:46:bc:01:8a:01:3e:1b:e8:6d:bd:97:4f:05:
        ad:28:e2:64:ce:3f:e2:b7:ed:fa:a2:3b:ea:1d:94:d6:
        b9:78:eb:ae:70:41:6f:4f:b4:84:f5:22:ae:32:3e:44
    Fingerprint (SHA-256):
        75:DC:06:CC:00:D4:13:DE:FD:07:43:36:D3:B6:DF:C9:94:2B:23:AB:03:EA:7A:A3:2C:30:32:C5:B0:C1:B0:2E
    Fingerprint (SHA1):
        A5:C2:44:ED:BC:29:5D:67:DB:C4:FE:85:06:BD:6D:46:6A:5A:F6:46
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3587: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115374 (0x1e67be2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed May 10 11:53:44 2017
            Not After : Tue May 10 11:53:44 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:a3:35:e5:20:81:48:6e:e6:87:f7:41:88:23:d2:19:
                    03:7a:d1:d8:10:88:96:20:a7:c1:27:a3:ff:09:55:93:
                    91:15:74:30:84:cc:bf:bc:e5:66:bc:e6:d6:0e:e4:3b:
                    a0:3e:97:b2:e7:ed:88:53:b8:b0:5a:65:c8:dd:2d:ca:
                    6d:51:33:43:b0:42:b9:a7:76:da:ab:59:62:52:63:15:
                    ce:55:c6:5f:e6:32:27:4b:57:5c:07:d2:ef:0c:e1:07:
                    5b:9f:cf:c8:f3:ea:7b:44:93:4b:4c:ab:79:ed:1e:b4:
                    fb:a0:c3:82:6b:d9:83:ec:e0:b5:50:e1:9a:89:6d:6f:
                    9d:49:d4:67:c3:48:3d:ad:3c:13:80:54:34:18:41:43:
                    a0:9e:1a:da:fc:69:44:81:42:66:2f:b6:17:57:ec:a4:
                    f6:3b:c2:5d:a1:cd:36:8d:e2:e3:15:5c:87:9c:ef:81:
                    05:39:0e:f0:e7:41:15:5c:6b:03:f0:a9:76:99:95:fd:
                    b3:ad:5c:85:e3:c5:a1:61:54:df:f7:91:0d:3b:c7:ce:
                    9a:34:35:e3:8d:26:b7:e4:e3:c1:82:2e:5b:6e:a9:9e:
                    3c:48:a8:b0:14:84:0a:6a:e2:3d:17:b6:89:5e:20:d1:
                    73:d7:33:99:7b:2a:3a:29:c4:1a:55:a9:fa:6e:7c:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:aa:70:cb:9d:4c:32:d7:b4:4b:01:91:83:53:e2:89:
        90:2e:61:b9:b1:a9:58:12:32:af:cd:c5:67:2d:48:24:
        b3:d2:13:89:dc:57:a1:49:0b:e3:54:f0:05:29:0d:11:
        dc:c5:bb:cb:08:41:e3:09:e8:c5:7d:04:09:45:0a:9b:
        70:cb:ff:75:99:13:03:59:b6:a3:04:d7:bb:93:0e:d1:
        56:6e:3d:e2:68:e1:e3:ad:04:12:bb:46:43:f2:0c:bf:
        83:43:09:7a:84:e9:ba:27:cb:23:b1:87:ef:ed:93:24:
        3c:f9:51:9d:fc:46:fe:74:de:9a:bb:4e:e3:17:4b:a9:
        41:90:b3:af:fb:db:02:6d:0b:4e:cf:86:00:34:46:3b:
        88:4a:19:2b:cd:50:88:ab:4e:82:ab:31:7c:53:e6:2a:
        95:e5:a0:04:39:b0:ee:ba:57:b8:1c:ad:fe:4f:76:45:
        f1:73:32:e8:9b:54:82:16:7b:f9:e8:15:00:e5:05:fd:
        4d:fd:69:26:da:af:41:e5:8d:59:cb:8e:4e:94:bb:6a:
        27:05:3a:64:45:84:92:da:3a:c8:bb:0a:dc:dc:7e:66:
        27:03:72:35:cd:bd:41:11:98:08:52:23:1e:d4:bf:6b:
        13:65:62:c5:5c:4a:f8:53:56:1e:87:a7:67:9c:c5:83
    Fingerprint (SHA-256):
        16:46:91:D6:69:19:44:EB:62:A5:5F:71:35:A0:E0:58:F4:C9:7B:9B:E8:F2:37:1B:30:5B:5E:46:91:41:97:E9
    Fingerprint (SHA1):
        B1:B6:23:09:79:A9:77:5C:DF:F3:6E:1F:77:CC:49:41:4C:DF:B8:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3588: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115375 (0x1e67be2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed May 10 11:53:45 2017
            Not After : Tue May 10 11:53:45 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:03:a4:65:3b:5e:09:a9:49:44:0c:fe:46:3d:43:8e:
                    9f:c6:d8:33:15:17:b2:57:c4:02:0a:0f:ca:66:16:e4:
                    cd:2d:d1:30:fc:5f:56:60:04:f8:77:7c:b7:b6:03:1d:
                    c3:6b:e8:4d:33:27:29:76:98:93:5a:fb:1f:ee:25:1d:
                    35:c0:a2:5c:56:e3:1e:75:00:0d:02:5f:a0:b8:84:85:
                    2d:49:eb:f5:df:b9:43:f1:1c:5f:20:2e:a6:91:20:94:
                    8f:24:59:52:e4:b6:6c:68:5a:59:ab:e1:e4:12:f6:97:
                    c3:02:2d:28:85:b7:fd:ca:22:e2:56:0d:86:19:0a:8e:
                    45:99:70:b3:91:36:8f:e8:3b:72:6a:8c:19:d2:e9:e8:
                    1e:ae:75:da:6f:24:e6:97:c2:5d:b2:0e:ae:c7:bf:ad:
                    5a:a4:23:5a:ea:9e:8b:ec:22:ff:41:39:8e:f1:24:13:
                    ea:22:4b:a3:57:1e:69:ed:8b:57:61:9d:b8:5b:3f:7a:
                    5e:98:22:ef:ea:26:e5:2f:ac:a5:75:63:6d:70:8c:e6:
                    97:fd:81:7e:a5:09:d6:3b:4f:bd:4b:d2:0a:ed:73:2b:
                    fa:67:ff:6d:50:38:37:64:5e:6e:c5:5d:97:33:ef:f2:
                    c5:ec:59:94:7b:a1:75:97:ef:14:f5:08:a7:35:b8:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:69:3b:a7:62:26:78:80:6f:f0:6c:b3:de:3d:c7:42:
        84:1b:12:0e:75:57:ba:1c:fb:1e:af:5f:39:ab:d1:94:
        21:86:8e:e4:2c:4b:09:52:79:a8:41:ab:0a:b6:0c:56:
        ec:57:65:3b:0f:7e:e8:b0:07:cf:90:ce:09:d1:fc:01:
        6e:89:5e:02:7a:8f:66:b0:f7:92:94:f0:c6:21:1e:36:
        37:d6:74:43:ab:90:13:49:be:45:de:ad:84:c7:9f:d3:
        9b:9e:d1:e7:ce:8a:08:5c:1a:56:f3:24:f6:d9:a8:a3:
        30:98:48:a0:ea:b5:32:c2:fd:db:26:54:f4:05:83:c7:
        b3:5a:21:1b:b0:f5:24:a3:b8:bf:d6:9d:d6:32:60:87:
        d6:e8:fe:e1:31:25:7d:dc:11:8e:c6:87:2f:02:38:ef:
        6b:b5:d7:2f:7f:e2:20:ac:5a:74:9d:11:5c:6f:87:53:
        1f:b6:92:11:a0:10:f0:cf:f0:50:c0:53:8e:47:96:06:
        f4:38:e2:e3:dd:a2:ee:c1:d2:33:6c:bb:5c:68:aa:9d:
        a5:59:2a:d2:cc:f5:e6:21:48:90:6e:b0:76:44:a4:13:
        6e:34:04:5b:7f:ec:32:7b:cf:f8:ed:a1:29:ab:4a:ef:
        e0:f3:c4:4f:a8:b6:ff:33:18:fb:7a:3d:6d:86:d7:b5
    Fingerprint (SHA-256):
        48:74:24:E8:FB:F9:6E:8B:06:F7:EE:5D:25:EB:0A:97:FA:FE:F4:47:85:AF:3B:99:36:25:94:FD:30:88:00:8B
    Fingerprint (SHA1):
        4B:8B:39:F7:5E:D0:0B:60:49:5C:F9:3E:F4:E8:CA:06:C8:20:54:0A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3589: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115376 (0x1e67be30)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed May 10 11:53:45 2017
            Not After : Tue May 10 11:53:45 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:18:23:dc:02:2d:e8:f5:d5:11:5c:96:1f:97:7f:3e:
                    be:68:16:d4:a0:6a:20:96:15:3e:e8:34:eb:86:cc:3d:
                    ec:c7:3d:64:59:6c:8f:5d:62:14:4e:d9:da:ca:e8:30:
                    e6:0c:92:f0:e5:e0:e7:d9:40:a7:87:1b:05:f1:54:8f:
                    ad:ca:d1:91:61:6b:a2:1c:74:fe:a4:3a:a5:af:28:5e:
                    48:fe:ff:3c:26:7c:01:bc:78:2c:61:27:9d:5b:0b:a8:
                    25:d1:c2:ea:be:66:88:73:b8:58:f5:4a:b1:c5:30:d8:
                    73:6e:53:28:dc:d6:7c:fc:fe:3c:d0:e4:33:e3:be:8c:
                    68:22:3c:35:35:9e:f4:d9:83:39:fe:6d:e4:42:3f:86:
                    3f:6f:73:fb:94:e6:6a:eb:be:b3:e4:b4:41:b2:df:68:
                    2c:6f:84:72:0b:09:6b:ed:62:8f:6c:09:e4:31:4f:7f:
                    33:44:cc:da:92:fc:b8:13:f4:e7:42:b9:b3:a8:dd:42:
                    09:91:73:11:1c:f5:57:1b:08:3e:3d:e3:a9:b8:ff:92:
                    27:0d:c4:9e:1a:fb:78:35:c5:72:49:b2:e0:7e:e2:f1:
                    76:71:24:65:2c:d2:32:2f:48:85:a8:c7:6e:83:e1:99:
                    5c:d3:10:cb:9e:40:81:b5:d0:72:0e:e7:c9:47:2a:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:1f:bc:63:46:d1:76:a4:87:47:51:de:4b:d6:a6:68:
        24:e9:d8:fa:7a:b0:6a:49:6e:8d:26:a5:4e:79:7c:53:
        b5:87:fc:ca:e0:bf:3e:c7:ff:27:24:1f:f5:e7:77:ef:
        27:0c:aa:aa:07:f9:15:86:97:fe:9f:9d:23:35:b5:6c:
        b4:40:ca:f0:f7:05:2c:c6:db:c6:d6:ae:7d:1b:75:f4:
        96:82:be:e6:74:73:12:8e:0b:ad:51:15:31:e4:57:c7:
        b9:de:5c:cc:5b:04:51:57:04:b5:b5:cf:24:c1:2e:58:
        99:8b:fe:a5:e2:67:8c:f4:cc:cc:c9:9d:6b:5c:c0:57:
        8c:f7:f2:e8:9a:ae:3c:87:e2:58:cc:13:5e:17:4e:99:
        04:ef:b6:e8:30:27:02:bf:e5:c2:12:50:e3:29:8f:89:
        f8:05:77:2b:14:5a:c1:b0:54:4a:57:d5:86:9a:f9:7b:
        6d:87:bc:22:ee:ea:f8:cc:93:04:39:fe:75:ce:8a:1a:
        df:53:4d:93:9c:86:c1:40:6f:1f:ee:5f:8b:34:1c:bf:
        35:01:2d:e3:66:a0:a7:ed:bc:6d:8e:79:4e:55:5b:a0:
        80:d9:92:62:cb:5b:a6:10:cd:89:4f:8d:e8:d1:b9:ff:
        39:21:37:14:95:0a:49:a0:50:3d:ae:ab:52:51:4e:41
    Fingerprint (SHA-256):
        75:4B:46:43:DB:98:E0:68:D8:C6:94:B0:B1:63:12:42:2A:B0:55:79:AA:20:28:17:AF:C8:37:FA:CE:4A:AE:18
    Fingerprint (SHA1):
        6D:6D:64:03:12:E7:3A:4C:E4:CB:04:14:57:EF:CD:32:77:B6:6B:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3590: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115377 (0x1e67be31)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed May 10 11:53:46 2017
            Not After : Tue May 10 11:53:46 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:4d:7f:f4:ee:8a:e0:c5:7c:9c:9d:37:11:26:61:2e:
                    5a:5e:ef:c3:d3:d6:de:7d:89:2b:2a:c1:bb:42:d7:0f:
                    39:f2:8f:d5:b5:c7:67:83:2d:fa:8e:ff:b5:0f:3e:ce:
                    3d:e3:f0:5e:fc:43:01:e0:19:af:94:52:16:da:d3:18:
                    a7:81:36:b2:dd:b3:79:a0:b2:62:ce:1f:41:e7:8e:86:
                    37:01:58:82:79:00:aa:0f:61:ab:b0:16:64:6b:8e:6d:
                    12:85:5c:2b:c9:b8:6d:19:47:fc:cf:8f:5b:b4:c3:d2:
                    23:47:63:7e:8c:fd:71:26:80:0c:80:90:3f:ce:83:20:
                    c1:27:bd:09:21:c3:8f:c3:c1:96:4a:e8:fe:b5:8d:38:
                    85:b7:ac:af:a9:c7:ff:cb:38:5e:bc:47:c1:a9:8d:3b:
                    80:ae:d1:0d:46:fa:9e:6c:6a:72:df:ab:3f:b6:86:8a:
                    26:1f:3a:68:4e:68:e6:39:cc:8a:4e:a3:b1:d5:76:75:
                    5e:4f:f8:76:f3:0a:02:96:e2:e3:d3:cf:0f:2d:e7:2f:
                    c2:01:57:8e:f0:9a:0e:52:d8:a5:93:63:11:9f:b1:28:
                    61:cc:5e:53:c0:17:1b:a7:9f:2e:c9:78:47:e0:44:3b:
                    ab:f5:ca:14:a4:43:b7:ee:9d:c4:42:17:6b:5a:a4:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:ef:a6:06:96:f5:48:a1:99:c7:d9:10:0a:cc:9e:6a:
        23:16:20:0d:6a:b0:78:57:c4:79:8f:35:59:5f:30:5e:
        24:90:47:84:a3:d9:a9:9b:46:3b:e4:31:23:7f:62:4f:
        18:c8:33:e4:c4:06:e0:21:be:cf:3b:88:b9:86:ff:1b:
        25:96:72:bb:c4:4e:d6:46:84:e1:4e:ec:03:4d:d8:c8:
        33:94:5c:63:63:1e:7f:c1:64:ea:26:ef:2d:93:c9:0d:
        e0:a3:43:a9:56:70:41:0a:88:63:2a:94:d2:ab:fe:94:
        8e:ac:21:b3:e2:ce:a5:49:53:90:a1:a1:3b:b8:cd:ae:
        38:79:1d:5c:f7:67:15:b8:24:f5:98:36:21:d0:5e:76:
        b7:64:79:74:97:4e:fd:14:ef:28:79:d5:31:df:ad:0c:
        d1:79:ed:01:23:b6:c4:15:96:f9:1b:c5:4e:eb:be:c1:
        39:4b:67:b4:d5:d6:6e:69:37:53:3f:68:66:de:1f:b3:
        56:c3:a1:c0:a8:76:38:dc:55:1c:56:f5:cf:e3:59:2e:
        9b:08:68:9b:36:8c:01:52:ad:1c:f4:44:cb:ad:a4:34:
        54:93:ee:18:4e:fb:14:56:c4:fe:0a:a8:29:e7:6d:22:
        91:9e:d3:08:ba:a5:a5:cf:2f:86:f8:ee:5c:49:f2:d5
    Fingerprint (SHA-256):
        07:D2:A7:5B:D3:6C:9A:E4:D6:88:F8:42:1A:85:D5:53:5F:EC:3E:10:E3:10:A7:A1:75:4E:06:D5:73:F3:4D:16
    Fingerprint (SHA1):
        2C:1B:D5:AB:F5:A5:BF:D3:71:F3:09:F9:49:24:66:F8:8E:40:BA:7A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3591: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115378 (0x1e67be32)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed May 10 11:53:46 2017
            Not After : Tue May 10 11:53:46 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:5b:0e:ba:ba:f1:fc:9d:35:9f:4f:fc:e5:f9:b7:e5:
                    d2:21:b9:af:65:e4:f7:4d:0a:32:92:42:63:59:0d:6e:
                    0e:25:73:09:f2:bc:d8:43:d1:f8:8d:78:cc:71:f5:6f:
                    ea:15:48:d5:69:a2:84:99:5f:35:22:2b:3b:07:95:bd:
                    3f:47:06:b9:fb:b8:a7:52:56:09:65:81:19:65:d6:ae:
                    f6:97:aa:1f:f9:20:e9:21:88:bb:68:94:b4:dd:f0:a7:
                    b6:05:ad:90:7e:b6:50:ef:dc:64:8a:95:97:44:a6:4d:
                    7c:00:15:e8:d0:f3:d7:db:84:47:e7:08:a0:bf:25:88:
                    b9:db:8a:3b:b5:65:77:95:8b:29:57:d4:66:05:9c:4f:
                    a1:14:0f:8b:df:6c:aa:8b:8a:fe:a2:2d:57:b8:81:8e:
                    32:de:2a:af:b6:76:6b:55:81:a3:1e:33:84:19:55:32:
                    5f:d4:59:e9:06:ad:41:69:74:10:a3:c7:15:61:ed:70:
                    5e:f0:91:dd:86:90:ac:ec:9b:51:80:ed:09:79:e4:ae:
                    df:90:3f:f2:4b:7a:0a:4c:94:30:e0:a1:1f:87:0d:ee:
                    0c:ea:69:6e:56:ec:b0:31:2e:83:96:92:01:ab:f0:db:
                    0f:64:90:d1:53:5d:d9:50:dd:89:62:78:74:c9:7b:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        81:a6:e4:bf:da:d4:48:7e:11:78:0b:bf:1a:78:11:6d:
        7c:e7:d6:a6:9c:9c:8d:f1:1b:4f:83:4b:00:72:11:44:
        c0:25:39:aa:48:3f:a5:97:b2:eb:dc:8f:d5:e8:99:10:
        54:cf:23:52:b7:92:c9:47:27:14:15:88:29:79:67:66:
        3c:43:57:ac:29:ff:78:ed:4b:5d:b3:86:52:24:a9:33:
        ab:88:ab:c1:3f:32:92:c6:49:e1:11:0d:e4:f2:3b:c1:
        a4:2c:7e:47:78:dc:42:35:2b:fb:e5:91:cb:da:3c:50:
        94:26:c2:67:cf:d3:39:27:8a:19:a0:a9:31:9c:32:c9:
        d8:6a:54:05:b6:54:02:da:d9:4f:2f:0c:29:e0:eb:f1:
        34:e9:b6:db:fa:30:c6:71:a9:8a:1d:fa:de:9b:bb:34:
        ff:c3:74:a4:71:3e:0c:07:01:97:97:42:ee:90:ad:74:
        ac:e5:e5:ad:a0:aa:af:45:f6:9d:41:8b:b0:91:4d:cc:
        06:6e:9b:bd:ae:fb:ed:58:d2:66:07:ac:cd:5f:82:64:
        6f:95:d4:74:7a:c5:a5:fe:87:04:f6:ad:e5:53:4b:cd:
        9e:63:fa:bf:16:c9:15:35:fc:de:49:9f:93:1c:55:78:
        08:d3:5c:52:2e:cb:9f:cb:22:bd:bc:06:06:f5:d8:6b
    Fingerprint (SHA-256):
        22:0F:D2:A8:53:09:74:20:FB:62:A0:C6:E5:2A:CA:AB:D6:EB:20:33:F4:EB:08:EC:0F:3A:28:7A:DE:9F:6D:A2
    Fingerprint (SHA1):
        FB:53:44:69:04:5B:44:80:EB:35:23:4B:11:A6:23:47:2C:5B:F8:6D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3592: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3593: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115393 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3594: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3595: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3596: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3597: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115394   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3598: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3599: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3600: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3601: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115395   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3602: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3603: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3604: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3605: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510115396   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3606: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3607: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3608: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115393 (0x1e67be41)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:50 2017
            Not After : Tue May 10 11:53:50 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:96:e7:52:ae:b1:af:f6:8c:71:d0:4f:ab:ed:bf:19:
                    e2:aa:5c:0c:98:6b:3f:30:22:32:25:e5:db:32:e0:d0:
                    ae:08:8b:78:ea:2c:be:4f:2a:dd:0a:cb:e2:69:f9:a5:
                    e6:0a:38:cc:59:2d:30:32:1b:c5:e7:61:fa:4e:0a:b2:
                    61:33:46:53:01:95:34:d8:43:28:e7:90:84:ca:d5:ff:
                    fc:0d:0e:f4:eb:75:55:a8:39:48:e5:fd:eb:f6:7b:06:
                    26:41:dc:3e:ad:e5:de:b8:bd:59:40:80:ec:df:f9:72:
                    bb:b5:7b:2c:e2:60:56:c9:c4:00:6e:2d:8a:cc:0c:02:
                    0b:0f:6f:4d:1b:cf:59:ef:6b:99:68:98:16:27:b5:fa:
                    fb:a0:81:bf:20:72:1b:1d:0b:28:27:fd:91:7b:0f:33:
                    55:fa:ab:d0:7d:a9:7b:93:17:eb:b6:13:01:f2:76:d6:
                    fe:89:3f:e1:10:7e:4c:fd:79:d3:87:b7:30:90:57:d0:
                    fa:7e:30:4b:1f:e8:72:51:30:9a:25:97:a3:84:47:af:
                    42:9b:c7:55:71:25:1d:5f:52:3b:a0:52:24:38:8f:58:
                    2a:13:91:a5:80:0e:4a:76:a0:93:eb:82:b6:c0:5f:85:
                    fb:92:0e:aa:da:0a:07:a6:31:d0:9d:f1:31:f8:b3:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:67:19:2d:e9:41:4f:8b:5a:e9:f8:9b:90:a0:35:fc:
        41:d9:2d:81:4c:d5:90:29:da:ed:91:49:d8:55:01:47:
        34:83:c0:0a:6d:44:f5:23:bd:1c:25:a9:a2:3d:fb:5e:
        0c:df:47:84:7b:7a:15:c9:1d:c0:97:5d:70:97:3f:25:
        c8:54:e8:44:cf:98:ac:30:67:ab:f2:87:77:17:44:80:
        f0:4a:a7:ca:3c:70:5e:d8:5f:35:59:a5:c3:04:fa:35:
        f1:f6:6e:87:f2:05:74:12:12:eb:1d:53:b9:d7:11:9f:
        2b:18:9e:d9:93:68:a1:9e:5d:44:3c:48:cb:e7:cb:49:
        f1:07:55:eb:d3:0d:fb:8d:55:99:41:92:de:7b:c2:ca:
        23:fb:7d:3f:50:c2:b0:d3:21:e5:a4:18:13:8e:2e:0e:
        ed:90:16:af:58:41:ca:15:95:4a:c0:f0:3c:1f:d0:b3:
        8a:77:88:1c:e8:c7:56:31:aa:ad:ea:3b:79:04:9e:64:
        76:7c:10:ef:7b:d2:fa:82:88:3e:28:0a:e6:93:59:bd:
        13:fb:06:e1:45:1a:eb:ad:af:67:bc:46:6c:65:a2:a2:
        fb:92:b5:0d:7f:99:4a:aa:c1:db:68:b6:fa:2c:b8:9a:
        72:78:2b:42:b8:ee:f2:61:6e:a7:72:91:4a:0d:69:e3
    Fingerprint (SHA-256):
        5C:E1:C7:C9:E4:0C:28:56:A5:9A:E8:FD:65:5A:21:86:40:34:C9:29:E5:7D:DF:4A:4F:BA:93:E2:5D:B2:49:4E
    Fingerprint (SHA1):
        D7:19:F8:11:62:3A:29:C5:F7:08:67:7D:D6:14:F7:CF:BF:98:DC:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3609: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3610: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115394 (0x1e67be42)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:50 2017
            Not After : Tue May 10 11:53:50 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:85:d5:58:2c:17:85:09:e2:e3:de:3a:a3:97:18:47:
                    5d:32:51:36:ea:c8:c6:f5:d4:a3:59:0d:53:c6:51:bd:
                    91:08:1f:b0:b4:5b:e8:02:8c:07:ca:5e:6a:9f:13:a9:
                    a7:e9:64:a2:c5:0e:7b:2a:b9:93:ce:72:53:de:71:f7:
                    fc:8b:2a:2c:53:56:71:86:ea:b2:39:48:6b:9a:6a:45:
                    81:48:8c:fa:d3:10:37:4d:4c:f8:2c:b7:b6:f8:43:a5:
                    ae:47:d2:6d:dd:ed:c0:9d:bb:9c:0f:85:c0:27:26:1e:
                    e0:5e:d3:5a:16:61:6b:68:5e:c1:16:78:e9:41:32:53:
                    7b:7a:11:2d:3d:72:5f:19:9a:ae:2c:31:ec:48:b7:8d:
                    c7:1e:17:ca:6c:61:3e:32:9e:01:05:b0:b0:ef:9a:ee:
                    5a:91:a0:01:05:20:d6:9d:a1:d9:58:a8:89:81:44:9a:
                    c7:9f:53:05:15:55:07:37:69:ec:27:50:7a:1e:91:77:
                    82:18:d8:7c:20:11:dc:9d:a2:14:08:56:43:68:2c:00:
                    eb:54:32:d3:02:26:5c:8c:84:5a:4c:fd:30:be:fd:1e:
                    fb:1c:d1:a0:17:6a:49:c0:5f:94:ec:94:0c:59:d9:05:
                    08:b7:ae:fd:3c:10:24:49:22:93:13:27:d5:be:e9:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:16:48:56:57:37:31:8c:e4:f2:99:e0:03:a2:7d:d4:
        0b:50:dd:c3:98:b4:8a:5e:8d:79:55:19:a9:f4:ca:dc:
        b8:2a:fc:d9:47:12:08:d3:c5:1e:c9:d8:6d:47:cd:2f:
        bd:85:62:c8:9c:b5:09:10:01:3f:a7:50:63:21:70:1c:
        52:56:72:03:86:3a:db:44:51:df:2c:79:81:97:6f:96:
        90:b0:83:0e:f2:11:ed:00:eb:20:1d:fd:8b:05:3e:77:
        ae:f1:aa:53:92:92:d9:25:e0:66:9d:d1:48:81:79:10:
        e6:9f:dd:18:ac:b7:55:94:75:7a:ad:51:1a:c2:4a:71:
        a2:b7:02:12:dc:f2:4f:b5:52:ff:d2:fc:c2:70:66:55:
        07:f7:bf:7d:2e:c2:4d:80:3c:ef:a0:aa:54:b0:92:a8:
        4f:72:76:1b:bc:03:ff:64:d2:27:b7:2a:73:20:9e:e3:
        08:63:83:e9:08:e7:34:29:5b:96:b8:8e:67:a9:64:3c:
        32:84:10:5d:99:7a:ec:bc:2d:04:59:53:94:ea:2a:52:
        dd:51:c6:d1:e9:38:2d:af:e8:28:eb:e1:36:13:a9:65:
        4a:23:c6:7c:b8:6d:83:a7:0b:a7:04:6c:64:9a:cd:c0:
        e0:34:d9:6d:54:b5:00:37:98:1b:06:77:91:9e:c9:ef
    Fingerprint (SHA-256):
        8B:F9:28:56:78:04:A2:DF:AA:37:62:51:FF:5B:EB:7F:0A:02:82:B3:4D:BD:D2:DF:C7:6A:DB:E1:24:D9:CA:36
    Fingerprint (SHA1):
        C1:C7:B8:95:4D:9E:AD:EF:32:3F:B9:8D:14:1F:F4:55:6B:FA:92:29
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3611: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3612: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115395 (0x1e67be43)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:53:50 2017
            Not After : Tue May 10 11:53:50 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:94:5e:38:6e:ee:a9:48:b5:04:60:c1:48:0e:25:32:
                    a9:e9:f4:06:c0:10:86:7c:96:f9:73:fa:9c:0c:b9:75:
                    99:56:04:13:91:53:45:9e:28:7f:97:1b:75:2b:76:85:
                    31:c5:d6:72:9a:d7:9b:6c:96:e2:5a:f9:33:88:a0:1a:
                    03:e9:40:99:90:00:97:17:ce:99:65:93:41:97:df:d7:
                    26:92:67:2d:f4:a7:71:a1:1f:01:14:7c:cc:2a:c8:40:
                    00:9b:73:36:59:c8:15:95:37:b2:fb:c5:7d:6d:45:68:
                    2a:4d:77:7c:2a:52:89:4f:3d:6d:2f:20:3e:56:b4:5e:
                    3c:3a:d8:cd:ce:e5:84:29:41:b6:f4:b4:f8:eb:80:61:
                    d9:e1:59:37:28:97:8d:db:d5:7b:b8:3f:99:51:65:25:
                    7f:fd:7a:79:89:98:bd:bf:ab:d6:81:aa:0f:64:a5:e5:
                    9c:82:03:21:ba:77:22:e3:45:85:6a:43:06:b2:d9:cf:
                    e7:39:9c:4f:ce:d8:d3:30:19:c0:bd:aa:da:a6:92:93:
                    5c:9e:0b:44:ec:28:5f:6b:2a:ab:74:e1:96:68:bb:65:
                    75:4a:25:56:0b:d2:11:8d:ee:c1:ef:7a:18:b7:b9:cc:
                    6d:4e:d9:fe:d8:34:49:ef:20:0c:a7:a3:b1:8e:4b:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:b3:e2:e0:f6:b4:56:91:cf:67:26:70:cd:dc:4e:15:
        3e:06:96:93:24:31:62:be:2e:90:82:15:db:d3:63:8d:
        d8:2e:d7:34:6f:b2:d5:4c:39:c4:be:8c:3f:ee:6a:de:
        a7:eb:19:85:26:11:94:72:7d:7c:86:9d:9f:a8:5a:72:
        82:ad:81:df:db:03:92:a0:09:7a:c8:29:ef:81:10:f3:
        50:8a:a1:d5:c3:64:bb:1d:cb:7f:99:b5:4d:8f:53:3c:
        9d:df:e8:9e:96:92:ee:81:e1:4d:b9:42:48:39:10:80:
        41:f6:b4:7f:5d:9a:74:a6:8e:0a:f8:07:a0:a0:95:4f:
        dc:c1:ff:d6:c6:d4:86:bc:6a:5f:34:cb:55:c4:a7:7f:
        87:77:b3:54:21:fb:1a:b1:10:98:d6:7e:bd:48:2b:62:
        7a:69:16:84:5c:6b:21:22:81:eb:0c:62:6a:bc:8a:66:
        98:83:8c:42:e1:4b:57:ff:15:d8:67:c7:94:3d:3f:a8:
        f3:83:ef:7e:50:d3:ed:84:19:07:22:f5:9c:28:12:d8:
        71:6f:64:10:7b:c5:19:62:9c:b9:5a:5d:2c:45:e0:46:
        e5:e0:2e:a9:16:46:e3:96:be:79:54:3f:36:16:c0:36:
        29:97:89:66:84:f5:a8:3f:22:8e:98:78:21:56:21:c1
    Fingerprint (SHA-256):
        F2:BA:B1:F3:C0:DC:34:6C:AC:4B:0E:B5:72:AE:A3:D7:45:41:67:C5:47:96:10:E2:A5:BC:77:10:FF:2C:72:76
    Fingerprint (SHA1):
        77:D6:3D:CC:E0:3A:30:23:B1:9E:9E:14:99:D8:88:44:93:D4:AC:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3613: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3614: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3615: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3616: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3617: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115393 (0x1e67be41)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:50 2017
            Not After : Tue May 10 11:53:50 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:96:e7:52:ae:b1:af:f6:8c:71:d0:4f:ab:ed:bf:19:
                    e2:aa:5c:0c:98:6b:3f:30:22:32:25:e5:db:32:e0:d0:
                    ae:08:8b:78:ea:2c:be:4f:2a:dd:0a:cb:e2:69:f9:a5:
                    e6:0a:38:cc:59:2d:30:32:1b:c5:e7:61:fa:4e:0a:b2:
                    61:33:46:53:01:95:34:d8:43:28:e7:90:84:ca:d5:ff:
                    fc:0d:0e:f4:eb:75:55:a8:39:48:e5:fd:eb:f6:7b:06:
                    26:41:dc:3e:ad:e5:de:b8:bd:59:40:80:ec:df:f9:72:
                    bb:b5:7b:2c:e2:60:56:c9:c4:00:6e:2d:8a:cc:0c:02:
                    0b:0f:6f:4d:1b:cf:59:ef:6b:99:68:98:16:27:b5:fa:
                    fb:a0:81:bf:20:72:1b:1d:0b:28:27:fd:91:7b:0f:33:
                    55:fa:ab:d0:7d:a9:7b:93:17:eb:b6:13:01:f2:76:d6:
                    fe:89:3f:e1:10:7e:4c:fd:79:d3:87:b7:30:90:57:d0:
                    fa:7e:30:4b:1f:e8:72:51:30:9a:25:97:a3:84:47:af:
                    42:9b:c7:55:71:25:1d:5f:52:3b:a0:52:24:38:8f:58:
                    2a:13:91:a5:80:0e:4a:76:a0:93:eb:82:b6:c0:5f:85:
                    fb:92:0e:aa:da:0a:07:a6:31:d0:9d:f1:31:f8:b3:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:67:19:2d:e9:41:4f:8b:5a:e9:f8:9b:90:a0:35:fc:
        41:d9:2d:81:4c:d5:90:29:da:ed:91:49:d8:55:01:47:
        34:83:c0:0a:6d:44:f5:23:bd:1c:25:a9:a2:3d:fb:5e:
        0c:df:47:84:7b:7a:15:c9:1d:c0:97:5d:70:97:3f:25:
        c8:54:e8:44:cf:98:ac:30:67:ab:f2:87:77:17:44:80:
        f0:4a:a7:ca:3c:70:5e:d8:5f:35:59:a5:c3:04:fa:35:
        f1:f6:6e:87:f2:05:74:12:12:eb:1d:53:b9:d7:11:9f:
        2b:18:9e:d9:93:68:a1:9e:5d:44:3c:48:cb:e7:cb:49:
        f1:07:55:eb:d3:0d:fb:8d:55:99:41:92:de:7b:c2:ca:
        23:fb:7d:3f:50:c2:b0:d3:21:e5:a4:18:13:8e:2e:0e:
        ed:90:16:af:58:41:ca:15:95:4a:c0:f0:3c:1f:d0:b3:
        8a:77:88:1c:e8:c7:56:31:aa:ad:ea:3b:79:04:9e:64:
        76:7c:10:ef:7b:d2:fa:82:88:3e:28:0a:e6:93:59:bd:
        13:fb:06:e1:45:1a:eb:ad:af:67:bc:46:6c:65:a2:a2:
        fb:92:b5:0d:7f:99:4a:aa:c1:db:68:b6:fa:2c:b8:9a:
        72:78:2b:42:b8:ee:f2:61:6e:a7:72:91:4a:0d:69:e3
    Fingerprint (SHA-256):
        5C:E1:C7:C9:E4:0C:28:56:A5:9A:E8:FD:65:5A:21:86:40:34:C9:29:E5:7D:DF:4A:4F:BA:93:E2:5D:B2:49:4E
    Fingerprint (SHA1):
        D7:19:F8:11:62:3A:29:C5:F7:08:67:7D:D6:14:F7:CF:BF:98:DC:9B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3618: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3619: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115394 (0x1e67be42)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:50 2017
            Not After : Tue May 10 11:53:50 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:85:d5:58:2c:17:85:09:e2:e3:de:3a:a3:97:18:47:
                    5d:32:51:36:ea:c8:c6:f5:d4:a3:59:0d:53:c6:51:bd:
                    91:08:1f:b0:b4:5b:e8:02:8c:07:ca:5e:6a:9f:13:a9:
                    a7:e9:64:a2:c5:0e:7b:2a:b9:93:ce:72:53:de:71:f7:
                    fc:8b:2a:2c:53:56:71:86:ea:b2:39:48:6b:9a:6a:45:
                    81:48:8c:fa:d3:10:37:4d:4c:f8:2c:b7:b6:f8:43:a5:
                    ae:47:d2:6d:dd:ed:c0:9d:bb:9c:0f:85:c0:27:26:1e:
                    e0:5e:d3:5a:16:61:6b:68:5e:c1:16:78:e9:41:32:53:
                    7b:7a:11:2d:3d:72:5f:19:9a:ae:2c:31:ec:48:b7:8d:
                    c7:1e:17:ca:6c:61:3e:32:9e:01:05:b0:b0:ef:9a:ee:
                    5a:91:a0:01:05:20:d6:9d:a1:d9:58:a8:89:81:44:9a:
                    c7:9f:53:05:15:55:07:37:69:ec:27:50:7a:1e:91:77:
                    82:18:d8:7c:20:11:dc:9d:a2:14:08:56:43:68:2c:00:
                    eb:54:32:d3:02:26:5c:8c:84:5a:4c:fd:30:be:fd:1e:
                    fb:1c:d1:a0:17:6a:49:c0:5f:94:ec:94:0c:59:d9:05:
                    08:b7:ae:fd:3c:10:24:49:22:93:13:27:d5:be:e9:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:16:48:56:57:37:31:8c:e4:f2:99:e0:03:a2:7d:d4:
        0b:50:dd:c3:98:b4:8a:5e:8d:79:55:19:a9:f4:ca:dc:
        b8:2a:fc:d9:47:12:08:d3:c5:1e:c9:d8:6d:47:cd:2f:
        bd:85:62:c8:9c:b5:09:10:01:3f:a7:50:63:21:70:1c:
        52:56:72:03:86:3a:db:44:51:df:2c:79:81:97:6f:96:
        90:b0:83:0e:f2:11:ed:00:eb:20:1d:fd:8b:05:3e:77:
        ae:f1:aa:53:92:92:d9:25:e0:66:9d:d1:48:81:79:10:
        e6:9f:dd:18:ac:b7:55:94:75:7a:ad:51:1a:c2:4a:71:
        a2:b7:02:12:dc:f2:4f:b5:52:ff:d2:fc:c2:70:66:55:
        07:f7:bf:7d:2e:c2:4d:80:3c:ef:a0:aa:54:b0:92:a8:
        4f:72:76:1b:bc:03:ff:64:d2:27:b7:2a:73:20:9e:e3:
        08:63:83:e9:08:e7:34:29:5b:96:b8:8e:67:a9:64:3c:
        32:84:10:5d:99:7a:ec:bc:2d:04:59:53:94:ea:2a:52:
        dd:51:c6:d1:e9:38:2d:af:e8:28:eb:e1:36:13:a9:65:
        4a:23:c6:7c:b8:6d:83:a7:0b:a7:04:6c:64:9a:cd:c0:
        e0:34:d9:6d:54:b5:00:37:98:1b:06:77:91:9e:c9:ef
    Fingerprint (SHA-256):
        8B:F9:28:56:78:04:A2:DF:AA:37:62:51:FF:5B:EB:7F:0A:02:82:B3:4D:BD:D2:DF:C7:6A:DB:E1:24:D9:CA:36
    Fingerprint (SHA1):
        C1:C7:B8:95:4D:9E:AD:EF:32:3F:B9:8D:14:1F:F4:55:6B:FA:92:29
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3620: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3621: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115395 (0x1e67be43)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:53:50 2017
            Not After : Tue May 10 11:53:50 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:94:5e:38:6e:ee:a9:48:b5:04:60:c1:48:0e:25:32:
                    a9:e9:f4:06:c0:10:86:7c:96:f9:73:fa:9c:0c:b9:75:
                    99:56:04:13:91:53:45:9e:28:7f:97:1b:75:2b:76:85:
                    31:c5:d6:72:9a:d7:9b:6c:96:e2:5a:f9:33:88:a0:1a:
                    03:e9:40:99:90:00:97:17:ce:99:65:93:41:97:df:d7:
                    26:92:67:2d:f4:a7:71:a1:1f:01:14:7c:cc:2a:c8:40:
                    00:9b:73:36:59:c8:15:95:37:b2:fb:c5:7d:6d:45:68:
                    2a:4d:77:7c:2a:52:89:4f:3d:6d:2f:20:3e:56:b4:5e:
                    3c:3a:d8:cd:ce:e5:84:29:41:b6:f4:b4:f8:eb:80:61:
                    d9:e1:59:37:28:97:8d:db:d5:7b:b8:3f:99:51:65:25:
                    7f:fd:7a:79:89:98:bd:bf:ab:d6:81:aa:0f:64:a5:e5:
                    9c:82:03:21:ba:77:22:e3:45:85:6a:43:06:b2:d9:cf:
                    e7:39:9c:4f:ce:d8:d3:30:19:c0:bd:aa:da:a6:92:93:
                    5c:9e:0b:44:ec:28:5f:6b:2a:ab:74:e1:96:68:bb:65:
                    75:4a:25:56:0b:d2:11:8d:ee:c1:ef:7a:18:b7:b9:cc:
                    6d:4e:d9:fe:d8:34:49:ef:20:0c:a7:a3:b1:8e:4b:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:b3:e2:e0:f6:b4:56:91:cf:67:26:70:cd:dc:4e:15:
        3e:06:96:93:24:31:62:be:2e:90:82:15:db:d3:63:8d:
        d8:2e:d7:34:6f:b2:d5:4c:39:c4:be:8c:3f:ee:6a:de:
        a7:eb:19:85:26:11:94:72:7d:7c:86:9d:9f:a8:5a:72:
        82:ad:81:df:db:03:92:a0:09:7a:c8:29:ef:81:10:f3:
        50:8a:a1:d5:c3:64:bb:1d:cb:7f:99:b5:4d:8f:53:3c:
        9d:df:e8:9e:96:92:ee:81:e1:4d:b9:42:48:39:10:80:
        41:f6:b4:7f:5d:9a:74:a6:8e:0a:f8:07:a0:a0:95:4f:
        dc:c1:ff:d6:c6:d4:86:bc:6a:5f:34:cb:55:c4:a7:7f:
        87:77:b3:54:21:fb:1a:b1:10:98:d6:7e:bd:48:2b:62:
        7a:69:16:84:5c:6b:21:22:81:eb:0c:62:6a:bc:8a:66:
        98:83:8c:42:e1:4b:57:ff:15:d8:67:c7:94:3d:3f:a8:
        f3:83:ef:7e:50:d3:ed:84:19:07:22:f5:9c:28:12:d8:
        71:6f:64:10:7b:c5:19:62:9c:b9:5a:5d:2c:45:e0:46:
        e5:e0:2e:a9:16:46:e3:96:be:79:54:3f:36:16:c0:36:
        29:97:89:66:84:f5:a8:3f:22:8e:98:78:21:56:21:c1
    Fingerprint (SHA-256):
        F2:BA:B1:F3:C0:DC:34:6C:AC:4B:0E:B5:72:AE:A3:D7:45:41:67:C5:47:96:10:E2:A5:BC:77:10:FF:2C:72:76
    Fingerprint (SHA1):
        77:D6:3D:CC:E0:3A:30:23:B1:9E:9E:14:99:D8:88:44:93:D4:AC:0C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3622: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3623: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3624: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115397 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3625: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3626: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3627: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3628: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115398   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3629: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3630: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3631: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3632: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115399   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3633: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3634: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3635: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3636: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510115400   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3637: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3638: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3639: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3640: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510115401   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3641: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3642: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3643: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115397 (0x1e67be45)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:52 2017
            Not After : Tue May 10 11:53:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:51:25:02:7c:1f:c2:fa:64:23:7a:3c:0e:d9:b3:a3:
                    c0:15:6d:28:0b:1d:44:98:bb:ca:40:fa:54:dd:ff:2a:
                    d7:56:c0:f4:5d:97:4d:24:20:63:4d:29:09:a0:3b:7a:
                    75:ed:69:ef:c3:b0:1d:b2:71:cf:4a:3a:12:cf:a6:3f:
                    8a:00:aa:9b:1b:3d:1b:0e:53:f1:63:43:8f:25:0f:1e:
                    78:3d:a9:93:35:6e:81:40:a5:c9:2b:de:f7:a6:ab:06:
                    1b:e8:1a:5b:a7:4c:0e:76:f9:7a:d5:53:00:de:81:38:
                    22:58:1e:54:b4:69:3c:58:f7:e3:84:61:8e:46:ee:a7:
                    5b:ce:30:a9:fb:c2:9f:09:eb:1e:88:01:cd:72:b7:30:
                    4e:8e:e6:af:a3:b5:3e:1e:fe:4e:30:c6:f0:d7:84:1b:
                    2d:a8:73:ce:8c:27:30:74:09:37:f0:16:fb:d4:58:33:
                    fb:7e:21:6a:95:b4:85:3f:dd:8d:1a:82:6e:65:72:4b:
                    b2:7b:f7:d9:99:fb:ad:53:a6:11:92:1e:6d:99:de:ff:
                    1e:64:1d:59:96:42:f0:ef:70:ea:17:77:e8:2a:46:d4:
                    62:cb:70:7c:96:75:4f:80:50:f1:a0:82:6e:0d:dd:28:
                    4b:cf:1e:45:31:36:4f:21:80:e5:53:e9:15:55:f7:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:7b:22:63:31:70:70:f5:11:9d:22:f0:df:9b:aa:37:
        29:ac:8c:9f:5b:7c:6c:0b:f3:06:84:6f:7b:37:d5:44:
        08:4c:fb:5f:9a:7f:63:ae:f4:2c:36:fe:7f:ae:60:f2:
        be:a4:b1:a0:92:90:bf:1b:17:eb:10:c5:f4:54:3d:dd:
        39:71:ed:38:ee:53:9e:f5:01:18:f6:be:70:38:07:94:
        1d:e2:f6:44:b5:df:7d:40:ae:05:29:1e:65:f2:08:2e:
        a8:bf:da:c7:b1:f4:18:78:d7:c5:e8:b3:8e:40:3a:af:
        5b:75:75:75:a7:92:46:6a:17:74:d7:0d:de:fa:a1:69:
        32:2d:6c:ee:ed:32:47:b2:6f:24:1c:c6:02:58:7f:32:
        99:03:f6:f5:55:49:15:f9:74:e4:ee:8e:50:d3:4b:ee:
        2e:f6:27:33:32:e7:65:a6:da:08:8c:93:95:69:56:02:
        c4:ae:ec:c3:af:46:33:cf:51:3a:99:e7:08:6f:97:da:
        b3:f9:e8:4d:f5:e7:cf:53:43:a4:79:38:43:5b:5b:f6:
        33:a8:36:5d:c3:bf:5f:95:9d:b6:7c:df:bb:db:c6:77:
        e7:fc:7e:da:3b:0e:fb:37:91:98:c1:0b:e8:b9:1b:8b:
        b6:d4:61:95:0f:88:80:a5:e6:d9:cc:b5:fc:ba:fa:c8
    Fingerprint (SHA-256):
        64:95:6A:1A:3D:F9:26:35:35:CB:DF:AC:3F:DA:89:9F:B8:CF:87:B2:57:5F:AD:08:FA:0C:CD:E7:37:2C:95:8D
    Fingerprint (SHA1):
        A2:5E:E5:CD:6C:9F:AA:EB:21:52:BC:64:5F:73:05:BF:C9:CB:85:C6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3644: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3645: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115398 (0x1e67be46)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:52 2017
            Not After : Tue May 10 11:53:52 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:db:94:5b:4c:4e:0d:b4:ba:b4:90:61:47:32:0a:16:
                    7a:8b:d1:b6:5f:d8:87:11:b8:ef:82:73:58:c3:38:11:
                    a5:86:0c:e0:55:bc:af:df:75:9a:ba:77:62:49:ce:0b:
                    e2:3b:80:27:3a:f0:e5:b6:4c:3d:e9:89:e0:ad:55:06:
                    6e:cf:96:8d:6d:76:76:c4:85:04:dd:cb:1f:7e:6d:55:
                    d0:7a:1e:d2:af:56:e6:42:1f:7c:d2:a0:ec:2d:cc:08:
                    70:ef:ac:18:b7:1e:a2:cf:c4:42:d6:c5:f6:ee:3c:62:
                    13:ab:0f:94:f4:c3:5b:a7:c4:a0:60:36:d9:94:94:a6:
                    4c:eb:1f:f4:24:95:27:2d:95:0e:a5:06:9c:fe:3c:e8:
                    53:38:b1:5c:5a:7e:90:b7:6c:ee:b9:f3:d2:47:cc:39:
                    36:b1:e8:0b:50:c9:5b:6b:f7:6e:78:60:c2:25:b4:3f:
                    7c:2a:b6:b0:8d:67:5c:14:50:97:f8:a4:00:3e:d2:b4:
                    d5:4f:29:49:10:b6:f0:d5:46:ad:2a:f9:22:21:7f:f7:
                    b8:e4:52:a8:10:b1:53:43:bb:0f:b6:be:a9:44:ee:97:
                    23:a0:f7:f4:39:64:92:6f:27:6a:85:c7:d4:0d:18:ff:
                    e7:c0:71:3c:89:f2:a7:73:22:d2:bf:c0:13:a2:d5:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:6a:4d:93:41:09:02:84:4b:58:13:83:d2:57:2b:8f:
        44:33:d1:99:fd:28:52:3d:84:9a:e8:8d:c7:85:ad:15:
        29:38:b1:55:47:64:ac:b4:af:d1:d3:33:a6:57:dc:5f:
        b5:ba:d4:21:f2:2c:d0:97:c4:56:6f:5f:ea:b9:12:9b:
        41:5c:a6:d4:7a:3b:a9:52:ef:fd:46:31:ac:7c:85:72:
        25:ee:a0:f5:b1:ae:7a:03:72:ff:8d:c7:87:39:f2:88:
        34:d2:d9:b6:3c:eb:9b:5c:62:1c:50:aa:bd:3f:28:4e:
        58:39:85:48:70:95:a0:9c:d1:0c:56:a7:59:9c:14:5c:
        85:ad:6b:cd:94:23:7b:d4:54:41:fc:f6:a1:2b:d6:40:
        2e:4d:c9:09:bb:37:ee:0b:53:0e:a8:2c:46:29:7e:5e:
        49:e8:b9:65:89:1c:7d:cd:9c:da:89:f0:88:47:80:aa:
        73:5c:d5:ab:b6:48:c7:a8:f0:3f:75:4f:32:0a:3d:26:
        7a:17:cc:7b:1c:1a:25:c7:a8:48:53:9c:f8:b8:a9:f3:
        86:c3:ee:07:c0:eb:f5:68:4d:fc:ae:de:a3:72:11:5d:
        0b:94:5f:83:07:71:ec:c5:cb:83:c6:f2:57:81:18:80:
        a6:e4:6f:6f:eb:be:c9:4e:77:1b:a0:0f:7b:b5:ac:0e
    Fingerprint (SHA-256):
        49:3F:8A:4D:B0:DA:40:67:D4:82:47:D8:8D:4A:E3:F8:8B:27:29:9B:CC:7B:72:62:89:93:41:85:91:BB:D0:C5
    Fingerprint (SHA1):
        5C:5C:76:CA:6F:26:7C:12:1B:88:8B:47:2A:67:97:68:42:CC:C5:FA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3646: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3647: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115399 (0x1e67be47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:53:53 2017
            Not After : Tue May 10 11:53:53 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:47:56:ab:49:55:72:de:75:29:c8:42:0e:ed:c4:42:
                    6f:10:64:3e:71:1a:92:e5:52:b3:7b:de:d7:e2:48:32:
                    df:d1:f2:f5:4d:1f:f1:b4:26:2d:7f:76:4e:4a:2b:35:
                    62:d4:25:17:fb:12:96:06:bc:18:95:06:e8:88:33:ee:
                    59:89:60:fc:de:7a:13:17:ed:fb:ca:1c:b9:61:50:ec:
                    1b:81:ab:03:01:8d:11:d0:85:ea:45:1d:c1:ac:27:47:
                    77:2b:aa:3a:70:47:68:bf:f4:dc:2c:31:c6:eb:4e:be:
                    91:50:44:8a:58:48:88:b0:be:85:13:1c:07:e7:bf:56:
                    c4:da:4a:27:1b:0d:68:a1:b6:3e:b9:0b:e2:09:d1:a0:
                    7a:4a:d0:55:2d:34:5b:ab:3d:d3:6f:2b:af:9a:55:1a:
                    5e:7e:ad:e5:7f:70:77:0d:be:bb:1c:db:01:c5:b2:09:
                    bb:25:47:93:b8:19:6f:43:80:65:25:a0:ad:45:19:9b:
                    14:e8:a3:f1:51:ff:d9:26:ab:2e:a0:64:e0:c6:84:f4:
                    2f:48:a4:a2:e3:27:9d:fb:3d:47:a9:bb:63:1a:5a:9f:
                    a9:28:7c:89:3f:e1:bd:ec:24:e4:22:32:77:10:27:e3:
                    72:7f:0f:9e:b2:f7:ff:30:39:45:f6:35:9d:ef:8d:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:ca:59:37:1c:9a:f1:1d:16:43:12:99:da:53:29:80:
        af:00:91:89:1b:d8:49:6b:b9:4f:d1:04:e1:47:06:c0:
        6c:7a:56:c3:93:3b:72:48:19:d7:f1:49:b7:02:56:58:
        c7:b1:da:5a:92:3f:e4:b3:22:e4:a9:e2:41:ae:f5:73:
        d6:0d:58:a8:01:78:33:d7:97:00:e9:b9:4c:91:68:ad:
        81:42:8a:f7:32:c5:6a:57:41:c3:cc:31:cc:44:64:dc:
        29:f3:d0:b0:4e:0d:d6:0c:c4:08:ce:3e:37:ba:dd:13:
        21:83:49:5c:19:46:36:1a:c0:ed:f2:6f:75:66:4c:dc:
        07:dd:c8:26:89:1e:0d:0e:89:31:cb:2f:4b:87:a1:3b:
        eb:cd:7b:46:b8:86:9b:81:59:7b:e7:a9:44:61:f1:9f:
        74:e4:66:4a:1b:78:db:8e:c5:ae:a6:1d:4d:af:9f:37:
        5a:f6:4c:c8:e6:ef:86:ae:a3:1c:6c:2d:c5:6d:6a:03:
        47:97:9c:f2:ea:1e:65:de:7a:a1:39:89:00:f4:18:fc:
        33:68:50:a7:a6:da:bc:c0:d5:2b:27:0c:cd:90:50:68:
        32:35:e8:75:ca:b2:59:06:15:22:39:81:12:86:9c:32:
        10:52:f4:7e:f3:cc:22:3e:4d:42:33:43:22:4e:39:38
    Fingerprint (SHA-256):
        A6:77:04:EA:F0:F2:56:80:52:26:E3:23:17:EE:7C:6E:20:11:4C:2A:C2:57:C8:77:3C:0B:B8:B3:A3:1E:B9:4D
    Fingerprint (SHA1):
        D8:63:FB:B0:CF:58:A6:8C:EA:8C:92:B8:5A:22:68:03:C7:78:F3:09
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3648: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3649: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3650: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3651: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3652: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115397 (0x1e67be45)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:52 2017
            Not After : Tue May 10 11:53:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:51:25:02:7c:1f:c2:fa:64:23:7a:3c:0e:d9:b3:a3:
                    c0:15:6d:28:0b:1d:44:98:bb:ca:40:fa:54:dd:ff:2a:
                    d7:56:c0:f4:5d:97:4d:24:20:63:4d:29:09:a0:3b:7a:
                    75:ed:69:ef:c3:b0:1d:b2:71:cf:4a:3a:12:cf:a6:3f:
                    8a:00:aa:9b:1b:3d:1b:0e:53:f1:63:43:8f:25:0f:1e:
                    78:3d:a9:93:35:6e:81:40:a5:c9:2b:de:f7:a6:ab:06:
                    1b:e8:1a:5b:a7:4c:0e:76:f9:7a:d5:53:00:de:81:38:
                    22:58:1e:54:b4:69:3c:58:f7:e3:84:61:8e:46:ee:a7:
                    5b:ce:30:a9:fb:c2:9f:09:eb:1e:88:01:cd:72:b7:30:
                    4e:8e:e6:af:a3:b5:3e:1e:fe:4e:30:c6:f0:d7:84:1b:
                    2d:a8:73:ce:8c:27:30:74:09:37:f0:16:fb:d4:58:33:
                    fb:7e:21:6a:95:b4:85:3f:dd:8d:1a:82:6e:65:72:4b:
                    b2:7b:f7:d9:99:fb:ad:53:a6:11:92:1e:6d:99:de:ff:
                    1e:64:1d:59:96:42:f0:ef:70:ea:17:77:e8:2a:46:d4:
                    62:cb:70:7c:96:75:4f:80:50:f1:a0:82:6e:0d:dd:28:
                    4b:cf:1e:45:31:36:4f:21:80:e5:53:e9:15:55:f7:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:7b:22:63:31:70:70:f5:11:9d:22:f0:df:9b:aa:37:
        29:ac:8c:9f:5b:7c:6c:0b:f3:06:84:6f:7b:37:d5:44:
        08:4c:fb:5f:9a:7f:63:ae:f4:2c:36:fe:7f:ae:60:f2:
        be:a4:b1:a0:92:90:bf:1b:17:eb:10:c5:f4:54:3d:dd:
        39:71:ed:38:ee:53:9e:f5:01:18:f6:be:70:38:07:94:
        1d:e2:f6:44:b5:df:7d:40:ae:05:29:1e:65:f2:08:2e:
        a8:bf:da:c7:b1:f4:18:78:d7:c5:e8:b3:8e:40:3a:af:
        5b:75:75:75:a7:92:46:6a:17:74:d7:0d:de:fa:a1:69:
        32:2d:6c:ee:ed:32:47:b2:6f:24:1c:c6:02:58:7f:32:
        99:03:f6:f5:55:49:15:f9:74:e4:ee:8e:50:d3:4b:ee:
        2e:f6:27:33:32:e7:65:a6:da:08:8c:93:95:69:56:02:
        c4:ae:ec:c3:af:46:33:cf:51:3a:99:e7:08:6f:97:da:
        b3:f9:e8:4d:f5:e7:cf:53:43:a4:79:38:43:5b:5b:f6:
        33:a8:36:5d:c3:bf:5f:95:9d:b6:7c:df:bb:db:c6:77:
        e7:fc:7e:da:3b:0e:fb:37:91:98:c1:0b:e8:b9:1b:8b:
        b6:d4:61:95:0f:88:80:a5:e6:d9:cc:b5:fc:ba:fa:c8
    Fingerprint (SHA-256):
        64:95:6A:1A:3D:F9:26:35:35:CB:DF:AC:3F:DA:89:9F:B8:CF:87:B2:57:5F:AD:08:FA:0C:CD:E7:37:2C:95:8D
    Fingerprint (SHA1):
        A2:5E:E5:CD:6C:9F:AA:EB:21:52:BC:64:5F:73:05:BF:C9:CB:85:C6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3653: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3654: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115398 (0x1e67be46)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:52 2017
            Not After : Tue May 10 11:53:52 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:db:94:5b:4c:4e:0d:b4:ba:b4:90:61:47:32:0a:16:
                    7a:8b:d1:b6:5f:d8:87:11:b8:ef:82:73:58:c3:38:11:
                    a5:86:0c:e0:55:bc:af:df:75:9a:ba:77:62:49:ce:0b:
                    e2:3b:80:27:3a:f0:e5:b6:4c:3d:e9:89:e0:ad:55:06:
                    6e:cf:96:8d:6d:76:76:c4:85:04:dd:cb:1f:7e:6d:55:
                    d0:7a:1e:d2:af:56:e6:42:1f:7c:d2:a0:ec:2d:cc:08:
                    70:ef:ac:18:b7:1e:a2:cf:c4:42:d6:c5:f6:ee:3c:62:
                    13:ab:0f:94:f4:c3:5b:a7:c4:a0:60:36:d9:94:94:a6:
                    4c:eb:1f:f4:24:95:27:2d:95:0e:a5:06:9c:fe:3c:e8:
                    53:38:b1:5c:5a:7e:90:b7:6c:ee:b9:f3:d2:47:cc:39:
                    36:b1:e8:0b:50:c9:5b:6b:f7:6e:78:60:c2:25:b4:3f:
                    7c:2a:b6:b0:8d:67:5c:14:50:97:f8:a4:00:3e:d2:b4:
                    d5:4f:29:49:10:b6:f0:d5:46:ad:2a:f9:22:21:7f:f7:
                    b8:e4:52:a8:10:b1:53:43:bb:0f:b6:be:a9:44:ee:97:
                    23:a0:f7:f4:39:64:92:6f:27:6a:85:c7:d4:0d:18:ff:
                    e7:c0:71:3c:89:f2:a7:73:22:d2:bf:c0:13:a2:d5:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:6a:4d:93:41:09:02:84:4b:58:13:83:d2:57:2b:8f:
        44:33:d1:99:fd:28:52:3d:84:9a:e8:8d:c7:85:ad:15:
        29:38:b1:55:47:64:ac:b4:af:d1:d3:33:a6:57:dc:5f:
        b5:ba:d4:21:f2:2c:d0:97:c4:56:6f:5f:ea:b9:12:9b:
        41:5c:a6:d4:7a:3b:a9:52:ef:fd:46:31:ac:7c:85:72:
        25:ee:a0:f5:b1:ae:7a:03:72:ff:8d:c7:87:39:f2:88:
        34:d2:d9:b6:3c:eb:9b:5c:62:1c:50:aa:bd:3f:28:4e:
        58:39:85:48:70:95:a0:9c:d1:0c:56:a7:59:9c:14:5c:
        85:ad:6b:cd:94:23:7b:d4:54:41:fc:f6:a1:2b:d6:40:
        2e:4d:c9:09:bb:37:ee:0b:53:0e:a8:2c:46:29:7e:5e:
        49:e8:b9:65:89:1c:7d:cd:9c:da:89:f0:88:47:80:aa:
        73:5c:d5:ab:b6:48:c7:a8:f0:3f:75:4f:32:0a:3d:26:
        7a:17:cc:7b:1c:1a:25:c7:a8:48:53:9c:f8:b8:a9:f3:
        86:c3:ee:07:c0:eb:f5:68:4d:fc:ae:de:a3:72:11:5d:
        0b:94:5f:83:07:71:ec:c5:cb:83:c6:f2:57:81:18:80:
        a6:e4:6f:6f:eb:be:c9:4e:77:1b:a0:0f:7b:b5:ac:0e
    Fingerprint (SHA-256):
        49:3F:8A:4D:B0:DA:40:67:D4:82:47:D8:8D:4A:E3:F8:8B:27:29:9B:CC:7B:72:62:89:93:41:85:91:BB:D0:C5
    Fingerprint (SHA1):
        5C:5C:76:CA:6F:26:7C:12:1B:88:8B:47:2A:67:97:68:42:CC:C5:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3655: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3656: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115399 (0x1e67be47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:53:53 2017
            Not After : Tue May 10 11:53:53 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:47:56:ab:49:55:72:de:75:29:c8:42:0e:ed:c4:42:
                    6f:10:64:3e:71:1a:92:e5:52:b3:7b:de:d7:e2:48:32:
                    df:d1:f2:f5:4d:1f:f1:b4:26:2d:7f:76:4e:4a:2b:35:
                    62:d4:25:17:fb:12:96:06:bc:18:95:06:e8:88:33:ee:
                    59:89:60:fc:de:7a:13:17:ed:fb:ca:1c:b9:61:50:ec:
                    1b:81:ab:03:01:8d:11:d0:85:ea:45:1d:c1:ac:27:47:
                    77:2b:aa:3a:70:47:68:bf:f4:dc:2c:31:c6:eb:4e:be:
                    91:50:44:8a:58:48:88:b0:be:85:13:1c:07:e7:bf:56:
                    c4:da:4a:27:1b:0d:68:a1:b6:3e:b9:0b:e2:09:d1:a0:
                    7a:4a:d0:55:2d:34:5b:ab:3d:d3:6f:2b:af:9a:55:1a:
                    5e:7e:ad:e5:7f:70:77:0d:be:bb:1c:db:01:c5:b2:09:
                    bb:25:47:93:b8:19:6f:43:80:65:25:a0:ad:45:19:9b:
                    14:e8:a3:f1:51:ff:d9:26:ab:2e:a0:64:e0:c6:84:f4:
                    2f:48:a4:a2:e3:27:9d:fb:3d:47:a9:bb:63:1a:5a:9f:
                    a9:28:7c:89:3f:e1:bd:ec:24:e4:22:32:77:10:27:e3:
                    72:7f:0f:9e:b2:f7:ff:30:39:45:f6:35:9d:ef:8d:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:ca:59:37:1c:9a:f1:1d:16:43:12:99:da:53:29:80:
        af:00:91:89:1b:d8:49:6b:b9:4f:d1:04:e1:47:06:c0:
        6c:7a:56:c3:93:3b:72:48:19:d7:f1:49:b7:02:56:58:
        c7:b1:da:5a:92:3f:e4:b3:22:e4:a9:e2:41:ae:f5:73:
        d6:0d:58:a8:01:78:33:d7:97:00:e9:b9:4c:91:68:ad:
        81:42:8a:f7:32:c5:6a:57:41:c3:cc:31:cc:44:64:dc:
        29:f3:d0:b0:4e:0d:d6:0c:c4:08:ce:3e:37:ba:dd:13:
        21:83:49:5c:19:46:36:1a:c0:ed:f2:6f:75:66:4c:dc:
        07:dd:c8:26:89:1e:0d:0e:89:31:cb:2f:4b:87:a1:3b:
        eb:cd:7b:46:b8:86:9b:81:59:7b:e7:a9:44:61:f1:9f:
        74:e4:66:4a:1b:78:db:8e:c5:ae:a6:1d:4d:af:9f:37:
        5a:f6:4c:c8:e6:ef:86:ae:a3:1c:6c:2d:c5:6d:6a:03:
        47:97:9c:f2:ea:1e:65:de:7a:a1:39:89:00:f4:18:fc:
        33:68:50:a7:a6:da:bc:c0:d5:2b:27:0c:cd:90:50:68:
        32:35:e8:75:ca:b2:59:06:15:22:39:81:12:86:9c:32:
        10:52:f4:7e:f3:cc:22:3e:4d:42:33:43:22:4e:39:38
    Fingerprint (SHA-256):
        A6:77:04:EA:F0:F2:56:80:52:26:E3:23:17:EE:7C:6E:20:11:4C:2A:C2:57:C8:77:3C:0B:B8:B3:A3:1E:B9:4D
    Fingerprint (SHA1):
        D8:63:FB:B0:CF:58:A6:8C:EA:8C:92:B8:5A:22:68:03:C7:78:F3:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3657: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3658: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115397 (0x1e67be45)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:52 2017
            Not After : Tue May 10 11:53:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:51:25:02:7c:1f:c2:fa:64:23:7a:3c:0e:d9:b3:a3:
                    c0:15:6d:28:0b:1d:44:98:bb:ca:40:fa:54:dd:ff:2a:
                    d7:56:c0:f4:5d:97:4d:24:20:63:4d:29:09:a0:3b:7a:
                    75:ed:69:ef:c3:b0:1d:b2:71:cf:4a:3a:12:cf:a6:3f:
                    8a:00:aa:9b:1b:3d:1b:0e:53:f1:63:43:8f:25:0f:1e:
                    78:3d:a9:93:35:6e:81:40:a5:c9:2b:de:f7:a6:ab:06:
                    1b:e8:1a:5b:a7:4c:0e:76:f9:7a:d5:53:00:de:81:38:
                    22:58:1e:54:b4:69:3c:58:f7:e3:84:61:8e:46:ee:a7:
                    5b:ce:30:a9:fb:c2:9f:09:eb:1e:88:01:cd:72:b7:30:
                    4e:8e:e6:af:a3:b5:3e:1e:fe:4e:30:c6:f0:d7:84:1b:
                    2d:a8:73:ce:8c:27:30:74:09:37:f0:16:fb:d4:58:33:
                    fb:7e:21:6a:95:b4:85:3f:dd:8d:1a:82:6e:65:72:4b:
                    b2:7b:f7:d9:99:fb:ad:53:a6:11:92:1e:6d:99:de:ff:
                    1e:64:1d:59:96:42:f0:ef:70:ea:17:77:e8:2a:46:d4:
                    62:cb:70:7c:96:75:4f:80:50:f1:a0:82:6e:0d:dd:28:
                    4b:cf:1e:45:31:36:4f:21:80:e5:53:e9:15:55:f7:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:7b:22:63:31:70:70:f5:11:9d:22:f0:df:9b:aa:37:
        29:ac:8c:9f:5b:7c:6c:0b:f3:06:84:6f:7b:37:d5:44:
        08:4c:fb:5f:9a:7f:63:ae:f4:2c:36:fe:7f:ae:60:f2:
        be:a4:b1:a0:92:90:bf:1b:17:eb:10:c5:f4:54:3d:dd:
        39:71:ed:38:ee:53:9e:f5:01:18:f6:be:70:38:07:94:
        1d:e2:f6:44:b5:df:7d:40:ae:05:29:1e:65:f2:08:2e:
        a8:bf:da:c7:b1:f4:18:78:d7:c5:e8:b3:8e:40:3a:af:
        5b:75:75:75:a7:92:46:6a:17:74:d7:0d:de:fa:a1:69:
        32:2d:6c:ee:ed:32:47:b2:6f:24:1c:c6:02:58:7f:32:
        99:03:f6:f5:55:49:15:f9:74:e4:ee:8e:50:d3:4b:ee:
        2e:f6:27:33:32:e7:65:a6:da:08:8c:93:95:69:56:02:
        c4:ae:ec:c3:af:46:33:cf:51:3a:99:e7:08:6f:97:da:
        b3:f9:e8:4d:f5:e7:cf:53:43:a4:79:38:43:5b:5b:f6:
        33:a8:36:5d:c3:bf:5f:95:9d:b6:7c:df:bb:db:c6:77:
        e7:fc:7e:da:3b:0e:fb:37:91:98:c1:0b:e8:b9:1b:8b:
        b6:d4:61:95:0f:88:80:a5:e6:d9:cc:b5:fc:ba:fa:c8
    Fingerprint (SHA-256):
        64:95:6A:1A:3D:F9:26:35:35:CB:DF:AC:3F:DA:89:9F:B8:CF:87:B2:57:5F:AD:08:FA:0C:CD:E7:37:2C:95:8D
    Fingerprint (SHA1):
        A2:5E:E5:CD:6C:9F:AA:EB:21:52:BC:64:5F:73:05:BF:C9:CB:85:C6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3659: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115397 (0x1e67be45)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:52 2017
            Not After : Tue May 10 11:53:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:51:25:02:7c:1f:c2:fa:64:23:7a:3c:0e:d9:b3:a3:
                    c0:15:6d:28:0b:1d:44:98:bb:ca:40:fa:54:dd:ff:2a:
                    d7:56:c0:f4:5d:97:4d:24:20:63:4d:29:09:a0:3b:7a:
                    75:ed:69:ef:c3:b0:1d:b2:71:cf:4a:3a:12:cf:a6:3f:
                    8a:00:aa:9b:1b:3d:1b:0e:53:f1:63:43:8f:25:0f:1e:
                    78:3d:a9:93:35:6e:81:40:a5:c9:2b:de:f7:a6:ab:06:
                    1b:e8:1a:5b:a7:4c:0e:76:f9:7a:d5:53:00:de:81:38:
                    22:58:1e:54:b4:69:3c:58:f7:e3:84:61:8e:46:ee:a7:
                    5b:ce:30:a9:fb:c2:9f:09:eb:1e:88:01:cd:72:b7:30:
                    4e:8e:e6:af:a3:b5:3e:1e:fe:4e:30:c6:f0:d7:84:1b:
                    2d:a8:73:ce:8c:27:30:74:09:37:f0:16:fb:d4:58:33:
                    fb:7e:21:6a:95:b4:85:3f:dd:8d:1a:82:6e:65:72:4b:
                    b2:7b:f7:d9:99:fb:ad:53:a6:11:92:1e:6d:99:de:ff:
                    1e:64:1d:59:96:42:f0:ef:70:ea:17:77:e8:2a:46:d4:
                    62:cb:70:7c:96:75:4f:80:50:f1:a0:82:6e:0d:dd:28:
                    4b:cf:1e:45:31:36:4f:21:80:e5:53:e9:15:55:f7:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:7b:22:63:31:70:70:f5:11:9d:22:f0:df:9b:aa:37:
        29:ac:8c:9f:5b:7c:6c:0b:f3:06:84:6f:7b:37:d5:44:
        08:4c:fb:5f:9a:7f:63:ae:f4:2c:36:fe:7f:ae:60:f2:
        be:a4:b1:a0:92:90:bf:1b:17:eb:10:c5:f4:54:3d:dd:
        39:71:ed:38:ee:53:9e:f5:01:18:f6:be:70:38:07:94:
        1d:e2:f6:44:b5:df:7d:40:ae:05:29:1e:65:f2:08:2e:
        a8:bf:da:c7:b1:f4:18:78:d7:c5:e8:b3:8e:40:3a:af:
        5b:75:75:75:a7:92:46:6a:17:74:d7:0d:de:fa:a1:69:
        32:2d:6c:ee:ed:32:47:b2:6f:24:1c:c6:02:58:7f:32:
        99:03:f6:f5:55:49:15:f9:74:e4:ee:8e:50:d3:4b:ee:
        2e:f6:27:33:32:e7:65:a6:da:08:8c:93:95:69:56:02:
        c4:ae:ec:c3:af:46:33:cf:51:3a:99:e7:08:6f:97:da:
        b3:f9:e8:4d:f5:e7:cf:53:43:a4:79:38:43:5b:5b:f6:
        33:a8:36:5d:c3:bf:5f:95:9d:b6:7c:df:bb:db:c6:77:
        e7:fc:7e:da:3b:0e:fb:37:91:98:c1:0b:e8:b9:1b:8b:
        b6:d4:61:95:0f:88:80:a5:e6:d9:cc:b5:fc:ba:fa:c8
    Fingerprint (SHA-256):
        64:95:6A:1A:3D:F9:26:35:35:CB:DF:AC:3F:DA:89:9F:B8:CF:87:B2:57:5F:AD:08:FA:0C:CD:E7:37:2C:95:8D
    Fingerprint (SHA1):
        A2:5E:E5:CD:6C:9F:AA:EB:21:52:BC:64:5F:73:05:BF:C9:CB:85:C6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3660: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115398 (0x1e67be46)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:52 2017
            Not After : Tue May 10 11:53:52 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:db:94:5b:4c:4e:0d:b4:ba:b4:90:61:47:32:0a:16:
                    7a:8b:d1:b6:5f:d8:87:11:b8:ef:82:73:58:c3:38:11:
                    a5:86:0c:e0:55:bc:af:df:75:9a:ba:77:62:49:ce:0b:
                    e2:3b:80:27:3a:f0:e5:b6:4c:3d:e9:89:e0:ad:55:06:
                    6e:cf:96:8d:6d:76:76:c4:85:04:dd:cb:1f:7e:6d:55:
                    d0:7a:1e:d2:af:56:e6:42:1f:7c:d2:a0:ec:2d:cc:08:
                    70:ef:ac:18:b7:1e:a2:cf:c4:42:d6:c5:f6:ee:3c:62:
                    13:ab:0f:94:f4:c3:5b:a7:c4:a0:60:36:d9:94:94:a6:
                    4c:eb:1f:f4:24:95:27:2d:95:0e:a5:06:9c:fe:3c:e8:
                    53:38:b1:5c:5a:7e:90:b7:6c:ee:b9:f3:d2:47:cc:39:
                    36:b1:e8:0b:50:c9:5b:6b:f7:6e:78:60:c2:25:b4:3f:
                    7c:2a:b6:b0:8d:67:5c:14:50:97:f8:a4:00:3e:d2:b4:
                    d5:4f:29:49:10:b6:f0:d5:46:ad:2a:f9:22:21:7f:f7:
                    b8:e4:52:a8:10:b1:53:43:bb:0f:b6:be:a9:44:ee:97:
                    23:a0:f7:f4:39:64:92:6f:27:6a:85:c7:d4:0d:18:ff:
                    e7:c0:71:3c:89:f2:a7:73:22:d2:bf:c0:13:a2:d5:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:6a:4d:93:41:09:02:84:4b:58:13:83:d2:57:2b:8f:
        44:33:d1:99:fd:28:52:3d:84:9a:e8:8d:c7:85:ad:15:
        29:38:b1:55:47:64:ac:b4:af:d1:d3:33:a6:57:dc:5f:
        b5:ba:d4:21:f2:2c:d0:97:c4:56:6f:5f:ea:b9:12:9b:
        41:5c:a6:d4:7a:3b:a9:52:ef:fd:46:31:ac:7c:85:72:
        25:ee:a0:f5:b1:ae:7a:03:72:ff:8d:c7:87:39:f2:88:
        34:d2:d9:b6:3c:eb:9b:5c:62:1c:50:aa:bd:3f:28:4e:
        58:39:85:48:70:95:a0:9c:d1:0c:56:a7:59:9c:14:5c:
        85:ad:6b:cd:94:23:7b:d4:54:41:fc:f6:a1:2b:d6:40:
        2e:4d:c9:09:bb:37:ee:0b:53:0e:a8:2c:46:29:7e:5e:
        49:e8:b9:65:89:1c:7d:cd:9c:da:89:f0:88:47:80:aa:
        73:5c:d5:ab:b6:48:c7:a8:f0:3f:75:4f:32:0a:3d:26:
        7a:17:cc:7b:1c:1a:25:c7:a8:48:53:9c:f8:b8:a9:f3:
        86:c3:ee:07:c0:eb:f5:68:4d:fc:ae:de:a3:72:11:5d:
        0b:94:5f:83:07:71:ec:c5:cb:83:c6:f2:57:81:18:80:
        a6:e4:6f:6f:eb:be:c9:4e:77:1b:a0:0f:7b:b5:ac:0e
    Fingerprint (SHA-256):
        49:3F:8A:4D:B0:DA:40:67:D4:82:47:D8:8D:4A:E3:F8:8B:27:29:9B:CC:7B:72:62:89:93:41:85:91:BB:D0:C5
    Fingerprint (SHA1):
        5C:5C:76:CA:6F:26:7C:12:1B:88:8B:47:2A:67:97:68:42:CC:C5:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3661: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115398 (0x1e67be46)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:53:52 2017
            Not After : Tue May 10 11:53:52 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:db:94:5b:4c:4e:0d:b4:ba:b4:90:61:47:32:0a:16:
                    7a:8b:d1:b6:5f:d8:87:11:b8:ef:82:73:58:c3:38:11:
                    a5:86:0c:e0:55:bc:af:df:75:9a:ba:77:62:49:ce:0b:
                    e2:3b:80:27:3a:f0:e5:b6:4c:3d:e9:89:e0:ad:55:06:
                    6e:cf:96:8d:6d:76:76:c4:85:04:dd:cb:1f:7e:6d:55:
                    d0:7a:1e:d2:af:56:e6:42:1f:7c:d2:a0:ec:2d:cc:08:
                    70:ef:ac:18:b7:1e:a2:cf:c4:42:d6:c5:f6:ee:3c:62:
                    13:ab:0f:94:f4:c3:5b:a7:c4:a0:60:36:d9:94:94:a6:
                    4c:eb:1f:f4:24:95:27:2d:95:0e:a5:06:9c:fe:3c:e8:
                    53:38:b1:5c:5a:7e:90:b7:6c:ee:b9:f3:d2:47:cc:39:
                    36:b1:e8:0b:50:c9:5b:6b:f7:6e:78:60:c2:25:b4:3f:
                    7c:2a:b6:b0:8d:67:5c:14:50:97:f8:a4:00:3e:d2:b4:
                    d5:4f:29:49:10:b6:f0:d5:46:ad:2a:f9:22:21:7f:f7:
                    b8:e4:52:a8:10:b1:53:43:bb:0f:b6:be:a9:44:ee:97:
                    23:a0:f7:f4:39:64:92:6f:27:6a:85:c7:d4:0d:18:ff:
                    e7:c0:71:3c:89:f2:a7:73:22:d2:bf:c0:13:a2:d5:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:6a:4d:93:41:09:02:84:4b:58:13:83:d2:57:2b:8f:
        44:33:d1:99:fd:28:52:3d:84:9a:e8:8d:c7:85:ad:15:
        29:38:b1:55:47:64:ac:b4:af:d1:d3:33:a6:57:dc:5f:
        b5:ba:d4:21:f2:2c:d0:97:c4:56:6f:5f:ea:b9:12:9b:
        41:5c:a6:d4:7a:3b:a9:52:ef:fd:46:31:ac:7c:85:72:
        25:ee:a0:f5:b1:ae:7a:03:72:ff:8d:c7:87:39:f2:88:
        34:d2:d9:b6:3c:eb:9b:5c:62:1c:50:aa:bd:3f:28:4e:
        58:39:85:48:70:95:a0:9c:d1:0c:56:a7:59:9c:14:5c:
        85:ad:6b:cd:94:23:7b:d4:54:41:fc:f6:a1:2b:d6:40:
        2e:4d:c9:09:bb:37:ee:0b:53:0e:a8:2c:46:29:7e:5e:
        49:e8:b9:65:89:1c:7d:cd:9c:da:89:f0:88:47:80:aa:
        73:5c:d5:ab:b6:48:c7:a8:f0:3f:75:4f:32:0a:3d:26:
        7a:17:cc:7b:1c:1a:25:c7:a8:48:53:9c:f8:b8:a9:f3:
        86:c3:ee:07:c0:eb:f5:68:4d:fc:ae:de:a3:72:11:5d:
        0b:94:5f:83:07:71:ec:c5:cb:83:c6:f2:57:81:18:80:
        a6:e4:6f:6f:eb:be:c9:4e:77:1b:a0:0f:7b:b5:ac:0e
    Fingerprint (SHA-256):
        49:3F:8A:4D:B0:DA:40:67:D4:82:47:D8:8D:4A:E3:F8:8B:27:29:9B:CC:7B:72:62:89:93:41:85:91:BB:D0:C5
    Fingerprint (SHA1):
        5C:5C:76:CA:6F:26:7C:12:1B:88:8B:47:2A:67:97:68:42:CC:C5:FA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3662: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115399 (0x1e67be47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:53:53 2017
            Not After : Tue May 10 11:53:53 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:47:56:ab:49:55:72:de:75:29:c8:42:0e:ed:c4:42:
                    6f:10:64:3e:71:1a:92:e5:52:b3:7b:de:d7:e2:48:32:
                    df:d1:f2:f5:4d:1f:f1:b4:26:2d:7f:76:4e:4a:2b:35:
                    62:d4:25:17:fb:12:96:06:bc:18:95:06:e8:88:33:ee:
                    59:89:60:fc:de:7a:13:17:ed:fb:ca:1c:b9:61:50:ec:
                    1b:81:ab:03:01:8d:11:d0:85:ea:45:1d:c1:ac:27:47:
                    77:2b:aa:3a:70:47:68:bf:f4:dc:2c:31:c6:eb:4e:be:
                    91:50:44:8a:58:48:88:b0:be:85:13:1c:07:e7:bf:56:
                    c4:da:4a:27:1b:0d:68:a1:b6:3e:b9:0b:e2:09:d1:a0:
                    7a:4a:d0:55:2d:34:5b:ab:3d:d3:6f:2b:af:9a:55:1a:
                    5e:7e:ad:e5:7f:70:77:0d:be:bb:1c:db:01:c5:b2:09:
                    bb:25:47:93:b8:19:6f:43:80:65:25:a0:ad:45:19:9b:
                    14:e8:a3:f1:51:ff:d9:26:ab:2e:a0:64:e0:c6:84:f4:
                    2f:48:a4:a2:e3:27:9d:fb:3d:47:a9:bb:63:1a:5a:9f:
                    a9:28:7c:89:3f:e1:bd:ec:24:e4:22:32:77:10:27:e3:
                    72:7f:0f:9e:b2:f7:ff:30:39:45:f6:35:9d:ef:8d:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:ca:59:37:1c:9a:f1:1d:16:43:12:99:da:53:29:80:
        af:00:91:89:1b:d8:49:6b:b9:4f:d1:04:e1:47:06:c0:
        6c:7a:56:c3:93:3b:72:48:19:d7:f1:49:b7:02:56:58:
        c7:b1:da:5a:92:3f:e4:b3:22:e4:a9:e2:41:ae:f5:73:
        d6:0d:58:a8:01:78:33:d7:97:00:e9:b9:4c:91:68:ad:
        81:42:8a:f7:32:c5:6a:57:41:c3:cc:31:cc:44:64:dc:
        29:f3:d0:b0:4e:0d:d6:0c:c4:08:ce:3e:37:ba:dd:13:
        21:83:49:5c:19:46:36:1a:c0:ed:f2:6f:75:66:4c:dc:
        07:dd:c8:26:89:1e:0d:0e:89:31:cb:2f:4b:87:a1:3b:
        eb:cd:7b:46:b8:86:9b:81:59:7b:e7:a9:44:61:f1:9f:
        74:e4:66:4a:1b:78:db:8e:c5:ae:a6:1d:4d:af:9f:37:
        5a:f6:4c:c8:e6:ef:86:ae:a3:1c:6c:2d:c5:6d:6a:03:
        47:97:9c:f2:ea:1e:65:de:7a:a1:39:89:00:f4:18:fc:
        33:68:50:a7:a6:da:bc:c0:d5:2b:27:0c:cd:90:50:68:
        32:35:e8:75:ca:b2:59:06:15:22:39:81:12:86:9c:32:
        10:52:f4:7e:f3:cc:22:3e:4d:42:33:43:22:4e:39:38
    Fingerprint (SHA-256):
        A6:77:04:EA:F0:F2:56:80:52:26:E3:23:17:EE:7C:6E:20:11:4C:2A:C2:57:C8:77:3C:0B:B8:B3:A3:1E:B9:4D
    Fingerprint (SHA1):
        D8:63:FB:B0:CF:58:A6:8C:EA:8C:92:B8:5A:22:68:03:C7:78:F3:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3663: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115399 (0x1e67be47)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:53:53 2017
            Not After : Tue May 10 11:53:53 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:47:56:ab:49:55:72:de:75:29:c8:42:0e:ed:c4:42:
                    6f:10:64:3e:71:1a:92:e5:52:b3:7b:de:d7:e2:48:32:
                    df:d1:f2:f5:4d:1f:f1:b4:26:2d:7f:76:4e:4a:2b:35:
                    62:d4:25:17:fb:12:96:06:bc:18:95:06:e8:88:33:ee:
                    59:89:60:fc:de:7a:13:17:ed:fb:ca:1c:b9:61:50:ec:
                    1b:81:ab:03:01:8d:11:d0:85:ea:45:1d:c1:ac:27:47:
                    77:2b:aa:3a:70:47:68:bf:f4:dc:2c:31:c6:eb:4e:be:
                    91:50:44:8a:58:48:88:b0:be:85:13:1c:07:e7:bf:56:
                    c4:da:4a:27:1b:0d:68:a1:b6:3e:b9:0b:e2:09:d1:a0:
                    7a:4a:d0:55:2d:34:5b:ab:3d:d3:6f:2b:af:9a:55:1a:
                    5e:7e:ad:e5:7f:70:77:0d:be:bb:1c:db:01:c5:b2:09:
                    bb:25:47:93:b8:19:6f:43:80:65:25:a0:ad:45:19:9b:
                    14:e8:a3:f1:51:ff:d9:26:ab:2e:a0:64:e0:c6:84:f4:
                    2f:48:a4:a2:e3:27:9d:fb:3d:47:a9:bb:63:1a:5a:9f:
                    a9:28:7c:89:3f:e1:bd:ec:24:e4:22:32:77:10:27:e3:
                    72:7f:0f:9e:b2:f7:ff:30:39:45:f6:35:9d:ef:8d:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:ca:59:37:1c:9a:f1:1d:16:43:12:99:da:53:29:80:
        af:00:91:89:1b:d8:49:6b:b9:4f:d1:04:e1:47:06:c0:
        6c:7a:56:c3:93:3b:72:48:19:d7:f1:49:b7:02:56:58:
        c7:b1:da:5a:92:3f:e4:b3:22:e4:a9:e2:41:ae:f5:73:
        d6:0d:58:a8:01:78:33:d7:97:00:e9:b9:4c:91:68:ad:
        81:42:8a:f7:32:c5:6a:57:41:c3:cc:31:cc:44:64:dc:
        29:f3:d0:b0:4e:0d:d6:0c:c4:08:ce:3e:37:ba:dd:13:
        21:83:49:5c:19:46:36:1a:c0:ed:f2:6f:75:66:4c:dc:
        07:dd:c8:26:89:1e:0d:0e:89:31:cb:2f:4b:87:a1:3b:
        eb:cd:7b:46:b8:86:9b:81:59:7b:e7:a9:44:61:f1:9f:
        74:e4:66:4a:1b:78:db:8e:c5:ae:a6:1d:4d:af:9f:37:
        5a:f6:4c:c8:e6:ef:86:ae:a3:1c:6c:2d:c5:6d:6a:03:
        47:97:9c:f2:ea:1e:65:de:7a:a1:39:89:00:f4:18:fc:
        33:68:50:a7:a6:da:bc:c0:d5:2b:27:0c:cd:90:50:68:
        32:35:e8:75:ca:b2:59:06:15:22:39:81:12:86:9c:32:
        10:52:f4:7e:f3:cc:22:3e:4d:42:33:43:22:4e:39:38
    Fingerprint (SHA-256):
        A6:77:04:EA:F0:F2:56:80:52:26:E3:23:17:EE:7C:6E:20:11:4C:2A:C2:57:C8:77:3C:0B:B8:B3:A3:1E:B9:4D
    Fingerprint (SHA1):
        D8:63:FB:B0:CF:58:A6:8C:EA:8C:92:B8:5A:22:68:03:C7:78:F3:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3664: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3665: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115402 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3666: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3667: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3668: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3669: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510115403   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3670: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3671: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3672: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3673: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115404   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3674: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3675: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3676: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3677: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 510115405   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3678: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3679: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3680: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3681: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510115406   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3682: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3683: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3684: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3685: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510115407   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3686: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3687: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #3688: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3689: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 510115408   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3690: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3691: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3692: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #3693: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #3694: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3695: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #3696: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115402 (0x1e67be4a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:55 2017
            Not After : Tue May 10 11:53:55 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:9b:98:02:e7:7d:f5:b6:40:4a:29:65:d1:57:8b:4e:
                    f7:e3:2a:d2:b7:99:ed:6e:71:36:f9:05:4b:b0:da:17:
                    f1:fa:a8:f0:21:94:b8:c0:6d:1d:19:38:c3:69:d9:58:
                    96:ec:31:ef:88:11:f0:91:02:cd:0c:78:77:aa:27:6a:
                    46:4c:50:d6:95:ac:22:a8:4e:91:b6:ad:31:17:c1:ea:
                    d2:8d:41:cc:7f:6a:c7:33:d0:54:3c:44:e3:54:79:f4:
                    a3:fb:37:e9:0b:bc:d4:f9:06:c4:b5:f8:e8:b5:da:03:
                    91:5e:7a:ff:06:65:81:64:ac:fb:62:02:aa:4d:c8:5f:
                    7f:d0:87:36:11:f7:53:d5:e5:da:6d:2f:ee:20:94:be:
                    90:cb:46:d3:93:27:33:6c:8b:e2:ed:f7:62:db:f9:97:
                    ad:b5:9f:d0:a7:dc:d0:62:20:6a:e0:2b:54:9f:82:79:
                    13:b8:61:bf:b8:ff:46:24:ec:f7:14:fc:c5:90:76:2d:
                    f1:48:1b:55:1f:3c:20:8a:12:32:b7:48:2d:44:45:a2:
                    4e:ab:06:f9:01:90:52:17:5d:3f:28:73:06:ed:a4:42:
                    0c:b7:3c:8b:72:e2:43:8c:db:d2:3b:72:4a:b3:38:a4:
                    44:ed:46:71:de:46:f4:a1:9f:e4:b4:65:16:dd:8a:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:89:a1:35:02:ef:45:36:a2:3c:a7:c6:7f:e9:72:49:
        3a:14:0b:ec:32:2b:68:6e:6b:a3:11:73:d8:54:e4:6f:
        02:c4:50:7d:f1:7b:bb:99:7b:78:5c:9d:e8:7d:3f:05:
        52:f4:da:2c:5c:ad:13:47:80:99:64:3a:cc:83:8b:ab:
        a5:90:d1:10:93:c4:54:4b:6d:58:bb:68:1c:3a:88:21:
        41:6d:ee:28:06:af:3c:c4:9b:d4:24:46:89:95:11:7a:
        c7:2d:87:8b:a0:28:d3:1c:49:07:85:7a:4f:c1:b6:2c:
        08:a1:77:66:29:ab:90:82:a5:36:3f:cf:5b:29:e0:be:
        da:e2:fe:6d:ed:dd:31:7a:d7:63:bd:c8:c8:b2:26:da:
        4d:f7:4f:a3:b0:6a:6d:a0:87:6d:50:fb:e2:8d:f0:d6:
        79:e7:42:a6:78:f8:03:92:c4:85:0f:75:40:fe:82:ee:
        61:4a:f6:65:d0:1d:cd:4b:89:19:53:fb:b3:5e:6d:d2:
        7e:f8:86:e3:79:da:38:65:47:3a:db:22:b8:87:86:32:
        f5:05:60:e6:0c:77:a3:f3:31:2d:24:8e:e0:7c:ec:c2:
        63:0e:6f:25:3d:21:75:d1:26:0b:b5:40:9b:4c:86:f8:
        89:83:fc:6a:f4:2b:5b:ff:e1:15:a8:55:2f:99:e6:10
    Fingerprint (SHA-256):
        37:38:B1:2F:71:79:DD:1C:E1:0F:8D:7A:FA:53:AC:2D:42:4F:B6:B7:C9:58:AB:56:6B:E3:CF:D1:06:F8:CE:39
    Fingerprint (SHA1):
        11:F8:13:F4:7E:8E:21:4D:38:7B:CF:25:E2:88:77:E7:09:F7:A0:73
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3697: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3698: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3699: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3700: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115402 (0x1e67be4a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:55 2017
            Not After : Tue May 10 11:53:55 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:9b:98:02:e7:7d:f5:b6:40:4a:29:65:d1:57:8b:4e:
                    f7:e3:2a:d2:b7:99:ed:6e:71:36:f9:05:4b:b0:da:17:
                    f1:fa:a8:f0:21:94:b8:c0:6d:1d:19:38:c3:69:d9:58:
                    96:ec:31:ef:88:11:f0:91:02:cd:0c:78:77:aa:27:6a:
                    46:4c:50:d6:95:ac:22:a8:4e:91:b6:ad:31:17:c1:ea:
                    d2:8d:41:cc:7f:6a:c7:33:d0:54:3c:44:e3:54:79:f4:
                    a3:fb:37:e9:0b:bc:d4:f9:06:c4:b5:f8:e8:b5:da:03:
                    91:5e:7a:ff:06:65:81:64:ac:fb:62:02:aa:4d:c8:5f:
                    7f:d0:87:36:11:f7:53:d5:e5:da:6d:2f:ee:20:94:be:
                    90:cb:46:d3:93:27:33:6c:8b:e2:ed:f7:62:db:f9:97:
                    ad:b5:9f:d0:a7:dc:d0:62:20:6a:e0:2b:54:9f:82:79:
                    13:b8:61:bf:b8:ff:46:24:ec:f7:14:fc:c5:90:76:2d:
                    f1:48:1b:55:1f:3c:20:8a:12:32:b7:48:2d:44:45:a2:
                    4e:ab:06:f9:01:90:52:17:5d:3f:28:73:06:ed:a4:42:
                    0c:b7:3c:8b:72:e2:43:8c:db:d2:3b:72:4a:b3:38:a4:
                    44:ed:46:71:de:46:f4:a1:9f:e4:b4:65:16:dd:8a:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:89:a1:35:02:ef:45:36:a2:3c:a7:c6:7f:e9:72:49:
        3a:14:0b:ec:32:2b:68:6e:6b:a3:11:73:d8:54:e4:6f:
        02:c4:50:7d:f1:7b:bb:99:7b:78:5c:9d:e8:7d:3f:05:
        52:f4:da:2c:5c:ad:13:47:80:99:64:3a:cc:83:8b:ab:
        a5:90:d1:10:93:c4:54:4b:6d:58:bb:68:1c:3a:88:21:
        41:6d:ee:28:06:af:3c:c4:9b:d4:24:46:89:95:11:7a:
        c7:2d:87:8b:a0:28:d3:1c:49:07:85:7a:4f:c1:b6:2c:
        08:a1:77:66:29:ab:90:82:a5:36:3f:cf:5b:29:e0:be:
        da:e2:fe:6d:ed:dd:31:7a:d7:63:bd:c8:c8:b2:26:da:
        4d:f7:4f:a3:b0:6a:6d:a0:87:6d:50:fb:e2:8d:f0:d6:
        79:e7:42:a6:78:f8:03:92:c4:85:0f:75:40:fe:82:ee:
        61:4a:f6:65:d0:1d:cd:4b:89:19:53:fb:b3:5e:6d:d2:
        7e:f8:86:e3:79:da:38:65:47:3a:db:22:b8:87:86:32:
        f5:05:60:e6:0c:77:a3:f3:31:2d:24:8e:e0:7c:ec:c2:
        63:0e:6f:25:3d:21:75:d1:26:0b:b5:40:9b:4c:86:f8:
        89:83:fc:6a:f4:2b:5b:ff:e1:15:a8:55:2f:99:e6:10
    Fingerprint (SHA-256):
        37:38:B1:2F:71:79:DD:1C:E1:0F:8D:7A:FA:53:AC:2D:42:4F:B6:B7:C9:58:AB:56:6B:E3:CF:D1:06:F8:CE:39
    Fingerprint (SHA1):
        11:F8:13:F4:7E:8E:21:4D:38:7B:CF:25:E2:88:77:E7:09:F7:A0:73
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3701: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3702: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3703: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115409 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3704: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3705: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3706: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3707: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510115410   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3708: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3709: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #3710: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3711: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 510115411   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3712: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3713: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #3714: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3715: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 510115412   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3716: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3717: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3718: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3719: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 510115413   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3720: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3721: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #3722: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3723: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 510115414   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3724: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3725: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #3726: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3727: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 510115415   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3728: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3729: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3730: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3731: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 510115416   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3732: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3733: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #3734: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3735: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 510115417   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3736: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3737: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #3738: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3739: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 510115418   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3740: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3741: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3742: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3743: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 510115419   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3744: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3745: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #3746: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3747: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 510115420   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3748: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3749: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #3750: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3751: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 510115421   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3752: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3753: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3754: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3755: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 510115422   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3756: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3757: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #3758: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3759: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 510115423   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3760: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3761: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #3762: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3763: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 510115424   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3764: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3765: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #3766: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3767: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 510115425   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3768: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3769: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #3770: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3771: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 510115426   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3772: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3773: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #3774: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3775: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 510115427   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3776: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3777: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #3778: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3779: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 510115428   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3780: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3781: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #3782: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3783: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 510115429   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3784: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3785: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #3786: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3787: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 510115430   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3788: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3789: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #3790: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3791: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 510115431   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3792: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3793: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #3794: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3795: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 510115432   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3796: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3797: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #3798: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3799: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 510115433   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3800: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3801: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #3802: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3803: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 510115434   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3804: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3805: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #3806: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3807: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 510115435   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3808: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3809: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #3810: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3811: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 510115436   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3812: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3813: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #3814: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3815: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 510115437   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3816: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3817: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #3818: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3819: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 510115438   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3820: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3821: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3822: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115409 (0x1e67be51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:58 2017
            Not After : Tue May 10 11:53:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:b8:71:ee:a8:35:4d:82:df:02:1e:12:c4:f0:c6:9b:
                    f8:37:79:39:79:12:6c:12:22:1e:dc:90:db:63:36:86:
                    d3:63:63:c1:8c:40:75:aa:65:d6:9b:4f:a0:1f:76:c5:
                    4a:13:fd:64:bb:e4:42:61:48:cd:32:8a:25:1b:7b:da:
                    08:ef:88:a2:0e:4e:07:07:f2:ea:da:be:a2:a8:22:f2:
                    df:65:9e:20:ed:af:0a:58:19:a1:1a:89:10:36:1d:73:
                    28:e1:43:c1:47:cd:10:83:ab:f6:53:01:64:10:75:4a:
                    ee:1d:2c:97:b0:55:5b:9d:b8:2d:5b:cf:44:b2:4e:cd:
                    0d:ab:f2:d3:3a:08:5a:8b:74:14:8a:ba:0d:84:b8:19:
                    a8:75:df:c3:8b:87:f4:c1:8c:f7:72:db:e9:8c:18:61:
                    07:f6:c6:21:70:c7:c0:21:71:48:8f:4c:1c:c9:38:17:
                    f3:2d:bd:53:d9:47:0a:fb:6f:17:f7:32:e6:f1:93:44:
                    85:51:c3:c8:01:c2:f2:0c:59:70:fe:4b:48:e2:df:10:
                    95:fb:d9:f4:2d:8f:5b:30:b1:92:3f:35:2a:24:57:26:
                    30:ce:dd:08:1a:f5:b7:1d:86:ea:4a:ea:1d:42:64:d4:
                    1a:37:c3:c7:24:6f:00:98:44:4a:44:f5:55:dc:39:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:ce:bb:3d:97:65:25:4c:56:46:fb:0d:fd:e9:d5:bb:
        c5:cf:2b:5b:29:76:c7:83:2a:c6:86:46:e0:c7:27:dd:
        be:b0:73:f3:31:ce:7b:8a:26:e0:50:7e:e8:3e:f2:64:
        53:e3:76:67:93:07:c2:c9:d7:54:b3:26:dd:ea:b5:76:
        25:7c:ea:83:5b:d0:8a:6e:6f:7b:e5:d5:3e:b8:5d:bd:
        98:e1:56:18:3f:2a:45:bf:8a:51:90:e1:f7:83:f2:4b:
        25:03:ae:d5:6b:be:5b:5b:6b:18:30:76:e7:0e:6e:84:
        22:25:ee:84:9b:ee:6c:a6:1d:30:67:4c:80:e4:b2:e8:
        ed:f4:b7:ba:62:90:94:5c:e7:95:81:0c:4b:5b:a8:fc:
        7f:b3:2f:89:f0:69:75:dd:15:6f:0d:f2:16:4e:0f:46:
        ca:a1:96:8d:41:74:76:54:b0:ce:92:a3:23:b2:ad:12:
        14:2d:24:c3:f2:79:6b:6e:65:f2:8d:e9:ac:e8:a4:f6:
        4c:8a:28:da:89:91:01:f0:d4:6c:cd:8e:01:60:43:0a:
        b3:8d:8c:32:b4:f0:9e:75:45:0c:c6:be:91:c2:c4:54:
        37:8b:a3:05:5d:bc:68:5f:bf:52:5b:9d:44:f7:38:b5:
        22:71:57:de:20:05:33:57:92:60:da:d5:ba:11:c7:ca
    Fingerprint (SHA-256):
        3E:68:3C:C0:E9:F4:0A:90:6B:5A:8A:46:BC:3D:9A:93:94:16:79:EA:2E:09:3D:C7:5D:F9:BD:1D:47:A7:37:0A
    Fingerprint (SHA1):
        48:8F:EE:6B:F7:9C:F8:72:0D:02:68:9E:56:D1:42:D6:2F:CE:A5:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3823: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3824: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115409 (0x1e67be51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:58 2017
            Not After : Tue May 10 11:53:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:b8:71:ee:a8:35:4d:82:df:02:1e:12:c4:f0:c6:9b:
                    f8:37:79:39:79:12:6c:12:22:1e:dc:90:db:63:36:86:
                    d3:63:63:c1:8c:40:75:aa:65:d6:9b:4f:a0:1f:76:c5:
                    4a:13:fd:64:bb:e4:42:61:48:cd:32:8a:25:1b:7b:da:
                    08:ef:88:a2:0e:4e:07:07:f2:ea:da:be:a2:a8:22:f2:
                    df:65:9e:20:ed:af:0a:58:19:a1:1a:89:10:36:1d:73:
                    28:e1:43:c1:47:cd:10:83:ab:f6:53:01:64:10:75:4a:
                    ee:1d:2c:97:b0:55:5b:9d:b8:2d:5b:cf:44:b2:4e:cd:
                    0d:ab:f2:d3:3a:08:5a:8b:74:14:8a:ba:0d:84:b8:19:
                    a8:75:df:c3:8b:87:f4:c1:8c:f7:72:db:e9:8c:18:61:
                    07:f6:c6:21:70:c7:c0:21:71:48:8f:4c:1c:c9:38:17:
                    f3:2d:bd:53:d9:47:0a:fb:6f:17:f7:32:e6:f1:93:44:
                    85:51:c3:c8:01:c2:f2:0c:59:70:fe:4b:48:e2:df:10:
                    95:fb:d9:f4:2d:8f:5b:30:b1:92:3f:35:2a:24:57:26:
                    30:ce:dd:08:1a:f5:b7:1d:86:ea:4a:ea:1d:42:64:d4:
                    1a:37:c3:c7:24:6f:00:98:44:4a:44:f5:55:dc:39:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:ce:bb:3d:97:65:25:4c:56:46:fb:0d:fd:e9:d5:bb:
        c5:cf:2b:5b:29:76:c7:83:2a:c6:86:46:e0:c7:27:dd:
        be:b0:73:f3:31:ce:7b:8a:26:e0:50:7e:e8:3e:f2:64:
        53:e3:76:67:93:07:c2:c9:d7:54:b3:26:dd:ea:b5:76:
        25:7c:ea:83:5b:d0:8a:6e:6f:7b:e5:d5:3e:b8:5d:bd:
        98:e1:56:18:3f:2a:45:bf:8a:51:90:e1:f7:83:f2:4b:
        25:03:ae:d5:6b:be:5b:5b:6b:18:30:76:e7:0e:6e:84:
        22:25:ee:84:9b:ee:6c:a6:1d:30:67:4c:80:e4:b2:e8:
        ed:f4:b7:ba:62:90:94:5c:e7:95:81:0c:4b:5b:a8:fc:
        7f:b3:2f:89:f0:69:75:dd:15:6f:0d:f2:16:4e:0f:46:
        ca:a1:96:8d:41:74:76:54:b0:ce:92:a3:23:b2:ad:12:
        14:2d:24:c3:f2:79:6b:6e:65:f2:8d:e9:ac:e8:a4:f6:
        4c:8a:28:da:89:91:01:f0:d4:6c:cd:8e:01:60:43:0a:
        b3:8d:8c:32:b4:f0:9e:75:45:0c:c6:be:91:c2:c4:54:
        37:8b:a3:05:5d:bc:68:5f:bf:52:5b:9d:44:f7:38:b5:
        22:71:57:de:20:05:33:57:92:60:da:d5:ba:11:c7:ca
    Fingerprint (SHA-256):
        3E:68:3C:C0:E9:F4:0A:90:6B:5A:8A:46:BC:3D:9A:93:94:16:79:EA:2E:09:3D:C7:5D:F9:BD:1D:47:A7:37:0A
    Fingerprint (SHA1):
        48:8F:EE:6B:F7:9C:F8:72:0D:02:68:9E:56:D1:42:D6:2F:CE:A5:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3825: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3826: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3827: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3828: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115409 (0x1e67be51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:58 2017
            Not After : Tue May 10 11:53:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:b8:71:ee:a8:35:4d:82:df:02:1e:12:c4:f0:c6:9b:
                    f8:37:79:39:79:12:6c:12:22:1e:dc:90:db:63:36:86:
                    d3:63:63:c1:8c:40:75:aa:65:d6:9b:4f:a0:1f:76:c5:
                    4a:13:fd:64:bb:e4:42:61:48:cd:32:8a:25:1b:7b:da:
                    08:ef:88:a2:0e:4e:07:07:f2:ea:da:be:a2:a8:22:f2:
                    df:65:9e:20:ed:af:0a:58:19:a1:1a:89:10:36:1d:73:
                    28:e1:43:c1:47:cd:10:83:ab:f6:53:01:64:10:75:4a:
                    ee:1d:2c:97:b0:55:5b:9d:b8:2d:5b:cf:44:b2:4e:cd:
                    0d:ab:f2:d3:3a:08:5a:8b:74:14:8a:ba:0d:84:b8:19:
                    a8:75:df:c3:8b:87:f4:c1:8c:f7:72:db:e9:8c:18:61:
                    07:f6:c6:21:70:c7:c0:21:71:48:8f:4c:1c:c9:38:17:
                    f3:2d:bd:53:d9:47:0a:fb:6f:17:f7:32:e6:f1:93:44:
                    85:51:c3:c8:01:c2:f2:0c:59:70:fe:4b:48:e2:df:10:
                    95:fb:d9:f4:2d:8f:5b:30:b1:92:3f:35:2a:24:57:26:
                    30:ce:dd:08:1a:f5:b7:1d:86:ea:4a:ea:1d:42:64:d4:
                    1a:37:c3:c7:24:6f:00:98:44:4a:44:f5:55:dc:39:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:ce:bb:3d:97:65:25:4c:56:46:fb:0d:fd:e9:d5:bb:
        c5:cf:2b:5b:29:76:c7:83:2a:c6:86:46:e0:c7:27:dd:
        be:b0:73:f3:31:ce:7b:8a:26:e0:50:7e:e8:3e:f2:64:
        53:e3:76:67:93:07:c2:c9:d7:54:b3:26:dd:ea:b5:76:
        25:7c:ea:83:5b:d0:8a:6e:6f:7b:e5:d5:3e:b8:5d:bd:
        98:e1:56:18:3f:2a:45:bf:8a:51:90:e1:f7:83:f2:4b:
        25:03:ae:d5:6b:be:5b:5b:6b:18:30:76:e7:0e:6e:84:
        22:25:ee:84:9b:ee:6c:a6:1d:30:67:4c:80:e4:b2:e8:
        ed:f4:b7:ba:62:90:94:5c:e7:95:81:0c:4b:5b:a8:fc:
        7f:b3:2f:89:f0:69:75:dd:15:6f:0d:f2:16:4e:0f:46:
        ca:a1:96:8d:41:74:76:54:b0:ce:92:a3:23:b2:ad:12:
        14:2d:24:c3:f2:79:6b:6e:65:f2:8d:e9:ac:e8:a4:f6:
        4c:8a:28:da:89:91:01:f0:d4:6c:cd:8e:01:60:43:0a:
        b3:8d:8c:32:b4:f0:9e:75:45:0c:c6:be:91:c2:c4:54:
        37:8b:a3:05:5d:bc:68:5f:bf:52:5b:9d:44:f7:38:b5:
        22:71:57:de:20:05:33:57:92:60:da:d5:ba:11:c7:ca
    Fingerprint (SHA-256):
        3E:68:3C:C0:E9:F4:0A:90:6B:5A:8A:46:BC:3D:9A:93:94:16:79:EA:2E:09:3D:C7:5D:F9:BD:1D:47:A7:37:0A
    Fingerprint (SHA1):
        48:8F:EE:6B:F7:9C:F8:72:0D:02:68:9E:56:D1:42:D6:2F:CE:A5:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3829: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3830: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3831: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3832: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115409 (0x1e67be51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:58 2017
            Not After : Tue May 10 11:53:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:b8:71:ee:a8:35:4d:82:df:02:1e:12:c4:f0:c6:9b:
                    f8:37:79:39:79:12:6c:12:22:1e:dc:90:db:63:36:86:
                    d3:63:63:c1:8c:40:75:aa:65:d6:9b:4f:a0:1f:76:c5:
                    4a:13:fd:64:bb:e4:42:61:48:cd:32:8a:25:1b:7b:da:
                    08:ef:88:a2:0e:4e:07:07:f2:ea:da:be:a2:a8:22:f2:
                    df:65:9e:20:ed:af:0a:58:19:a1:1a:89:10:36:1d:73:
                    28:e1:43:c1:47:cd:10:83:ab:f6:53:01:64:10:75:4a:
                    ee:1d:2c:97:b0:55:5b:9d:b8:2d:5b:cf:44:b2:4e:cd:
                    0d:ab:f2:d3:3a:08:5a:8b:74:14:8a:ba:0d:84:b8:19:
                    a8:75:df:c3:8b:87:f4:c1:8c:f7:72:db:e9:8c:18:61:
                    07:f6:c6:21:70:c7:c0:21:71:48:8f:4c:1c:c9:38:17:
                    f3:2d:bd:53:d9:47:0a:fb:6f:17:f7:32:e6:f1:93:44:
                    85:51:c3:c8:01:c2:f2:0c:59:70:fe:4b:48:e2:df:10:
                    95:fb:d9:f4:2d:8f:5b:30:b1:92:3f:35:2a:24:57:26:
                    30:ce:dd:08:1a:f5:b7:1d:86:ea:4a:ea:1d:42:64:d4:
                    1a:37:c3:c7:24:6f:00:98:44:4a:44:f5:55:dc:39:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:ce:bb:3d:97:65:25:4c:56:46:fb:0d:fd:e9:d5:bb:
        c5:cf:2b:5b:29:76:c7:83:2a:c6:86:46:e0:c7:27:dd:
        be:b0:73:f3:31:ce:7b:8a:26:e0:50:7e:e8:3e:f2:64:
        53:e3:76:67:93:07:c2:c9:d7:54:b3:26:dd:ea:b5:76:
        25:7c:ea:83:5b:d0:8a:6e:6f:7b:e5:d5:3e:b8:5d:bd:
        98:e1:56:18:3f:2a:45:bf:8a:51:90:e1:f7:83:f2:4b:
        25:03:ae:d5:6b:be:5b:5b:6b:18:30:76:e7:0e:6e:84:
        22:25:ee:84:9b:ee:6c:a6:1d:30:67:4c:80:e4:b2:e8:
        ed:f4:b7:ba:62:90:94:5c:e7:95:81:0c:4b:5b:a8:fc:
        7f:b3:2f:89:f0:69:75:dd:15:6f:0d:f2:16:4e:0f:46:
        ca:a1:96:8d:41:74:76:54:b0:ce:92:a3:23:b2:ad:12:
        14:2d:24:c3:f2:79:6b:6e:65:f2:8d:e9:ac:e8:a4:f6:
        4c:8a:28:da:89:91:01:f0:d4:6c:cd:8e:01:60:43:0a:
        b3:8d:8c:32:b4:f0:9e:75:45:0c:c6:be:91:c2:c4:54:
        37:8b:a3:05:5d:bc:68:5f:bf:52:5b:9d:44:f7:38:b5:
        22:71:57:de:20:05:33:57:92:60:da:d5:ba:11:c7:ca
    Fingerprint (SHA-256):
        3E:68:3C:C0:E9:F4:0A:90:6B:5A:8A:46:BC:3D:9A:93:94:16:79:EA:2E:09:3D:C7:5D:F9:BD:1D:47:A7:37:0A
    Fingerprint (SHA1):
        48:8F:EE:6B:F7:9C:F8:72:0D:02:68:9E:56:D1:42:D6:2F:CE:A5:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3833: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115409 (0x1e67be51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:58 2017
            Not After : Tue May 10 11:53:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:b8:71:ee:a8:35:4d:82:df:02:1e:12:c4:f0:c6:9b:
                    f8:37:79:39:79:12:6c:12:22:1e:dc:90:db:63:36:86:
                    d3:63:63:c1:8c:40:75:aa:65:d6:9b:4f:a0:1f:76:c5:
                    4a:13:fd:64:bb:e4:42:61:48:cd:32:8a:25:1b:7b:da:
                    08:ef:88:a2:0e:4e:07:07:f2:ea:da:be:a2:a8:22:f2:
                    df:65:9e:20:ed:af:0a:58:19:a1:1a:89:10:36:1d:73:
                    28:e1:43:c1:47:cd:10:83:ab:f6:53:01:64:10:75:4a:
                    ee:1d:2c:97:b0:55:5b:9d:b8:2d:5b:cf:44:b2:4e:cd:
                    0d:ab:f2:d3:3a:08:5a:8b:74:14:8a:ba:0d:84:b8:19:
                    a8:75:df:c3:8b:87:f4:c1:8c:f7:72:db:e9:8c:18:61:
                    07:f6:c6:21:70:c7:c0:21:71:48:8f:4c:1c:c9:38:17:
                    f3:2d:bd:53:d9:47:0a:fb:6f:17:f7:32:e6:f1:93:44:
                    85:51:c3:c8:01:c2:f2:0c:59:70:fe:4b:48:e2:df:10:
                    95:fb:d9:f4:2d:8f:5b:30:b1:92:3f:35:2a:24:57:26:
                    30:ce:dd:08:1a:f5:b7:1d:86:ea:4a:ea:1d:42:64:d4:
                    1a:37:c3:c7:24:6f:00:98:44:4a:44:f5:55:dc:39:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:ce:bb:3d:97:65:25:4c:56:46:fb:0d:fd:e9:d5:bb:
        c5:cf:2b:5b:29:76:c7:83:2a:c6:86:46:e0:c7:27:dd:
        be:b0:73:f3:31:ce:7b:8a:26:e0:50:7e:e8:3e:f2:64:
        53:e3:76:67:93:07:c2:c9:d7:54:b3:26:dd:ea:b5:76:
        25:7c:ea:83:5b:d0:8a:6e:6f:7b:e5:d5:3e:b8:5d:bd:
        98:e1:56:18:3f:2a:45:bf:8a:51:90:e1:f7:83:f2:4b:
        25:03:ae:d5:6b:be:5b:5b:6b:18:30:76:e7:0e:6e:84:
        22:25:ee:84:9b:ee:6c:a6:1d:30:67:4c:80:e4:b2:e8:
        ed:f4:b7:ba:62:90:94:5c:e7:95:81:0c:4b:5b:a8:fc:
        7f:b3:2f:89:f0:69:75:dd:15:6f:0d:f2:16:4e:0f:46:
        ca:a1:96:8d:41:74:76:54:b0:ce:92:a3:23:b2:ad:12:
        14:2d:24:c3:f2:79:6b:6e:65:f2:8d:e9:ac:e8:a4:f6:
        4c:8a:28:da:89:91:01:f0:d4:6c:cd:8e:01:60:43:0a:
        b3:8d:8c:32:b4:f0:9e:75:45:0c:c6:be:91:c2:c4:54:
        37:8b:a3:05:5d:bc:68:5f:bf:52:5b:9d:44:f7:38:b5:
        22:71:57:de:20:05:33:57:92:60:da:d5:ba:11:c7:ca
    Fingerprint (SHA-256):
        3E:68:3C:C0:E9:F4:0A:90:6B:5A:8A:46:BC:3D:9A:93:94:16:79:EA:2E:09:3D:C7:5D:F9:BD:1D:47:A7:37:0A
    Fingerprint (SHA1):
        48:8F:EE:6B:F7:9C:F8:72:0D:02:68:9E:56:D1:42:D6:2F:CE:A5:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3834: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3835: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115409 (0x1e67be51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:58 2017
            Not After : Tue May 10 11:53:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:b8:71:ee:a8:35:4d:82:df:02:1e:12:c4:f0:c6:9b:
                    f8:37:79:39:79:12:6c:12:22:1e:dc:90:db:63:36:86:
                    d3:63:63:c1:8c:40:75:aa:65:d6:9b:4f:a0:1f:76:c5:
                    4a:13:fd:64:bb:e4:42:61:48:cd:32:8a:25:1b:7b:da:
                    08:ef:88:a2:0e:4e:07:07:f2:ea:da:be:a2:a8:22:f2:
                    df:65:9e:20:ed:af:0a:58:19:a1:1a:89:10:36:1d:73:
                    28:e1:43:c1:47:cd:10:83:ab:f6:53:01:64:10:75:4a:
                    ee:1d:2c:97:b0:55:5b:9d:b8:2d:5b:cf:44:b2:4e:cd:
                    0d:ab:f2:d3:3a:08:5a:8b:74:14:8a:ba:0d:84:b8:19:
                    a8:75:df:c3:8b:87:f4:c1:8c:f7:72:db:e9:8c:18:61:
                    07:f6:c6:21:70:c7:c0:21:71:48:8f:4c:1c:c9:38:17:
                    f3:2d:bd:53:d9:47:0a:fb:6f:17:f7:32:e6:f1:93:44:
                    85:51:c3:c8:01:c2:f2:0c:59:70:fe:4b:48:e2:df:10:
                    95:fb:d9:f4:2d:8f:5b:30:b1:92:3f:35:2a:24:57:26:
                    30:ce:dd:08:1a:f5:b7:1d:86:ea:4a:ea:1d:42:64:d4:
                    1a:37:c3:c7:24:6f:00:98:44:4a:44:f5:55:dc:39:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:ce:bb:3d:97:65:25:4c:56:46:fb:0d:fd:e9:d5:bb:
        c5:cf:2b:5b:29:76:c7:83:2a:c6:86:46:e0:c7:27:dd:
        be:b0:73:f3:31:ce:7b:8a:26:e0:50:7e:e8:3e:f2:64:
        53:e3:76:67:93:07:c2:c9:d7:54:b3:26:dd:ea:b5:76:
        25:7c:ea:83:5b:d0:8a:6e:6f:7b:e5:d5:3e:b8:5d:bd:
        98:e1:56:18:3f:2a:45:bf:8a:51:90:e1:f7:83:f2:4b:
        25:03:ae:d5:6b:be:5b:5b:6b:18:30:76:e7:0e:6e:84:
        22:25:ee:84:9b:ee:6c:a6:1d:30:67:4c:80:e4:b2:e8:
        ed:f4:b7:ba:62:90:94:5c:e7:95:81:0c:4b:5b:a8:fc:
        7f:b3:2f:89:f0:69:75:dd:15:6f:0d:f2:16:4e:0f:46:
        ca:a1:96:8d:41:74:76:54:b0:ce:92:a3:23:b2:ad:12:
        14:2d:24:c3:f2:79:6b:6e:65:f2:8d:e9:ac:e8:a4:f6:
        4c:8a:28:da:89:91:01:f0:d4:6c:cd:8e:01:60:43:0a:
        b3:8d:8c:32:b4:f0:9e:75:45:0c:c6:be:91:c2:c4:54:
        37:8b:a3:05:5d:bc:68:5f:bf:52:5b:9d:44:f7:38:b5:
        22:71:57:de:20:05:33:57:92:60:da:d5:ba:11:c7:ca
    Fingerprint (SHA-256):
        3E:68:3C:C0:E9:F4:0A:90:6B:5A:8A:46:BC:3D:9A:93:94:16:79:EA:2E:09:3D:C7:5D:F9:BD:1D:47:A7:37:0A
    Fingerprint (SHA1):
        48:8F:EE:6B:F7:9C:F8:72:0D:02:68:9E:56:D1:42:D6:2F:CE:A5:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3836: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3837: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3838: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3839: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115409 (0x1e67be51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:58 2017
            Not After : Tue May 10 11:53:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:b8:71:ee:a8:35:4d:82:df:02:1e:12:c4:f0:c6:9b:
                    f8:37:79:39:79:12:6c:12:22:1e:dc:90:db:63:36:86:
                    d3:63:63:c1:8c:40:75:aa:65:d6:9b:4f:a0:1f:76:c5:
                    4a:13:fd:64:bb:e4:42:61:48:cd:32:8a:25:1b:7b:da:
                    08:ef:88:a2:0e:4e:07:07:f2:ea:da:be:a2:a8:22:f2:
                    df:65:9e:20:ed:af:0a:58:19:a1:1a:89:10:36:1d:73:
                    28:e1:43:c1:47:cd:10:83:ab:f6:53:01:64:10:75:4a:
                    ee:1d:2c:97:b0:55:5b:9d:b8:2d:5b:cf:44:b2:4e:cd:
                    0d:ab:f2:d3:3a:08:5a:8b:74:14:8a:ba:0d:84:b8:19:
                    a8:75:df:c3:8b:87:f4:c1:8c:f7:72:db:e9:8c:18:61:
                    07:f6:c6:21:70:c7:c0:21:71:48:8f:4c:1c:c9:38:17:
                    f3:2d:bd:53:d9:47:0a:fb:6f:17:f7:32:e6:f1:93:44:
                    85:51:c3:c8:01:c2:f2:0c:59:70:fe:4b:48:e2:df:10:
                    95:fb:d9:f4:2d:8f:5b:30:b1:92:3f:35:2a:24:57:26:
                    30:ce:dd:08:1a:f5:b7:1d:86:ea:4a:ea:1d:42:64:d4:
                    1a:37:c3:c7:24:6f:00:98:44:4a:44:f5:55:dc:39:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:ce:bb:3d:97:65:25:4c:56:46:fb:0d:fd:e9:d5:bb:
        c5:cf:2b:5b:29:76:c7:83:2a:c6:86:46:e0:c7:27:dd:
        be:b0:73:f3:31:ce:7b:8a:26:e0:50:7e:e8:3e:f2:64:
        53:e3:76:67:93:07:c2:c9:d7:54:b3:26:dd:ea:b5:76:
        25:7c:ea:83:5b:d0:8a:6e:6f:7b:e5:d5:3e:b8:5d:bd:
        98:e1:56:18:3f:2a:45:bf:8a:51:90:e1:f7:83:f2:4b:
        25:03:ae:d5:6b:be:5b:5b:6b:18:30:76:e7:0e:6e:84:
        22:25:ee:84:9b:ee:6c:a6:1d:30:67:4c:80:e4:b2:e8:
        ed:f4:b7:ba:62:90:94:5c:e7:95:81:0c:4b:5b:a8:fc:
        7f:b3:2f:89:f0:69:75:dd:15:6f:0d:f2:16:4e:0f:46:
        ca:a1:96:8d:41:74:76:54:b0:ce:92:a3:23:b2:ad:12:
        14:2d:24:c3:f2:79:6b:6e:65:f2:8d:e9:ac:e8:a4:f6:
        4c:8a:28:da:89:91:01:f0:d4:6c:cd:8e:01:60:43:0a:
        b3:8d:8c:32:b4:f0:9e:75:45:0c:c6:be:91:c2:c4:54:
        37:8b:a3:05:5d:bc:68:5f:bf:52:5b:9d:44:f7:38:b5:
        22:71:57:de:20:05:33:57:92:60:da:d5:ba:11:c7:ca
    Fingerprint (SHA-256):
        3E:68:3C:C0:E9:F4:0A:90:6B:5A:8A:46:BC:3D:9A:93:94:16:79:EA:2E:09:3D:C7:5D:F9:BD:1D:47:A7:37:0A
    Fingerprint (SHA1):
        48:8F:EE:6B:F7:9C:F8:72:0D:02:68:9E:56:D1:42:D6:2F:CE:A5:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3840: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115409 (0x1e67be51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:58 2017
            Not After : Tue May 10 11:53:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:b8:71:ee:a8:35:4d:82:df:02:1e:12:c4:f0:c6:9b:
                    f8:37:79:39:79:12:6c:12:22:1e:dc:90:db:63:36:86:
                    d3:63:63:c1:8c:40:75:aa:65:d6:9b:4f:a0:1f:76:c5:
                    4a:13:fd:64:bb:e4:42:61:48:cd:32:8a:25:1b:7b:da:
                    08:ef:88:a2:0e:4e:07:07:f2:ea:da:be:a2:a8:22:f2:
                    df:65:9e:20:ed:af:0a:58:19:a1:1a:89:10:36:1d:73:
                    28:e1:43:c1:47:cd:10:83:ab:f6:53:01:64:10:75:4a:
                    ee:1d:2c:97:b0:55:5b:9d:b8:2d:5b:cf:44:b2:4e:cd:
                    0d:ab:f2:d3:3a:08:5a:8b:74:14:8a:ba:0d:84:b8:19:
                    a8:75:df:c3:8b:87:f4:c1:8c:f7:72:db:e9:8c:18:61:
                    07:f6:c6:21:70:c7:c0:21:71:48:8f:4c:1c:c9:38:17:
                    f3:2d:bd:53:d9:47:0a:fb:6f:17:f7:32:e6:f1:93:44:
                    85:51:c3:c8:01:c2:f2:0c:59:70:fe:4b:48:e2:df:10:
                    95:fb:d9:f4:2d:8f:5b:30:b1:92:3f:35:2a:24:57:26:
                    30:ce:dd:08:1a:f5:b7:1d:86:ea:4a:ea:1d:42:64:d4:
                    1a:37:c3:c7:24:6f:00:98:44:4a:44:f5:55:dc:39:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:ce:bb:3d:97:65:25:4c:56:46:fb:0d:fd:e9:d5:bb:
        c5:cf:2b:5b:29:76:c7:83:2a:c6:86:46:e0:c7:27:dd:
        be:b0:73:f3:31:ce:7b:8a:26:e0:50:7e:e8:3e:f2:64:
        53:e3:76:67:93:07:c2:c9:d7:54:b3:26:dd:ea:b5:76:
        25:7c:ea:83:5b:d0:8a:6e:6f:7b:e5:d5:3e:b8:5d:bd:
        98:e1:56:18:3f:2a:45:bf:8a:51:90:e1:f7:83:f2:4b:
        25:03:ae:d5:6b:be:5b:5b:6b:18:30:76:e7:0e:6e:84:
        22:25:ee:84:9b:ee:6c:a6:1d:30:67:4c:80:e4:b2:e8:
        ed:f4:b7:ba:62:90:94:5c:e7:95:81:0c:4b:5b:a8:fc:
        7f:b3:2f:89:f0:69:75:dd:15:6f:0d:f2:16:4e:0f:46:
        ca:a1:96:8d:41:74:76:54:b0:ce:92:a3:23:b2:ad:12:
        14:2d:24:c3:f2:79:6b:6e:65:f2:8d:e9:ac:e8:a4:f6:
        4c:8a:28:da:89:91:01:f0:d4:6c:cd:8e:01:60:43:0a:
        b3:8d:8c:32:b4:f0:9e:75:45:0c:c6:be:91:c2:c4:54:
        37:8b:a3:05:5d:bc:68:5f:bf:52:5b:9d:44:f7:38:b5:
        22:71:57:de:20:05:33:57:92:60:da:d5:ba:11:c7:ca
    Fingerprint (SHA-256):
        3E:68:3C:C0:E9:F4:0A:90:6B:5A:8A:46:BC:3D:9A:93:94:16:79:EA:2E:09:3D:C7:5D:F9:BD:1D:47:A7:37:0A
    Fingerprint (SHA1):
        48:8F:EE:6B:F7:9C:F8:72:0D:02:68:9E:56:D1:42:D6:2F:CE:A5:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3841: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115409 (0x1e67be51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:58 2017
            Not After : Tue May 10 11:53:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:b8:71:ee:a8:35:4d:82:df:02:1e:12:c4:f0:c6:9b:
                    f8:37:79:39:79:12:6c:12:22:1e:dc:90:db:63:36:86:
                    d3:63:63:c1:8c:40:75:aa:65:d6:9b:4f:a0:1f:76:c5:
                    4a:13:fd:64:bb:e4:42:61:48:cd:32:8a:25:1b:7b:da:
                    08:ef:88:a2:0e:4e:07:07:f2:ea:da:be:a2:a8:22:f2:
                    df:65:9e:20:ed:af:0a:58:19:a1:1a:89:10:36:1d:73:
                    28:e1:43:c1:47:cd:10:83:ab:f6:53:01:64:10:75:4a:
                    ee:1d:2c:97:b0:55:5b:9d:b8:2d:5b:cf:44:b2:4e:cd:
                    0d:ab:f2:d3:3a:08:5a:8b:74:14:8a:ba:0d:84:b8:19:
                    a8:75:df:c3:8b:87:f4:c1:8c:f7:72:db:e9:8c:18:61:
                    07:f6:c6:21:70:c7:c0:21:71:48:8f:4c:1c:c9:38:17:
                    f3:2d:bd:53:d9:47:0a:fb:6f:17:f7:32:e6:f1:93:44:
                    85:51:c3:c8:01:c2:f2:0c:59:70:fe:4b:48:e2:df:10:
                    95:fb:d9:f4:2d:8f:5b:30:b1:92:3f:35:2a:24:57:26:
                    30:ce:dd:08:1a:f5:b7:1d:86:ea:4a:ea:1d:42:64:d4:
                    1a:37:c3:c7:24:6f:00:98:44:4a:44:f5:55:dc:39:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:ce:bb:3d:97:65:25:4c:56:46:fb:0d:fd:e9:d5:bb:
        c5:cf:2b:5b:29:76:c7:83:2a:c6:86:46:e0:c7:27:dd:
        be:b0:73:f3:31:ce:7b:8a:26:e0:50:7e:e8:3e:f2:64:
        53:e3:76:67:93:07:c2:c9:d7:54:b3:26:dd:ea:b5:76:
        25:7c:ea:83:5b:d0:8a:6e:6f:7b:e5:d5:3e:b8:5d:bd:
        98:e1:56:18:3f:2a:45:bf:8a:51:90:e1:f7:83:f2:4b:
        25:03:ae:d5:6b:be:5b:5b:6b:18:30:76:e7:0e:6e:84:
        22:25:ee:84:9b:ee:6c:a6:1d:30:67:4c:80:e4:b2:e8:
        ed:f4:b7:ba:62:90:94:5c:e7:95:81:0c:4b:5b:a8:fc:
        7f:b3:2f:89:f0:69:75:dd:15:6f:0d:f2:16:4e:0f:46:
        ca:a1:96:8d:41:74:76:54:b0:ce:92:a3:23:b2:ad:12:
        14:2d:24:c3:f2:79:6b:6e:65:f2:8d:e9:ac:e8:a4:f6:
        4c:8a:28:da:89:91:01:f0:d4:6c:cd:8e:01:60:43:0a:
        b3:8d:8c:32:b4:f0:9e:75:45:0c:c6:be:91:c2:c4:54:
        37:8b:a3:05:5d:bc:68:5f:bf:52:5b:9d:44:f7:38:b5:
        22:71:57:de:20:05:33:57:92:60:da:d5:ba:11:c7:ca
    Fingerprint (SHA-256):
        3E:68:3C:C0:E9:F4:0A:90:6B:5A:8A:46:BC:3D:9A:93:94:16:79:EA:2E:09:3D:C7:5D:F9:BD:1D:47:A7:37:0A
    Fingerprint (SHA1):
        48:8F:EE:6B:F7:9C:F8:72:0D:02:68:9E:56:D1:42:D6:2F:CE:A5:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3842: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115409 (0x1e67be51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:58 2017
            Not After : Tue May 10 11:53:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:b8:71:ee:a8:35:4d:82:df:02:1e:12:c4:f0:c6:9b:
                    f8:37:79:39:79:12:6c:12:22:1e:dc:90:db:63:36:86:
                    d3:63:63:c1:8c:40:75:aa:65:d6:9b:4f:a0:1f:76:c5:
                    4a:13:fd:64:bb:e4:42:61:48:cd:32:8a:25:1b:7b:da:
                    08:ef:88:a2:0e:4e:07:07:f2:ea:da:be:a2:a8:22:f2:
                    df:65:9e:20:ed:af:0a:58:19:a1:1a:89:10:36:1d:73:
                    28:e1:43:c1:47:cd:10:83:ab:f6:53:01:64:10:75:4a:
                    ee:1d:2c:97:b0:55:5b:9d:b8:2d:5b:cf:44:b2:4e:cd:
                    0d:ab:f2:d3:3a:08:5a:8b:74:14:8a:ba:0d:84:b8:19:
                    a8:75:df:c3:8b:87:f4:c1:8c:f7:72:db:e9:8c:18:61:
                    07:f6:c6:21:70:c7:c0:21:71:48:8f:4c:1c:c9:38:17:
                    f3:2d:bd:53:d9:47:0a:fb:6f:17:f7:32:e6:f1:93:44:
                    85:51:c3:c8:01:c2:f2:0c:59:70:fe:4b:48:e2:df:10:
                    95:fb:d9:f4:2d:8f:5b:30:b1:92:3f:35:2a:24:57:26:
                    30:ce:dd:08:1a:f5:b7:1d:86:ea:4a:ea:1d:42:64:d4:
                    1a:37:c3:c7:24:6f:00:98:44:4a:44:f5:55:dc:39:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:ce:bb:3d:97:65:25:4c:56:46:fb:0d:fd:e9:d5:bb:
        c5:cf:2b:5b:29:76:c7:83:2a:c6:86:46:e0:c7:27:dd:
        be:b0:73:f3:31:ce:7b:8a:26:e0:50:7e:e8:3e:f2:64:
        53:e3:76:67:93:07:c2:c9:d7:54:b3:26:dd:ea:b5:76:
        25:7c:ea:83:5b:d0:8a:6e:6f:7b:e5:d5:3e:b8:5d:bd:
        98:e1:56:18:3f:2a:45:bf:8a:51:90:e1:f7:83:f2:4b:
        25:03:ae:d5:6b:be:5b:5b:6b:18:30:76:e7:0e:6e:84:
        22:25:ee:84:9b:ee:6c:a6:1d:30:67:4c:80:e4:b2:e8:
        ed:f4:b7:ba:62:90:94:5c:e7:95:81:0c:4b:5b:a8:fc:
        7f:b3:2f:89:f0:69:75:dd:15:6f:0d:f2:16:4e:0f:46:
        ca:a1:96:8d:41:74:76:54:b0:ce:92:a3:23:b2:ad:12:
        14:2d:24:c3:f2:79:6b:6e:65:f2:8d:e9:ac:e8:a4:f6:
        4c:8a:28:da:89:91:01:f0:d4:6c:cd:8e:01:60:43:0a:
        b3:8d:8c:32:b4:f0:9e:75:45:0c:c6:be:91:c2:c4:54:
        37:8b:a3:05:5d:bc:68:5f:bf:52:5b:9d:44:f7:38:b5:
        22:71:57:de:20:05:33:57:92:60:da:d5:ba:11:c7:ca
    Fingerprint (SHA-256):
        3E:68:3C:C0:E9:F4:0A:90:6B:5A:8A:46:BC:3D:9A:93:94:16:79:EA:2E:09:3D:C7:5D:F9:BD:1D:47:A7:37:0A
    Fingerprint (SHA1):
        48:8F:EE:6B:F7:9C:F8:72:0D:02:68:9E:56:D1:42:D6:2F:CE:A5:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3843: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115409 (0x1e67be51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:58 2017
            Not After : Tue May 10 11:53:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:b8:71:ee:a8:35:4d:82:df:02:1e:12:c4:f0:c6:9b:
                    f8:37:79:39:79:12:6c:12:22:1e:dc:90:db:63:36:86:
                    d3:63:63:c1:8c:40:75:aa:65:d6:9b:4f:a0:1f:76:c5:
                    4a:13:fd:64:bb:e4:42:61:48:cd:32:8a:25:1b:7b:da:
                    08:ef:88:a2:0e:4e:07:07:f2:ea:da:be:a2:a8:22:f2:
                    df:65:9e:20:ed:af:0a:58:19:a1:1a:89:10:36:1d:73:
                    28:e1:43:c1:47:cd:10:83:ab:f6:53:01:64:10:75:4a:
                    ee:1d:2c:97:b0:55:5b:9d:b8:2d:5b:cf:44:b2:4e:cd:
                    0d:ab:f2:d3:3a:08:5a:8b:74:14:8a:ba:0d:84:b8:19:
                    a8:75:df:c3:8b:87:f4:c1:8c:f7:72:db:e9:8c:18:61:
                    07:f6:c6:21:70:c7:c0:21:71:48:8f:4c:1c:c9:38:17:
                    f3:2d:bd:53:d9:47:0a:fb:6f:17:f7:32:e6:f1:93:44:
                    85:51:c3:c8:01:c2:f2:0c:59:70:fe:4b:48:e2:df:10:
                    95:fb:d9:f4:2d:8f:5b:30:b1:92:3f:35:2a:24:57:26:
                    30:ce:dd:08:1a:f5:b7:1d:86:ea:4a:ea:1d:42:64:d4:
                    1a:37:c3:c7:24:6f:00:98:44:4a:44:f5:55:dc:39:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:ce:bb:3d:97:65:25:4c:56:46:fb:0d:fd:e9:d5:bb:
        c5:cf:2b:5b:29:76:c7:83:2a:c6:86:46:e0:c7:27:dd:
        be:b0:73:f3:31:ce:7b:8a:26:e0:50:7e:e8:3e:f2:64:
        53:e3:76:67:93:07:c2:c9:d7:54:b3:26:dd:ea:b5:76:
        25:7c:ea:83:5b:d0:8a:6e:6f:7b:e5:d5:3e:b8:5d:bd:
        98:e1:56:18:3f:2a:45:bf:8a:51:90:e1:f7:83:f2:4b:
        25:03:ae:d5:6b:be:5b:5b:6b:18:30:76:e7:0e:6e:84:
        22:25:ee:84:9b:ee:6c:a6:1d:30:67:4c:80:e4:b2:e8:
        ed:f4:b7:ba:62:90:94:5c:e7:95:81:0c:4b:5b:a8:fc:
        7f:b3:2f:89:f0:69:75:dd:15:6f:0d:f2:16:4e:0f:46:
        ca:a1:96:8d:41:74:76:54:b0:ce:92:a3:23:b2:ad:12:
        14:2d:24:c3:f2:79:6b:6e:65:f2:8d:e9:ac:e8:a4:f6:
        4c:8a:28:da:89:91:01:f0:d4:6c:cd:8e:01:60:43:0a:
        b3:8d:8c:32:b4:f0:9e:75:45:0c:c6:be:91:c2:c4:54:
        37:8b:a3:05:5d:bc:68:5f:bf:52:5b:9d:44:f7:38:b5:
        22:71:57:de:20:05:33:57:92:60:da:d5:ba:11:c7:ca
    Fingerprint (SHA-256):
        3E:68:3C:C0:E9:F4:0A:90:6B:5A:8A:46:BC:3D:9A:93:94:16:79:EA:2E:09:3D:C7:5D:F9:BD:1D:47:A7:37:0A
    Fingerprint (SHA1):
        48:8F:EE:6B:F7:9C:F8:72:0D:02:68:9E:56:D1:42:D6:2F:CE:A5:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3844: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115409 (0x1e67be51)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:53:58 2017
            Not After : Tue May 10 11:53:58 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:b8:71:ee:a8:35:4d:82:df:02:1e:12:c4:f0:c6:9b:
                    f8:37:79:39:79:12:6c:12:22:1e:dc:90:db:63:36:86:
                    d3:63:63:c1:8c:40:75:aa:65:d6:9b:4f:a0:1f:76:c5:
                    4a:13:fd:64:bb:e4:42:61:48:cd:32:8a:25:1b:7b:da:
                    08:ef:88:a2:0e:4e:07:07:f2:ea:da:be:a2:a8:22:f2:
                    df:65:9e:20:ed:af:0a:58:19:a1:1a:89:10:36:1d:73:
                    28:e1:43:c1:47:cd:10:83:ab:f6:53:01:64:10:75:4a:
                    ee:1d:2c:97:b0:55:5b:9d:b8:2d:5b:cf:44:b2:4e:cd:
                    0d:ab:f2:d3:3a:08:5a:8b:74:14:8a:ba:0d:84:b8:19:
                    a8:75:df:c3:8b:87:f4:c1:8c:f7:72:db:e9:8c:18:61:
                    07:f6:c6:21:70:c7:c0:21:71:48:8f:4c:1c:c9:38:17:
                    f3:2d:bd:53:d9:47:0a:fb:6f:17:f7:32:e6:f1:93:44:
                    85:51:c3:c8:01:c2:f2:0c:59:70:fe:4b:48:e2:df:10:
                    95:fb:d9:f4:2d:8f:5b:30:b1:92:3f:35:2a:24:57:26:
                    30:ce:dd:08:1a:f5:b7:1d:86:ea:4a:ea:1d:42:64:d4:
                    1a:37:c3:c7:24:6f:00:98:44:4a:44:f5:55:dc:39:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:ce:bb:3d:97:65:25:4c:56:46:fb:0d:fd:e9:d5:bb:
        c5:cf:2b:5b:29:76:c7:83:2a:c6:86:46:e0:c7:27:dd:
        be:b0:73:f3:31:ce:7b:8a:26:e0:50:7e:e8:3e:f2:64:
        53:e3:76:67:93:07:c2:c9:d7:54:b3:26:dd:ea:b5:76:
        25:7c:ea:83:5b:d0:8a:6e:6f:7b:e5:d5:3e:b8:5d:bd:
        98:e1:56:18:3f:2a:45:bf:8a:51:90:e1:f7:83:f2:4b:
        25:03:ae:d5:6b:be:5b:5b:6b:18:30:76:e7:0e:6e:84:
        22:25:ee:84:9b:ee:6c:a6:1d:30:67:4c:80:e4:b2:e8:
        ed:f4:b7:ba:62:90:94:5c:e7:95:81:0c:4b:5b:a8:fc:
        7f:b3:2f:89:f0:69:75:dd:15:6f:0d:f2:16:4e:0f:46:
        ca:a1:96:8d:41:74:76:54:b0:ce:92:a3:23:b2:ad:12:
        14:2d:24:c3:f2:79:6b:6e:65:f2:8d:e9:ac:e8:a4:f6:
        4c:8a:28:da:89:91:01:f0:d4:6c:cd:8e:01:60:43:0a:
        b3:8d:8c:32:b4:f0:9e:75:45:0c:c6:be:91:c2:c4:54:
        37:8b:a3:05:5d:bc:68:5f:bf:52:5b:9d:44:f7:38:b5:
        22:71:57:de:20:05:33:57:92:60:da:d5:ba:11:c7:ca
    Fingerprint (SHA-256):
        3E:68:3C:C0:E9:F4:0A:90:6B:5A:8A:46:BC:3D:9A:93:94:16:79:EA:2E:09:3D:C7:5D:F9:BD:1D:47:A7:37:0A
    Fingerprint (SHA1):
        48:8F:EE:6B:F7:9C:F8:72:0D:02:68:9E:56:D1:42:D6:2F:CE:A5:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3845: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3846: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3847: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115439 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3848: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3849: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #3850: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3851: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 510115440   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3852: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3853: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #3854: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3855: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 510115441   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3856: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3857: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #3858: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3859: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 510115442   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3860: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3861: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #3862: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3863: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 510115443   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3864: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3865: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #3866: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3867: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 510115444   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3868: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3869: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #3870: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3871: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 510115445   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3872: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3873: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3874: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115439 (0x1e67be6f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:10 2017
            Not After : Tue May 10 11:54:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:c7:d4:de:ae:5a:bc:cc:f2:10:5b:ff:39:9f:ce:8a:
                    9d:2c:15:09:33:dd:43:93:72:2a:d0:4a:e1:7f:c2:a0:
                    03:1b:0b:76:53:f8:f3:33:43:47:22:e8:fd:a2:e0:07:
                    a1:f5:07:36:a8:91:e4:27:51:1b:5c:14:4d:f4:15:0d:
                    1b:11:86:af:91:16:d3:21:68:b4:aa:e0:21:a4:86:1f:
                    1f:9a:5b:49:65:2e:64:1c:43:2f:ab:84:d9:1c:98:e3:
                    88:c3:00:bf:57:3c:c3:a9:99:ae:8b:8b:cb:9e:d5:ac:
                    a4:0b:2f:ac:8a:d5:5b:4c:8e:51:75:1f:df:1e:7b:0d:
                    c4:45:30:a0:37:1f:8a:18:e3:5c:60:56:dd:b9:8b:f9:
                    9b:fb:a0:30:da:e3:21:ca:7b:fc:c2:4f:ec:29:92:1f:
                    d2:a2:10:d8:52:b9:b5:aa:27:5b:1e:1a:ba:90:11:f3:
                    ce:62:f8:e5:c2:01:71:d8:1d:c3:6e:7d:77:e6:4b:94:
                    77:bf:45:d6:fa:4a:b4:11:1f:c3:05:0c:24:97:b1:fd:
                    69:fe:06:ad:6d:66:9e:57:f6:0f:b3:ac:c7:b2:32:22:
                    b1:b1:be:8e:38:12:3f:1b:62:fc:56:8b:b6:a2:80:70:
                    21:7f:fa:c0:47:c1:53:8e:2c:26:f2:67:0e:2d:cd:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:2c:4b:79:98:5f:e1:7f:79:ca:2c:16:94:57:6b:40:
        eb:d3:39:8e:db:11:31:aa:40:1e:c3:a0:f9:e2:5f:0c:
        95:13:ec:55:13:7b:78:4a:4c:6f:3d:ae:aa:e6:f1:ff:
        c4:7b:3e:21:69:22:94:a7:dd:25:cc:83:31:34:86:86:
        d9:4e:52:c0:7a:23:14:21:4d:e1:29:d5:49:f8:fc:27:
        b7:15:74:bf:a7:78:c1:1e:4f:68:e6:6a:aa:b1:b1:f4:
        c3:90:40:94:99:2f:b4:0e:e0:97:42:e7:a9:96:c8:72:
        5d:bb:fd:95:28:e2:b8:92:62:14:14:36:4e:05:bf:5d:
        7c:79:c0:89:0a:39:41:85:61:c1:d3:86:f0:97:45:fb:
        b9:50:f4:60:bc:e9:bf:39:94:c1:91:30:07:a9:b4:70:
        45:81:a4:68:48:bb:7c:17:85:46:50:9a:c3:3f:42:61:
        61:8b:46:1d:ef:d6:aa:a6:cc:b2:c9:5b:e2:aa:b2:9d:
        70:44:bb:41:06:15:86:ad:9e:a0:20:5c:16:be:03:af:
        db:1d:b5:32:d7:5b:00:b8:bb:13:9d:f3:cd:d6:bc:a3:
        d9:a3:87:bd:53:3a:fb:5f:cd:70:32:6e:1e:84:36:e6:
        56:ad:f5:c9:9c:47:0b:65:e5:61:28:6f:60:eb:95:50
    Fingerprint (SHA-256):
        7F:9E:54:2E:6F:F5:6B:80:CD:29:2A:33:C3:33:4C:BE:78:8E:CB:AC:15:5A:72:69:F8:E9:7B:7C:FF:D6:C7:B7
    Fingerprint (SHA1):
        4A:5D:FA:71:D4:C8:0C:52:F2:7B:A9:19:D4:6A:FF:6B:A0:E3:C5:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3875: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3876: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3877: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3878: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115439 (0x1e67be6f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:10 2017
            Not After : Tue May 10 11:54:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:c7:d4:de:ae:5a:bc:cc:f2:10:5b:ff:39:9f:ce:8a:
                    9d:2c:15:09:33:dd:43:93:72:2a:d0:4a:e1:7f:c2:a0:
                    03:1b:0b:76:53:f8:f3:33:43:47:22:e8:fd:a2:e0:07:
                    a1:f5:07:36:a8:91:e4:27:51:1b:5c:14:4d:f4:15:0d:
                    1b:11:86:af:91:16:d3:21:68:b4:aa:e0:21:a4:86:1f:
                    1f:9a:5b:49:65:2e:64:1c:43:2f:ab:84:d9:1c:98:e3:
                    88:c3:00:bf:57:3c:c3:a9:99:ae:8b:8b:cb:9e:d5:ac:
                    a4:0b:2f:ac:8a:d5:5b:4c:8e:51:75:1f:df:1e:7b:0d:
                    c4:45:30:a0:37:1f:8a:18:e3:5c:60:56:dd:b9:8b:f9:
                    9b:fb:a0:30:da:e3:21:ca:7b:fc:c2:4f:ec:29:92:1f:
                    d2:a2:10:d8:52:b9:b5:aa:27:5b:1e:1a:ba:90:11:f3:
                    ce:62:f8:e5:c2:01:71:d8:1d:c3:6e:7d:77:e6:4b:94:
                    77:bf:45:d6:fa:4a:b4:11:1f:c3:05:0c:24:97:b1:fd:
                    69:fe:06:ad:6d:66:9e:57:f6:0f:b3:ac:c7:b2:32:22:
                    b1:b1:be:8e:38:12:3f:1b:62:fc:56:8b:b6:a2:80:70:
                    21:7f:fa:c0:47:c1:53:8e:2c:26:f2:67:0e:2d:cd:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:2c:4b:79:98:5f:e1:7f:79:ca:2c:16:94:57:6b:40:
        eb:d3:39:8e:db:11:31:aa:40:1e:c3:a0:f9:e2:5f:0c:
        95:13:ec:55:13:7b:78:4a:4c:6f:3d:ae:aa:e6:f1:ff:
        c4:7b:3e:21:69:22:94:a7:dd:25:cc:83:31:34:86:86:
        d9:4e:52:c0:7a:23:14:21:4d:e1:29:d5:49:f8:fc:27:
        b7:15:74:bf:a7:78:c1:1e:4f:68:e6:6a:aa:b1:b1:f4:
        c3:90:40:94:99:2f:b4:0e:e0:97:42:e7:a9:96:c8:72:
        5d:bb:fd:95:28:e2:b8:92:62:14:14:36:4e:05:bf:5d:
        7c:79:c0:89:0a:39:41:85:61:c1:d3:86:f0:97:45:fb:
        b9:50:f4:60:bc:e9:bf:39:94:c1:91:30:07:a9:b4:70:
        45:81:a4:68:48:bb:7c:17:85:46:50:9a:c3:3f:42:61:
        61:8b:46:1d:ef:d6:aa:a6:cc:b2:c9:5b:e2:aa:b2:9d:
        70:44:bb:41:06:15:86:ad:9e:a0:20:5c:16:be:03:af:
        db:1d:b5:32:d7:5b:00:b8:bb:13:9d:f3:cd:d6:bc:a3:
        d9:a3:87:bd:53:3a:fb:5f:cd:70:32:6e:1e:84:36:e6:
        56:ad:f5:c9:9c:47:0b:65:e5:61:28:6f:60:eb:95:50
    Fingerprint (SHA-256):
        7F:9E:54:2E:6F:F5:6B:80:CD:29:2A:33:C3:33:4C:BE:78:8E:CB:AC:15:5A:72:69:F8:E9:7B:7C:FF:D6:C7:B7
    Fingerprint (SHA1):
        4A:5D:FA:71:D4:C8:0C:52:F2:7B:A9:19:D4:6A:FF:6B:A0:E3:C5:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3879: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3880: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3881: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3882: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115446 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3883: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3884: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3885: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3886: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115447   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3887: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3888: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3889: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3890: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115448   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3891: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3892: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3893: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3894: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510115449   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3895: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3896: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3897: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3898: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3899: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3900: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115446 (0x1e67be76)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:14 2017
            Not After : Tue May 10 11:54:14 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:50:58:91:92:2c:72:20:48:03:b2:60:bb:f1:73:ef:
                    68:27:82:c8:47:8b:c4:39:a8:88:db:92:9c:64:9c:66:
                    ca:fb:5b:61:50:2e:82:7b:98:8b:94:ab:e0:81:14:9c:
                    76:61:34:3a:9b:77:e9:0d:04:9a:18:2c:a6:92:f8:2a:
                    05:c7:da:6a:8d:28:ab:1c:0c:85:a0:fc:5c:eb:21:8b:
                    42:d5:08:3e:e8:f3:f2:a7:6b:5f:50:12:fe:21:82:43:
                    9a:36:9d:bd:6d:b4:d4:dc:83:f6:49:b4:24:f6:51:be:
                    e2:0a:13:4d:28:c3:38:f1:1c:fe:88:7b:31:18:ea:ba:
                    cb:7a:40:e3:ae:fe:8d:29:35:7e:c1:c3:4c:b0:2a:45:
                    28:62:2e:89:35:60:b3:a9:6b:3b:1d:75:9f:c1:5f:9b:
                    6d:82:6a:aa:73:e3:af:53:33:3d:a2:da:d5:bb:f0:5a:
                    25:2f:78:c3:4c:ad:ba:0e:70:d0:cf:d0:e1:c8:73:6f:
                    56:09:57:16:a3:66:f4:c3:80:4b:4d:e7:69:15:78:68:
                    0c:d2:f2:11:a2:e6:48:1c:55:7f:52:ea:57:36:43:84:
                    14:79:6f:ad:ba:ab:fc:46:48:fc:18:ae:f8:1a:42:59:
                    6c:1b:14:b0:e2:51:c7:3e:57:bf:d6:7b:04:91:49:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:a9:96:84:4b:c8:ea:79:f2:23:27:ee:3a:fa:43:e9:
        52:27:b5:e0:46:d9:6c:f6:af:38:64:bf:cf:b8:70:76:
        5f:f6:df:61:9b:28:c6:6f:2a:08:08:fd:75:cd:78:8d:
        57:1e:9b:ba:32:75:f7:9b:dd:2c:ab:8a:68:f3:15:26:
        ab:16:c3:6a:f8:c8:03:5d:2b:21:63:f3:bb:3e:50:0e:
        2f:53:3b:8f:58:22:99:f6:dc:87:9d:f3:03:af:05:38:
        a5:35:dc:0c:f9:eb:c2:c3:9f:85:40:91:1c:a1:68:35:
        62:4e:64:e7:5f:2b:d9:f6:75:0d:9a:dd:ee:e3:75:bb:
        40:c9:8c:d0:c7:79:c5:a6:2c:c7:1d:e0:bb:44:ef:75:
        69:08:64:04:db:ac:e6:0e:b7:ae:1a:96:da:ce:f8:34:
        85:80:71:4c:40:86:76:4f:7c:ac:e5:fb:a9:ca:83:5a:
        cf:f7:bb:29:21:93:44:92:4d:ce:a4:2c:93:7f:b6:f3:
        e4:0e:d2:26:2e:e2:97:67:55:8a:15:f4:31:94:12:5c:
        1b:45:4d:fd:d9:6e:38:0e:1f:6a:2b:5e:45:bd:43:09:
        ac:32:70:72:6f:65:5c:fc:00:de:25:ce:84:69:ba:f2:
        5a:ed:df:e7:4b:aa:17:e6:a9:3d:67:54:fd:09:5b:8f
    Fingerprint (SHA-256):
        79:26:9D:70:0A:1D:8B:8B:2E:CC:05:40:4A:5E:7E:CC:2D:29:3D:E3:BF:CF:FE:FD:A6:34:BE:B2:D0:1C:4B:7F
    Fingerprint (SHA1):
        B6:A0:9F:01:59:D6:50:AC:73:EB:EA:16:C1:A1:FA:61:A7:BA:B5:F0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3901: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3902: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3903: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115447 (0x1e67be77)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:14 2017
            Not After : Tue May 10 11:54:14 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:7e:09:7c:a8:79:97:e7:86:aa:c2:a3:84:e4:9a:eb:
                    45:b6:f3:25:d2:41:83:d2:0b:60:01:05:1c:89:25:2f:
                    c1:19:00:c0:ea:82:a9:40:91:a2:53:90:82:8e:fd:86:
                    9e:38:9e:1a:90:39:6f:18:4e:9d:bb:bd:11:82:61:6a:
                    34:37:37:18:bc:16:17:67:9b:27:ba:c4:65:3f:02:70:
                    fd:70:45:ed:73:38:97:69:9d:c2:40:eb:5d:b0:72:ac:
                    15:57:c0:71:22:11:50:62:3e:3e:27:ea:39:5b:90:69:
                    5b:69:ee:b9:ab:cc:61:4a:04:5d:a4:88:93:40:5b:5c:
                    b4:3b:e8:5b:64:20:4f:7e:85:d5:d7:70:bd:79:1f:f6:
                    1f:17:33:4a:15:d3:69:7c:fa:ac:b1:54:6c:91:1a:b5:
                    52:30:ea:5e:63:74:a8:b3:8e:16:99:74:1a:2e:39:7e:
                    69:65:70:c9:e2:db:c9:3e:66:84:55:3c:c0:c6:8e:11:
                    42:6a:cb:c0:a3:8a:98:9f:a2:65:84:11:8b:75:86:15:
                    63:e7:bb:d0:41:5f:89:ab:06:1f:2e:58:41:7f:38:04:
                    33:7e:d1:ca:4e:90:f9:e1:5d:e0:51:47:79:35:c0:23:
                    4c:33:7b:98:78:dc:c0:fb:c6:1a:f0:3c:08:74:5b:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        97:b0:84:a6:9f:a7:73:ec:03:55:b8:c3:08:07:45:40:
        1e:5b:21:8e:0f:b9:92:c6:de:33:b1:b6:16:8d:10:b4:
        61:76:19:6c:5a:b9:61:36:f9:4e:3f:7a:85:4d:8b:dd:
        b8:67:ce:81:8f:0d:d0:52:11:c0:f9:bf:ab:b2:39:37:
        55:43:e9:f4:4f:21:95:d1:c6:8a:bc:f9:1b:48:c2:cd:
        13:d4:39:95:bf:68:ec:70:f0:01:e2:ef:6f:fc:9f:ae:
        d5:0b:ce:ee:79:88:c0:ec:8e:fc:3e:b2:89:a4:bf:45:
        a0:8f:83:67:e1:27:b2:68:e9:4a:7e:cc:cf:7b:f3:0e:
        0e:6f:cc:7c:f7:0d:06:2e:da:78:85:65:77:14:60:4e:
        3e:78:fb:98:c3:ec:42:ff:24:78:0e:2b:5a:cd:c8:af:
        09:74:26:9a:04:ea:51:cd:9b:f2:6b:6c:e5:73:a9:1a:
        6f:fb:dc:d8:5f:44:9e:de:fa:96:62:1f:5a:4b:2b:c3:
        53:be:a0:fb:12:d0:c1:65:64:f2:e9:3a:66:64:39:3f:
        0f:36:8f:c0:77:cd:90:ec:99:f2:45:b6:01:e3:22:75:
        74:f9:66:97:c0:80:5e:bc:04:a2:45:dd:dc:d8:e4:bf:
        86:d1:5e:22:1f:e0:d5:70:db:4f:b4:1b:3d:c9:8c:2d
    Fingerprint (SHA-256):
        5A:69:62:7C:DA:8B:A0:CA:2D:7A:8D:06:B1:7A:A4:8C:55:C2:9F:1A:2D:EB:A4:D1:22:78:BA:9D:A3:B1:D4:FB
    Fingerprint (SHA1):
        DF:7D:A7:70:83:4C:30:0B:8F:D1:E4:36:E7:8A:A9:53:70:E4:3B:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3904: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3905: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115448 (0x1e67be78)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:54:14 2017
            Not After : Tue May 10 11:54:14 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:fc:bb:29:f8:a7:a8:73:04:f3:94:55:a2:a3:c3:3f:
                    b1:48:4e:97:bf:92:14:14:56:66:b1:a9:70:7a:c2:e5:
                    15:aa:d8:ff:03:58:9b:6c:3e:74:b1:b0:da:7a:cd:7f:
                    5d:08:7f:af:71:1d:95:55:22:ae:df:84:04:1e:0f:05:
                    ef:c5:6e:49:85:2b:78:b2:e4:70:2d:8d:f2:62:9c:30:
                    3c:73:71:3f:8e:02:af:c6:de:cd:55:51:00:37:c7:b5:
                    eb:22:27:5e:86:ff:06:e1:e4:5c:25:8e:74:86:57:8a:
                    56:18:a0:6a:25:e4:79:36:a4:3b:23:b5:3c:09:f4:09:
                    d8:4b:6b:c8:90:83:6b:fa:f8:3c:f3:c5:8a:a1:23:88:
                    64:e0:32:44:6d:64:10:8c:88:84:e2:4f:1b:02:d0:bd:
                    c5:5b:e4:15:43:2d:31:d9:1f:d3:61:26:54:4d:a2:a1:
                    d9:41:11:f8:f4:d7:68:05:11:42:5f:b8:90:94:65:79:
                    38:e3:a8:82:6d:08:00:03:01:c7:c9:bb:e2:d5:bc:61:
                    89:d5:82:0d:6a:ac:83:b3:07:a0:81:1e:90:08:46:25:
                    f3:7d:cf:b9:8d:55:2f:5e:3e:43:da:e0:db:cd:4d:a9:
                    a1:4e:76:88:61:e5:24:a6:e7:ab:b1:9a:5d:41:5b:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:20:57:9f:46:b0:e9:50:6d:f3:07:5f:35:c7:3c:20:
        24:85:67:15:4a:1c:d9:dd:df:f7:fb:dc:51:fc:af:f1:
        a4:ef:d8:a3:1c:a8:5d:8f:59:06:d9:9c:da:6e:2f:eb:
        19:bf:2b:52:91:fd:c8:5a:50:5d:c3:cd:b7:a2:2a:e5:
        4f:d2:59:d5:6b:a5:bc:f0:a3:dd:e5:06:e9:0c:7a:93:
        51:68:4d:a1:3a:52:bf:b8:b2:4e:9b:e7:d6:ee:a8:65:
        82:25:db:38:35:58:f9:3f:f9:0b:00:a9:06:9a:de:20:
        96:f8:e2:b5:7d:fa:31:50:13:c1:bf:28:0f:27:37:d5:
        ae:89:27:e4:ba:9d:88:e7:18:08:4f:8b:18:47:43:8d:
        4f:31:9d:3a:bc:66:5c:db:4e:7f:32:d8:3e:79:a9:ba:
        83:0d:f7:85:06:da:3c:80:2f:fb:22:12:95:ed:ae:cf:
        60:f8:f5:3b:2c:61:37:c0:3c:e9:d7:cf:48:9b:b1:97:
        0b:34:0b:2c:94:bd:6f:79:68:fe:7f:0b:49:a6:25:23:
        01:de:86:ae:d5:48:ab:99:9e:e4:80:fb:32:db:39:c4:
        7a:19:b9:a5:97:ad:95:27:ad:46:83:f7:d8:6e:3b:44:
        0e:c5:6d:72:37:71:7d:45:91:e4:44:b3:82:89:b7:43
    Fingerprint (SHA-256):
        D9:F4:EB:71:CB:C1:46:BA:EA:0B:40:E5:CA:39:6E:9F:89:27:28:08:B3:FA:C2:46:7B:B3:46:8C:46:14:EA:8B
    Fingerprint (SHA1):
        11:C0:0A:7D:DD:11:AE:93:D3:4F:D3:59:41:2D:76:0A:90:93:6C:D6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3906: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3907: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115450 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3908: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3909: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3910: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3911: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115451   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3912: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3913: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3914: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3915: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115452   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3916: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3917: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3918: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3919: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 510115453   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3920: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3921: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3922: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3923: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 510115454   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3924: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3925: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3926: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3927: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3928: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3929: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3930: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115450 (0x1e67be7a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:15 2017
            Not After : Tue May 10 11:54:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:55:5b:71:b6:91:73:55:72:7f:ea:2e:1e:e2:fe:33:
                    52:f8:f5:7c:78:0b:00:36:7d:e5:9d:70:66:12:1d:69:
                    17:87:16:b2:14:94:59:cf:ad:ec:a8:7d:93:e5:2d:fd:
                    0b:77:17:a8:1e:f6:8d:f8:1d:2c:4f:05:e9:12:72:14:
                    4b:2a:d7:84:c1:de:b3:e5:76:f2:3b:62:01:17:8b:68:
                    2d:81:d4:ff:b6:eb:f5:ed:fc:6c:01:d9:b1:b6:9d:62:
                    cd:be:de:7c:c6:c9:99:48:f6:b9:d7:89:c7:63:14:20:
                    6c:d9:6b:b4:b5:3f:ff:7c:11:7a:38:aa:29:c4:50:cb:
                    07:e6:e2:0e:00:9d:ea:ae:85:96:6f:c4:bd:a4:cb:2a:
                    f3:0f:6c:fb:c9:4b:f9:ac:66:fa:f5:ee:bf:88:c2:82:
                    c9:eb:b7:cb:80:ac:53:55:bf:14:53:0e:0c:0c:1a:6e:
                    23:58:5b:18:c8:1c:aa:a0:d3:8b:53:c6:93:50:cb:f7:
                    b9:c8:fc:52:aa:02:66:cd:93:f5:53:b3:a8:96:15:a6:
                    f7:98:df:bc:ab:41:94:05:1e:c6:4c:f3:f5:63:58:5f:
                    5c:b9:eb:49:1d:51:ab:4a:45:f9:63:e2:52:25:e6:d1:
                    c2:70:3f:61:08:b9:09:a4:f5:e0:f4:33:fa:bd:b7:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:c3:94:6a:9c:b1:dd:cc:bf:e6:5d:f1:3f:ce:79:2b:
        a9:62:19:d5:c3:21:01:b9:58:95:80:e8:f9:62:58:3d:
        79:da:24:23:86:cb:6e:2f:07:8b:96:db:29:fe:88:8f:
        b8:e8:88:55:a6:67:ae:7a:48:5a:30:78:e1:8f:0d:07:
        33:88:54:35:f5:e3:b3:94:2c:3b:e4:36:48:39:0e:c2:
        28:ad:38:63:9c:ea:09:bc:41:1e:dc:55:ba:68:71:a0:
        ce:4c:03:5d:f7:0e:7c:b1:eb:fb:b6:06:69:41:f7:da:
        c0:4b:67:3f:90:5f:ff:f3:a6:66:53:09:ea:5e:f3:5f:
        e8:19:02:06:a9:e0:9d:47:78:5a:22:f0:27:45:44:ba:
        40:49:15:2d:c6:77:51:dc:15:8d:78:17:2c:69:2b:79:
        c3:98:2e:df:bc:3a:3e:cf:22:72:47:4d:e6:7b:cf:f1:
        38:2c:37:b4:90:da:ab:d3:de:75:49:d5:cc:6a:45:20:
        62:08:cb:f5:8f:d0:f1:39:02:86:13:d3:f2:a9:ed:a5:
        8e:85:77:b2:33:97:a6:03:0c:50:d0:2e:85:00:12:89:
        f5:cf:6b:1f:e7:5c:0e:26:38:fe:50:29:a9:32:07:e4:
        c4:7d:dc:ea:44:0d:3c:92:83:f8:c5:57:0a:f5:f9:b8
    Fingerprint (SHA-256):
        B9:BC:88:B6:9D:4B:B5:DD:4A:CD:B3:30:A6:90:B4:B8:0C:80:3D:30:3C:35:03:E9:10:49:1E:C7:64:B5:24:F4
    Fingerprint (SHA1):
        C3:94:D7:B9:8F:98:ED:82:0F:D7:0D:E0:8D:6B:67:AB:B6:0C:FF:4F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3931: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3932: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115451 (0x1e67be7b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:16 2017
            Not After : Tue May 10 11:54:16 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:99:81:13:70:28:e2:27:70:b8:27:a5:b0:fa:9e:ba:
                    c7:78:89:24:1a:38:64:20:6c:c8:31:20:13:7f:83:45:
                    7f:a0:6f:e6:c0:71:23:cf:5e:a2:c8:d8:9d:44:b3:ba:
                    58:7f:21:63:4a:eb:86:b8:99:40:fb:83:1a:fd:04:b2:
                    a7:ce:e9:f9:00:c7:bd:9a:ee:8b:e9:54:a8:ae:27:2c:
                    37:74:00:14:a1:0e:58:2b:06:a2:36:83:b6:79:2b:c3:
                    7d:d1:d2:64:dc:6e:be:fc:1b:66:ca:3b:4d:4c:b9:72:
                    9c:f1:74:bc:0d:a9:a7:da:16:c2:40:76:b2:77:eb:76:
                    9f:93:19:c9:16:e4:04:c5:14:a4:db:8b:52:c5:53:40:
                    13:2f:65:99:8e:8d:e9:cf:de:04:ea:c5:c6:18:df:46:
                    58:81:4b:6c:01:2f:30:2b:a9:21:e6:6a:0a:30:12:f7:
                    25:7e:39:5d:f3:f6:07:be:7c:cb:8d:f0:a0:07:d7:5d:
                    92:06:4a:5c:d7:6e:26:52:7d:c5:ac:f9:a8:20:b7:f5:
                    44:df:dc:49:a8:77:fd:d4:0d:48:dc:78:31:53:3d:79:
                    7a:57:3d:62:e4:b8:7f:94:06:45:7c:52:b0:d9:ca:e9:
                    ea:0b:eb:af:9d:45:39:2d:36:28:41:88:3a:de:75:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:24:2e:f7:df:16:4a:a7:00:5e:54:b3:9b:60:52:f3:
        0c:39:13:69:35:c2:92:d6:34:7f:65:e0:c0:ec:1d:1a:
        8a:4f:ed:7b:e2:0d:fc:7f:90:f5:14:23:c8:bf:eb:3a:
        9a:77:63:63:09:45:43:fc:24:2c:e8:45:87:6b:85:bf:
        ea:02:b0:26:b7:4b:b4:f1:9f:2a:a2:9e:ae:38:78:1c:
        a4:94:90:26:fa:35:f3:6d:b7:b9:87:79:a0:0e:4b:3e:
        d2:69:1f:90:ce:ac:ed:8d:08:16:75:18:bf:fd:06:da:
        de:89:d6:fc:1a:12:99:1a:51:cd:bd:0a:62:11:75:be:
        b4:25:5c:e3:ef:a4:38:35:1e:1e:41:d5:cc:63:08:32:
        9f:3f:69:eb:43:70:7f:16:ce:18:a5:17:ea:1c:38:46:
        33:ef:08:b5:f4:e4:61:57:3d:21:89:5f:6f:4a:bf:f0:
        d6:4c:87:1e:0b:15:c8:90:16:ab:10:0b:4a:97:77:72:
        4a:58:92:81:f1:64:02:13:7c:fa:43:f7:b6:e7:93:3f:
        08:b5:59:32:3d:d7:40:04:79:d4:a0:45:23:b5:63:e3:
        fd:f8:f3:30:e6:2f:11:53:20:d5:db:f4:8a:8e:5b:0c:
        55:f1:cf:98:5a:f1:70:08:45:03:11:8c:f0:ef:6a:ce
    Fingerprint (SHA-256):
        F6:70:CB:CC:83:3C:97:41:4E:F0:56:0E:21:3C:32:20:84:1C:F2:FA:E1:5C:54:18:CE:A9:5F:FA:46:1F:C7:F3
    Fingerprint (SHA1):
        BF:DA:BE:77:B8:EC:3F:36:C6:ED:2B:7C:17:14:86:E3:16:AE:18:E0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3933: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3934: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3935: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115452 (0x1e67be7c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:54:16 2017
            Not After : Tue May 10 11:54:16 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:cf:21:4e:50:8a:30:f2:56:ec:ea:83:1b:72:cb:e7:
                    dc:fa:f6:7a:53:99:27:a8:74:17:94:e3:c7:3c:60:fc:
                    53:36:9c:5f:55:60:ce:e2:6c:dc:ee:5e:97:78:fc:1c:
                    52:b8:9f:e8:2d:4d:2c:45:8d:a7:db:41:5f:bc:ac:0a:
                    88:c3:2b:d8:71:16:50:35:f9:34:b2:7d:e8:9b:16:2b:
                    d4:66:a7:33:2e:7d:39:fa:35:64:e1:f5:2a:8b:02:e7:
                    00:e5:15:95:3e:36:b1:5f:9a:61:e2:71:4c:d7:10:f6:
                    a8:16:68:1c:e7:45:ce:53:fe:f4:58:34:ea:06:47:2a:
                    b2:30:db:00:5d:54:d2:d5:48:7d:ac:e6:45:20:99:95:
                    8d:75:e6:fc:80:0c:8b:36:44:79:ea:e7:ee:60:c8:40:
                    73:de:fe:94:a3:75:46:c4:62:ed:bd:b3:1c:8f:56:5b:
                    bd:5b:ee:70:41:d6:a8:1f:cb:4b:16:34:83:d9:d1:17:
                    a9:b7:60:e2:7a:85:8f:5e:b5:75:2e:c5:26:9a:d1:33:
                    61:40:00:ef:36:6d:44:0d:0c:75:9e:96:e9:15:77:74:
                    61:97:aa:bb:cd:da:12:32:65:7c:8a:dc:a7:1c:11:ca:
                    a8:03:91:01:f8:c1:f3:05:4d:ca:16:4d:e9:97:06:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:0c:1b:c6:e1:b4:01:83:6e:fc:48:5f:b5:d1:14:24:
        74:33:d0:60:b6:67:a4:b6:cb:0a:1c:18:bc:38:1b:18:
        21:c0:31:d0:c6:7d:0b:ce:58:ac:e9:fb:7c:b6:de:0a:
        61:8f:74:70:d9:62:e2:91:19:8e:07:8a:bd:a1:30:ad:
        d0:35:08:4f:37:94:23:e5:08:47:19:89:71:46:a1:35:
        38:d7:38:a8:b1:16:0d:b3:ba:35:89:da:51:14:3f:6c:
        5d:5f:f3:52:72:84:c4:85:1d:6c:0f:9c:14:53:89:45:
        6d:e1:1c:b0:05:a7:67:63:e3:80:3b:2e:c8:7d:53:7c:
        1a:d3:e0:14:e1:1e:2a:c6:8a:f4:02:df:79:7f:dd:d4:
        9b:e5:5e:e3:17:f8:5e:ce:9d:b6:00:8f:93:54:01:23:
        37:72:a7:08:77:75:2f:1e:e1:52:ab:31:00:6a:6f:32:
        3f:b6:38:13:9c:bd:1f:17:b1:35:1e:5d:c7:d8:c3:45:
        74:18:6d:06:73:55:44:f3:66:6f:e3:b4:20:5f:32:91:
        14:f5:37:c8:c6:36:57:04:d5:de:17:15:21:cc:f1:f1:
        61:6f:c8:5c:36:16:d9:3a:a3:9e:07:cc:fc:77:cd:97:
        9d:6a:7b:19:3c:69:5e:20:52:2a:f0:85:6d:14:74:18
    Fingerprint (SHA-256):
        88:39:5D:15:CB:8A:4F:BF:6F:97:34:B9:3A:02:41:D4:11:FD:0B:53:A6:83:E9:B3:53:BE:CA:93:C4:D1:6E:7D
    Fingerprint (SHA1):
        DD:E9:B3:A6:3E:92:CC:FE:54:9E:B4:80:08:37:49:A4:04:5B:19:AC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3936: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3937: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115455 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3938: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3939: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3940: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3941: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115456   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3942: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3943: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3944: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3945: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115457   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA1Root-510115234.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3946: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3947: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3948: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3949: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510115458   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3950: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3951: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3952: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115455 (0x1e67be7f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:18 2017
            Not After : Tue May 10 11:54:18 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:bb:2a:f7:aa:96:65:da:18:51:3a:0c:a9:da:82:b9:
                    81:83:b9:47:62:ab:df:9e:74:eb:98:5b:93:f2:32:75:
                    44:77:14:7d:7c:11:e3:13:3a:45:ed:11:81:63:8f:b6:
                    b1:a6:3c:3f:8f:e8:4f:58:61:a1:80:7e:41:72:d1:31:
                    1c:2f:e0:78:ad:eb:7b:53:fa:c2:f7:ec:92:09:d0:82:
                    9b:a1:10:34:2f:85:75:83:9f:c9:2f:b0:0c:11:7d:8d:
                    0f:9c:c3:b9:ac:58:3e:98:78:40:43:45:59:1e:aa:ff:
                    9e:a2:7a:81:1b:80:b6:ac:50:7e:15:70:1c:7c:00:ad:
                    a6:8d:11:7f:1e:44:6c:c5:ab:05:fc:02:ac:91:32:a1:
                    66:38:84:49:f4:5f:28:a6:b8:9d:3e:6a:9a:c5:70:a6:
                    a1:b5:01:d6:e8:60:b4:c3:35:44:39:27:8f:68:0f:f1:
                    41:04:79:4c:58:f1:45:e7:2f:65:7c:fc:6e:29:98:de:
                    32:8c:bd:81:17:da:44:c7:a0:a9:73:74:fb:8b:94:1e:
                    d2:35:5d:45:70:b2:b6:79:d4:72:61:61:ee:a7:63:3e:
                    62:3a:fd:dc:59:e8:11:89:52:cb:6a:3e:24:f9:d2:6a:
                    80:fb:c2:bc:18:e5:89:f1:0e:98:86:63:7c:c1:85:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:af:0c:d9:ed:7b:40:1e:22:ac:89:86:9f:f1:d9:4c:
        55:6f:9a:53:8d:33:bb:aa:2c:37:29:0b:99:18:21:dc:
        5b:55:14:32:c1:62:b3:97:c8:02:20:2b:4c:e6:35:c0:
        82:32:37:54:b3:35:f6:35:cf:fe:1d:d2:4d:9d:41:77:
        71:9f:69:4e:09:db:bc:c2:b8:3b:fe:f3:12:0a:2d:97:
        fb:65:8a:47:f4:1c:9b:cb:d7:26:33:02:5e:05:9d:3b:
        aa:64:db:33:01:42:ad:39:89:d3:61:78:05:e3:3c:82:
        62:75:b9:aa:f2:2b:a4:17:db:82:ff:87:98:83:16:de:
        b7:b7:46:45:7f:a6:85:89:ff:52:df:69:47:50:38:18:
        a2:3d:c7:c2:8c:12:b7:ce:40:be:09:31:2c:ca:c3:ff:
        b8:d1:9e:23:87:cb:e6:2d:9f:e4:02:ce:dd:15:51:31:
        d6:55:a5:fb:f9:55:a6:d0:43:f7:61:be:54:b9:7b:93:
        0d:4d:13:26:b8:2f:b1:fc:8c:32:0a:53:d8:5d:9b:cf:
        5c:bd:e0:56:fc:25:fa:85:77:5b:ec:12:e9:3d:1d:f1:
        b5:60:54:c0:85:1b:2e:c3:a1:fb:70:5e:eb:c4:1d:cd:
        b7:75:0c:3a:97:47:b7:7e:3e:f7:3e:24:ea:ca:7b:79
    Fingerprint (SHA-256):
        E7:52:35:62:F2:1E:9F:AA:E3:5D:10:08:10:FD:23:D1:F9:A9:33:70:2B:95:62:1A:F8:CB:EA:82:42:F8:E0:F3
    Fingerprint (SHA1):
        64:84:75:CA:6E:A0:D6:C6:1A:38:A4:9B:20:39:7C:C6:81:EC:D9:BD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3953: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3954: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115459 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3955: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3956: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3957: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115460 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3958: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3959: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3960: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3961: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510115461 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3962: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3963: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510115462 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3964: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3965: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3966: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3967: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3968: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510115463   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-Bridge-510115235.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3969: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3970: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3971: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3972: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115464   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3973: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3974: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3975: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3976: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115460 (0x1e67be84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:54:20 2017
            Not After : Tue May 10 11:54:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:6f:b8:c1:62:89:c5:ba:79:45:46:83:24:97:6f:83:
                    62:8e:84:c8:56:92:5d:d4:51:72:2b:dd:4b:ba:48:5e:
                    4c:a5:47:24:2e:76:ea:0d:01:c4:1d:14:2d:29:ee:6b:
                    e5:b0:e4:f7:a5:cc:43:07:36:b5:24:6e:8b:4f:6c:87:
                    98:e1:b4:c8:18:6f:fe:67:5a:fd:f0:6b:d9:cc:48:25:
                    bf:c7:0b:d8:92:e3:cc:4d:c5:97:23:2e:65:6d:3b:46:
                    a4:b3:17:e7:65:4a:23:c8:bb:9a:37:05:db:75:11:27:
                    d2:9b:0f:2a:8f:58:2f:70:93:85:b0:10:56:79:54:47:
                    a5:9d:43:22:ce:be:55:07:52:07:99:52:7d:36:48:23:
                    cd:b1:ae:85:df:bd:36:02:68:bf:ad:00:22:b8:9c:e1:
                    22:06:5e:a0:a7:de:a4:7a:96:e0:27:a3:12:ae:21:c2:
                    5d:e8:c9:e8:44:f5:7a:30:69:06:c1:28:a9:e1:49:79:
                    3a:c2:f1:42:cf:dd:9e:40:63:cc:b3:29:12:7c:eb:9f:
                    c5:22:93:83:50:9f:02:26:21:b8:6b:fd:61:85:a3:bb:
                    e1:9d:6f:7e:5f:85:5d:02:ef:60:7d:7d:c4:e2:f3:a1:
                    a4:72:10:3b:00:67:c1:75:f5:d9:e8:38:b4:49:5b:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:5a:2e:29:d1:f1:75:e7:b0:4a:bb:ff:12:e9:13:e5:
        3e:f0:58:08:8a:90:ba:7c:72:45:09:b0:cf:94:d9:c4:
        b6:fc:62:50:51:94:78:2a:3e:ee:6d:17:32:e9:41:41:
        82:a6:cc:27:13:21:9d:c2:f0:39:42:7f:4a:06:16:72:
        75:2b:9c:f2:68:1d:ae:79:b2:b3:80:8b:04:7c:ea:3e:
        41:eb:4b:ee:89:86:06:c0:07:a9:2b:c6:f1:e0:f7:d6:
        8c:07:ea:fa:9d:1a:e5:5e:f2:db:8b:fb:50:85:1e:dd:
        8b:d6:0d:eb:0b:d2:6a:62:b2:17:de:cc:81:1f:0e:a0:
        ee:43:0a:7f:74:24:e3:2c:23:cb:ff:dd:72:1b:66:6d:
        d7:49:3e:a1:93:fb:09:6d:f0:93:e1:17:0f:6f:43:a8:
        1b:5e:cc:05:55:57:7b:1a:de:e6:64:a8:a7:c4:3f:b5:
        17:9d:fe:f5:62:6c:f4:9d:69:90:52:ec:d4:b2:77:48:
        33:5f:d0:9d:3b:69:67:3d:64:3f:a7:07:93:f9:d6:20:
        e6:db:46:82:72:dd:ff:a4:fa:6c:c4:46:0a:1a:c0:d6:
        31:6f:ee:f7:cf:1b:61:cb:2e:79:12:eb:f0:3e:e5:b4:
        bc:af:c5:c6:f5:6d:98:04:ac:d1:fc:09:62:ad:c2:a4
    Fingerprint (SHA-256):
        59:FE:93:4F:9D:07:F8:C0:BA:DF:98:D1:EF:9E:A9:19:D5:12:9E:7F:A8:5A:54:2E:3E:DD:EC:E8:12:54:7E:D4
    Fingerprint (SHA1):
        08:A6:96:30:85:24:A5:0F:CE:88:1A:9B:84:87:0F:68:48:D6:4D:4B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3977: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115460 (0x1e67be84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:54:20 2017
            Not After : Tue May 10 11:54:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:6f:b8:c1:62:89:c5:ba:79:45:46:83:24:97:6f:83:
                    62:8e:84:c8:56:92:5d:d4:51:72:2b:dd:4b:ba:48:5e:
                    4c:a5:47:24:2e:76:ea:0d:01:c4:1d:14:2d:29:ee:6b:
                    e5:b0:e4:f7:a5:cc:43:07:36:b5:24:6e:8b:4f:6c:87:
                    98:e1:b4:c8:18:6f:fe:67:5a:fd:f0:6b:d9:cc:48:25:
                    bf:c7:0b:d8:92:e3:cc:4d:c5:97:23:2e:65:6d:3b:46:
                    a4:b3:17:e7:65:4a:23:c8:bb:9a:37:05:db:75:11:27:
                    d2:9b:0f:2a:8f:58:2f:70:93:85:b0:10:56:79:54:47:
                    a5:9d:43:22:ce:be:55:07:52:07:99:52:7d:36:48:23:
                    cd:b1:ae:85:df:bd:36:02:68:bf:ad:00:22:b8:9c:e1:
                    22:06:5e:a0:a7:de:a4:7a:96:e0:27:a3:12:ae:21:c2:
                    5d:e8:c9:e8:44:f5:7a:30:69:06:c1:28:a9:e1:49:79:
                    3a:c2:f1:42:cf:dd:9e:40:63:cc:b3:29:12:7c:eb:9f:
                    c5:22:93:83:50:9f:02:26:21:b8:6b:fd:61:85:a3:bb:
                    e1:9d:6f:7e:5f:85:5d:02:ef:60:7d:7d:c4:e2:f3:a1:
                    a4:72:10:3b:00:67:c1:75:f5:d9:e8:38:b4:49:5b:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:5a:2e:29:d1:f1:75:e7:b0:4a:bb:ff:12:e9:13:e5:
        3e:f0:58:08:8a:90:ba:7c:72:45:09:b0:cf:94:d9:c4:
        b6:fc:62:50:51:94:78:2a:3e:ee:6d:17:32:e9:41:41:
        82:a6:cc:27:13:21:9d:c2:f0:39:42:7f:4a:06:16:72:
        75:2b:9c:f2:68:1d:ae:79:b2:b3:80:8b:04:7c:ea:3e:
        41:eb:4b:ee:89:86:06:c0:07:a9:2b:c6:f1:e0:f7:d6:
        8c:07:ea:fa:9d:1a:e5:5e:f2:db:8b:fb:50:85:1e:dd:
        8b:d6:0d:eb:0b:d2:6a:62:b2:17:de:cc:81:1f:0e:a0:
        ee:43:0a:7f:74:24:e3:2c:23:cb:ff:dd:72:1b:66:6d:
        d7:49:3e:a1:93:fb:09:6d:f0:93:e1:17:0f:6f:43:a8:
        1b:5e:cc:05:55:57:7b:1a:de:e6:64:a8:a7:c4:3f:b5:
        17:9d:fe:f5:62:6c:f4:9d:69:90:52:ec:d4:b2:77:48:
        33:5f:d0:9d:3b:69:67:3d:64:3f:a7:07:93:f9:d6:20:
        e6:db:46:82:72:dd:ff:a4:fa:6c:c4:46:0a:1a:c0:d6:
        31:6f:ee:f7:cf:1b:61:cb:2e:79:12:eb:f0:3e:e5:b4:
        bc:af:c5:c6:f5:6d:98:04:ac:d1:fc:09:62:ad:c2:a4
    Fingerprint (SHA-256):
        59:FE:93:4F:9D:07:F8:C0:BA:DF:98:D1:EF:9E:A9:19:D5:12:9E:7F:A8:5A:54:2E:3E:DD:EC:E8:12:54:7E:D4
    Fingerprint (SHA1):
        08:A6:96:30:85:24:A5:0F:CE:88:1A:9B:84:87:0F:68:48:D6:4D:4B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3978: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3979: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115465 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3980: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3981: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3982: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115466 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3983: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3984: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3985: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3986: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510115467 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3987: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3988: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510115468 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3989: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3990: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3991: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3992: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3993: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510115469   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-Bridge-510115236.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3994: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3995: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3996: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3997: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115470   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3998: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3999: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4000: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4001: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510115471   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-BridgeNavy-510115237.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4002: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4003: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4004: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4005: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510115472   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4006: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4007: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #4008: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #4009: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115466 (0x1e67be8a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:54:22 2017
            Not After : Tue May 10 11:54:22 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:09:58:d2:c9:56:40:c1:29:80:c4:25:c6:38:c3:04:
                    1b:3a:2f:36:bf:6a:5a:96:67:63:90:38:7b:eb:79:e9:
                    ef:05:d2:cd:36:4d:c5:54:40:43:0d:38:e4:44:4c:4a:
                    b2:f2:48:68:15:46:a8:59:f5:fb:13:be:a2:18:6c:e2:
                    9f:aa:8b:f9:9a:19:8e:bd:37:3f:68:c2:9a:70:5b:d0:
                    74:2d:30:9a:ad:13:8d:cc:0d:1b:70:f0:dc:13:db:d9:
                    ab:ad:85:6d:f1:48:29:0b:5f:c0:eb:83:f5:46:f3:77:
                    7a:36:e4:1c:d5:49:a7:bc:47:85:fb:a4:c0:13:5e:89:
                    37:13:75:5a:ae:0e:19:ae:3d:27:db:db:17:c7:bf:e0:
                    18:9b:e8:5e:32:b7:f5:a1:56:2e:15:cc:b2:a5:60:32:
                    9e:b4:5d:34:d1:d7:a9:74:ae:5b:1c:62:e3:fd:56:11:
                    d2:13:71:e7:f4:9d:f7:46:66:37:8d:39:20:e1:de:61:
                    92:97:5b:6e:02:62:ec:c8:ec:82:71:b3:3e:91:3e:4e:
                    ec:be:03:55:da:bb:98:a2:42:9f:1b:4b:4b:7c:61:1a:
                    e0:72:02:fc:df:eb:7a:2b:40:92:00:07:b1:5e:16:e6:
                    17:3e:40:c2:7f:8f:bb:d4:8d:a2:83:e0:6a:4f:77:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:e5:07:35:20:ec:39:a3:b9:fe:37:2e:bc:85:61:4c:
        de:07:e6:37:b4:45:73:73:83:4b:4c:48:66:6b:3b:83:
        e0:ef:9c:9e:fe:2a:ed:2a:5c:1d:3d:6a:fe:85:28:44:
        8a:60:37:0b:19:33:e7:53:ba:67:ac:05:0e:9e:65:35:
        1d:90:f4:12:b1:ec:30:ac:04:b6:23:f5:a2:75:23:05:
        f4:ea:30:4f:c7:e4:46:28:64:5f:76:22:87:5f:09:de:
        b1:a4:78:8b:20:50:01:cf:92:93:be:33:76:8e:b2:56:
        16:7c:8b:f6:35:e4:ad:3f:df:78:b7:53:a4:36:22:7d:
        4c:5b:49:aa:d0:c6:9a:8e:03:1a:22:9f:a0:75:78:ed:
        9b:4a:68:b1:f3:61:53:a9:bd:a7:b3:86:7c:b0:a1:47:
        fb:2c:89:66:9b:6d:ef:4f:6a:bb:f5:00:27:06:30:c6:
        c6:de:d3:1f:14:14:c4:8a:86:f6:70:c8:ec:99:a9:7e:
        f8:c7:6c:73:45:95:99:23:54:72:27:61:02:d4:01:6e:
        3f:b8:57:87:2b:dc:9b:ff:fb:52:96:80:ad:77:7f:ae:
        d1:49:23:ba:49:ad:25:dc:6d:8a:f4:57:43:1a:c8:c8:
        9f:45:ae:c5:7e:ec:cb:03:53:2b:72:24:4a:17:b8:80
    Fingerprint (SHA-256):
        C4:AD:0E:EC:CA:1F:33:44:06:FF:A0:0F:E3:F7:E0:01:9E:D0:E8:8B:04:D7:23:5A:6F:A9:E7:C8:32:6F:0D:86
    Fingerprint (SHA1):
        35:75:E8:B2:ED:7D:02:F6:E4:FC:71:26:1F:8C:C9:E7:69:F2:AF:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4010: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115466 (0x1e67be8a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:54:22 2017
            Not After : Tue May 10 11:54:22 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:09:58:d2:c9:56:40:c1:29:80:c4:25:c6:38:c3:04:
                    1b:3a:2f:36:bf:6a:5a:96:67:63:90:38:7b:eb:79:e9:
                    ef:05:d2:cd:36:4d:c5:54:40:43:0d:38:e4:44:4c:4a:
                    b2:f2:48:68:15:46:a8:59:f5:fb:13:be:a2:18:6c:e2:
                    9f:aa:8b:f9:9a:19:8e:bd:37:3f:68:c2:9a:70:5b:d0:
                    74:2d:30:9a:ad:13:8d:cc:0d:1b:70:f0:dc:13:db:d9:
                    ab:ad:85:6d:f1:48:29:0b:5f:c0:eb:83:f5:46:f3:77:
                    7a:36:e4:1c:d5:49:a7:bc:47:85:fb:a4:c0:13:5e:89:
                    37:13:75:5a:ae:0e:19:ae:3d:27:db:db:17:c7:bf:e0:
                    18:9b:e8:5e:32:b7:f5:a1:56:2e:15:cc:b2:a5:60:32:
                    9e:b4:5d:34:d1:d7:a9:74:ae:5b:1c:62:e3:fd:56:11:
                    d2:13:71:e7:f4:9d:f7:46:66:37:8d:39:20:e1:de:61:
                    92:97:5b:6e:02:62:ec:c8:ec:82:71:b3:3e:91:3e:4e:
                    ec:be:03:55:da:bb:98:a2:42:9f:1b:4b:4b:7c:61:1a:
                    e0:72:02:fc:df:eb:7a:2b:40:92:00:07:b1:5e:16:e6:
                    17:3e:40:c2:7f:8f:bb:d4:8d:a2:83:e0:6a:4f:77:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:e5:07:35:20:ec:39:a3:b9:fe:37:2e:bc:85:61:4c:
        de:07:e6:37:b4:45:73:73:83:4b:4c:48:66:6b:3b:83:
        e0:ef:9c:9e:fe:2a:ed:2a:5c:1d:3d:6a:fe:85:28:44:
        8a:60:37:0b:19:33:e7:53:ba:67:ac:05:0e:9e:65:35:
        1d:90:f4:12:b1:ec:30:ac:04:b6:23:f5:a2:75:23:05:
        f4:ea:30:4f:c7:e4:46:28:64:5f:76:22:87:5f:09:de:
        b1:a4:78:8b:20:50:01:cf:92:93:be:33:76:8e:b2:56:
        16:7c:8b:f6:35:e4:ad:3f:df:78:b7:53:a4:36:22:7d:
        4c:5b:49:aa:d0:c6:9a:8e:03:1a:22:9f:a0:75:78:ed:
        9b:4a:68:b1:f3:61:53:a9:bd:a7:b3:86:7c:b0:a1:47:
        fb:2c:89:66:9b:6d:ef:4f:6a:bb:f5:00:27:06:30:c6:
        c6:de:d3:1f:14:14:c4:8a:86:f6:70:c8:ec:99:a9:7e:
        f8:c7:6c:73:45:95:99:23:54:72:27:61:02:d4:01:6e:
        3f:b8:57:87:2b:dc:9b:ff:fb:52:96:80:ad:77:7f:ae:
        d1:49:23:ba:49:ad:25:dc:6d:8a:f4:57:43:1a:c8:c8:
        9f:45:ae:c5:7e:ec:cb:03:53:2b:72:24:4a:17:b8:80
    Fingerprint (SHA-256):
        C4:AD:0E:EC:CA:1F:33:44:06:FF:A0:0F:E3:F7:E0:01:9E:D0:E8:8B:04:D7:23:5A:6F:A9:E7:C8:32:6F:0D:86
    Fingerprint (SHA1):
        35:75:E8:B2:ED:7D:02:F6:E4:FC:71:26:1F:8C:C9:E7:69:F2:AF:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4011: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #4012: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115465 (0x1e67be89)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:54:22 2017
            Not After : Tue May 10 11:54:22 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:a5:29:fb:80:44:b2:51:31:04:60:39:4b:77:c1:b6:
                    a6:6c:44:56:52:88:8f:fb:b5:46:78:87:11:3b:01:13:
                    7c:91:f0:b2:fc:e5:15:f5:f9:a0:30:14:c2:87:6f:91:
                    6e:fb:5b:fd:9a:79:c8:52:81:48:c9:fc:2b:2d:ee:bf:
                    11:c1:4f:2b:70:40:4b:cf:f8:49:77:4c:93:95:3b:ee:
                    09:e5:07:50:b8:4a:61:a9:f2:f5:62:a3:d0:71:0f:cd:
                    27:35:5a:32:bb:89:02:d1:c8:71:0f:ab:ca:d1:cc:bc:
                    9a:8b:dd:8d:a9:68:3e:24:05:cf:7c:25:51:83:5e:29:
                    60:a7:16:6a:14:ed:75:b4:bc:e0:e3:d1:44:e9:0d:5d:
                    bd:d6:ae:f0:b1:fe:2c:d9:a7:5d:17:53:76:cf:c3:54:
                    60:bd:1b:e5:3a:30:79:75:ef:7d:de:e3:8b:e9:87:12:
                    fc:e7:f3:4d:be:55:16:90:3d:f4:ab:2b:15:77:98:1e:
                    34:b0:48:04:7d:e0:48:48:fc:27:d0:94:c8:1b:15:62:
                    58:a1:ba:75:69:a4:0e:07:df:87:c0:91:dd:79:b8:32:
                    50:f1:8a:b9:c2:75:84:b4:4b:70:5a:bb:88:80:2c:2e:
                    e5:a6:a8:48:6e:14:98:37:6e:5d:ce:b0:d9:d8:5e:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:c6:a6:d0:7d:0d:20:d4:73:4f:b0:06:04:69:2f:b0:
        e9:9e:29:46:53:73:57:69:7e:56:bb:1f:03:05:6e:6e:
        d1:10:5d:77:d3:6d:60:25:8a:57:6c:19:aa:e1:92:ae:
        a1:d9:a3:b7:71:24:b5:9a:b6:31:ba:a6:90:57:ab:1e:
        d0:98:f2:d2:61:8d:f1:a5:4d:98:15:46:f5:bf:ca:eb:
        3a:34:0f:88:cb:17:b5:47:f6:1c:92:91:52:39:37:f3:
        ad:ac:12:5f:3c:3d:fe:e6:9c:d8:35:55:ef:d5:43:01:
        85:69:74:52:ef:43:34:d9:4e:1f:10:3f:e1:79:ef:4d:
        0b:be:79:a4:30:d8:48:42:f4:95:aa:e1:a2:88:89:00:
        f5:43:05:6e:3e:58:c2:80:16:b4:ea:d5:4a:c0:61:f5:
        0c:e4:64:25:73:00:82:44:65:f4:af:1f:20:cc:a4:0c:
        fb:f8:f9:28:fa:4c:d8:ef:ad:30:5a:e8:18:56:35:6c:
        a7:27:b8:f7:42:75:7c:b9:40:ba:73:26:6f:f9:25:6c:
        28:0a:0f:45:f1:0a:92:2c:0f:43:18:e5:cc:18:11:62:
        f1:01:6f:f1:82:01:82:e9:82:21:49:93:ae:fb:b1:03:
        ca:d9:e8:e2:5b:b3:c4:23:de:cc:ea:e7:22:b2:77:d4
    Fingerprint (SHA-256):
        10:B3:1A:47:0A:1A:32:E1:1C:BB:5E:43:18:4D:05:CC:88:AB:0D:05:56:9E:90:02:4E:5A:FA:C5:F4:2E:63:78
    Fingerprint (SHA1):
        1B:53:F9:17:4F:67:35:D3:23:1A:E7:AD:B6:F2:FC:7D:F0:9C:C8:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4013: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115466 (0x1e67be8a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:54:22 2017
            Not After : Tue May 10 11:54:22 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:09:58:d2:c9:56:40:c1:29:80:c4:25:c6:38:c3:04:
                    1b:3a:2f:36:bf:6a:5a:96:67:63:90:38:7b:eb:79:e9:
                    ef:05:d2:cd:36:4d:c5:54:40:43:0d:38:e4:44:4c:4a:
                    b2:f2:48:68:15:46:a8:59:f5:fb:13:be:a2:18:6c:e2:
                    9f:aa:8b:f9:9a:19:8e:bd:37:3f:68:c2:9a:70:5b:d0:
                    74:2d:30:9a:ad:13:8d:cc:0d:1b:70:f0:dc:13:db:d9:
                    ab:ad:85:6d:f1:48:29:0b:5f:c0:eb:83:f5:46:f3:77:
                    7a:36:e4:1c:d5:49:a7:bc:47:85:fb:a4:c0:13:5e:89:
                    37:13:75:5a:ae:0e:19:ae:3d:27:db:db:17:c7:bf:e0:
                    18:9b:e8:5e:32:b7:f5:a1:56:2e:15:cc:b2:a5:60:32:
                    9e:b4:5d:34:d1:d7:a9:74:ae:5b:1c:62:e3:fd:56:11:
                    d2:13:71:e7:f4:9d:f7:46:66:37:8d:39:20:e1:de:61:
                    92:97:5b:6e:02:62:ec:c8:ec:82:71:b3:3e:91:3e:4e:
                    ec:be:03:55:da:bb:98:a2:42:9f:1b:4b:4b:7c:61:1a:
                    e0:72:02:fc:df:eb:7a:2b:40:92:00:07:b1:5e:16:e6:
                    17:3e:40:c2:7f:8f:bb:d4:8d:a2:83:e0:6a:4f:77:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:e5:07:35:20:ec:39:a3:b9:fe:37:2e:bc:85:61:4c:
        de:07:e6:37:b4:45:73:73:83:4b:4c:48:66:6b:3b:83:
        e0:ef:9c:9e:fe:2a:ed:2a:5c:1d:3d:6a:fe:85:28:44:
        8a:60:37:0b:19:33:e7:53:ba:67:ac:05:0e:9e:65:35:
        1d:90:f4:12:b1:ec:30:ac:04:b6:23:f5:a2:75:23:05:
        f4:ea:30:4f:c7:e4:46:28:64:5f:76:22:87:5f:09:de:
        b1:a4:78:8b:20:50:01:cf:92:93:be:33:76:8e:b2:56:
        16:7c:8b:f6:35:e4:ad:3f:df:78:b7:53:a4:36:22:7d:
        4c:5b:49:aa:d0:c6:9a:8e:03:1a:22:9f:a0:75:78:ed:
        9b:4a:68:b1:f3:61:53:a9:bd:a7:b3:86:7c:b0:a1:47:
        fb:2c:89:66:9b:6d:ef:4f:6a:bb:f5:00:27:06:30:c6:
        c6:de:d3:1f:14:14:c4:8a:86:f6:70:c8:ec:99:a9:7e:
        f8:c7:6c:73:45:95:99:23:54:72:27:61:02:d4:01:6e:
        3f:b8:57:87:2b:dc:9b:ff:fb:52:96:80:ad:77:7f:ae:
        d1:49:23:ba:49:ad:25:dc:6d:8a:f4:57:43:1a:c8:c8:
        9f:45:ae:c5:7e:ec:cb:03:53:2b:72:24:4a:17:b8:80
    Fingerprint (SHA-256):
        C4:AD:0E:EC:CA:1F:33:44:06:FF:A0:0F:E3:F7:E0:01:9E:D0:E8:8B:04:D7:23:5A:6F:A9:E7:C8:32:6F:0D:86
    Fingerprint (SHA1):
        35:75:E8:B2:ED:7D:02:F6:E4:FC:71:26:1F:8C:C9:E7:69:F2:AF:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4014: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115466 (0x1e67be8a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:54:22 2017
            Not After : Tue May 10 11:54:22 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:09:58:d2:c9:56:40:c1:29:80:c4:25:c6:38:c3:04:
                    1b:3a:2f:36:bf:6a:5a:96:67:63:90:38:7b:eb:79:e9:
                    ef:05:d2:cd:36:4d:c5:54:40:43:0d:38:e4:44:4c:4a:
                    b2:f2:48:68:15:46:a8:59:f5:fb:13:be:a2:18:6c:e2:
                    9f:aa:8b:f9:9a:19:8e:bd:37:3f:68:c2:9a:70:5b:d0:
                    74:2d:30:9a:ad:13:8d:cc:0d:1b:70:f0:dc:13:db:d9:
                    ab:ad:85:6d:f1:48:29:0b:5f:c0:eb:83:f5:46:f3:77:
                    7a:36:e4:1c:d5:49:a7:bc:47:85:fb:a4:c0:13:5e:89:
                    37:13:75:5a:ae:0e:19:ae:3d:27:db:db:17:c7:bf:e0:
                    18:9b:e8:5e:32:b7:f5:a1:56:2e:15:cc:b2:a5:60:32:
                    9e:b4:5d:34:d1:d7:a9:74:ae:5b:1c:62:e3:fd:56:11:
                    d2:13:71:e7:f4:9d:f7:46:66:37:8d:39:20:e1:de:61:
                    92:97:5b:6e:02:62:ec:c8:ec:82:71:b3:3e:91:3e:4e:
                    ec:be:03:55:da:bb:98:a2:42:9f:1b:4b:4b:7c:61:1a:
                    e0:72:02:fc:df:eb:7a:2b:40:92:00:07:b1:5e:16:e6:
                    17:3e:40:c2:7f:8f:bb:d4:8d:a2:83:e0:6a:4f:77:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:e5:07:35:20:ec:39:a3:b9:fe:37:2e:bc:85:61:4c:
        de:07:e6:37:b4:45:73:73:83:4b:4c:48:66:6b:3b:83:
        e0:ef:9c:9e:fe:2a:ed:2a:5c:1d:3d:6a:fe:85:28:44:
        8a:60:37:0b:19:33:e7:53:ba:67:ac:05:0e:9e:65:35:
        1d:90:f4:12:b1:ec:30:ac:04:b6:23:f5:a2:75:23:05:
        f4:ea:30:4f:c7:e4:46:28:64:5f:76:22:87:5f:09:de:
        b1:a4:78:8b:20:50:01:cf:92:93:be:33:76:8e:b2:56:
        16:7c:8b:f6:35:e4:ad:3f:df:78:b7:53:a4:36:22:7d:
        4c:5b:49:aa:d0:c6:9a:8e:03:1a:22:9f:a0:75:78:ed:
        9b:4a:68:b1:f3:61:53:a9:bd:a7:b3:86:7c:b0:a1:47:
        fb:2c:89:66:9b:6d:ef:4f:6a:bb:f5:00:27:06:30:c6:
        c6:de:d3:1f:14:14:c4:8a:86:f6:70:c8:ec:99:a9:7e:
        f8:c7:6c:73:45:95:99:23:54:72:27:61:02:d4:01:6e:
        3f:b8:57:87:2b:dc:9b:ff:fb:52:96:80:ad:77:7f:ae:
        d1:49:23:ba:49:ad:25:dc:6d:8a:f4:57:43:1a:c8:c8:
        9f:45:ae:c5:7e:ec:cb:03:53:2b:72:24:4a:17:b8:80
    Fingerprint (SHA-256):
        C4:AD:0E:EC:CA:1F:33:44:06:FF:A0:0F:E3:F7:E0:01:9E:D0:E8:8B:04:D7:23:5A:6F:A9:E7:C8:32:6F:0D:86
    Fingerprint (SHA1):
        35:75:E8:B2:ED:7D:02:F6:E4:FC:71:26:1F:8C:C9:E7:69:F2:AF:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4015: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #4016: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115473 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4017: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #4018: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #4019: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115474 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4020: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #4021: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #4022: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4023: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 510115475   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4024: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4025: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #4026: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4027: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 510115476   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4028: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4029: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #4030: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4031: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 510115477 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #4032: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4033: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 510115478 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #4034: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4035: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #4036: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4037: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4038: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510115479   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4039: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4040: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4041: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4042: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510115480   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4043: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4044: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4045: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4046: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115481   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4047: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4048: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4049: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4050: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510115482   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4051: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4052: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4053: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115473 (0x1e67be91)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:54:25 2017
            Not After : Tue May 10 11:54:25 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:2b:fe:9e:3a:2b:bf:df:b3:4b:dc:85:09:45:14:89:
                    37:9a:5f:7a:c1:c9:ad:63:c3:af:31:e6:90:5a:d2:85:
                    5a:ad:28:a7:24:c4:b5:42:6f:9b:51:91:03:af:c2:31:
                    38:98:39:06:60:2b:eb:58:85:32:95:58:31:e4:fd:44:
                    62:35:7c:ab:dc:89:a9:4d:1b:36:5c:2e:8b:8a:23:74:
                    00:e4:80:fe:8a:0d:c9:7d:20:4e:c5:74:9c:7d:e0:ef:
                    bb:2c:cd:6e:13:fe:72:7c:f9:85:c7:5f:f6:82:a7:ad:
                    dd:16:24:fa:18:da:d4:e0:66:b1:3b:92:e1:7a:06:db:
                    1a:81:4f:97:02:74:92:37:20:ff:37:a8:77:21:2a:b7:
                    36:16:59:4b:40:6c:c5:b0:ba:9c:bc:57:2f:f3:76:8e:
                    1d:2f:3f:48:dd:32:7c:70:44:6e:69:af:4d:ab:1d:b4:
                    d5:2a:fa:6d:7c:30:13:bd:8e:05:b1:56:d4:ef:f8:94:
                    70:3a:52:fc:b9:f7:43:7c:4f:8e:cd:bb:ad:23:31:f0:
                    3f:84:70:88:17:b6:58:de:25:11:cf:e8:39:f0:0e:48:
                    c9:fa:a7:42:39:6d:33:70:79:58:19:67:03:2d:fa:2f:
                    d8:51:b5:b8:3e:a9:20:46:f9:bf:2e:64:94:bf:39:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:fc:15:81:06:8c:36:79:71:21:12:91:31:d9:b5:11:
        88:ef:04:8d:99:ac:a7:5b:d4:ff:82:1d:5b:dd:98:5a:
        5a:82:a9:cc:1a:91:81:23:de:cc:63:99:7e:56:29:00:
        f4:72:ff:87:22:9a:ad:ee:a5:9d:49:09:a6:f9:dd:95:
        49:4f:1a:3b:ed:67:15:60:9b:b1:d7:7b:2f:b6:7a:bf:
        04:84:7e:be:55:f1:f9:59:0f:08:86:bd:d8:ae:77:af:
        58:ed:8b:f3:19:42:9a:63:64:8c:ab:b6:cf:61:4f:d4:
        0b:45:4b:af:39:f3:8c:b9:c4:1f:08:74:4e:92:05:83:
        85:0b:30:4e:b3:2b:c2:c2:ed:79:cf:85:0c:d2:dd:d9:
        43:45:95:2f:54:72:f9:52:8f:4c:45:6b:e9:29:5c:fb:
        6f:a4:30:d3:32:4d:40:d3:d5:de:3c:3f:57:95:f6:06:
        e5:cc:74:ea:9d:47:a2:c2:f0:a8:38:e9:1a:ff:45:44:
        9e:33:6e:ed:74:71:8b:ff:45:0b:4c:18:31:aa:eb:07:
        9b:cc:c6:59:dc:6a:f3:d6:03:83:79:15:60:16:11:33:
        e8:31:c7:61:43:e2:62:a0:ca:22:49:2e:05:16:83:3d:
        76:65:cd:dc:45:88:80:80:ea:1b:28:3d:83:1a:ad:a5
    Fingerprint (SHA-256):
        58:2D:9B:C7:80:48:14:18:F0:36:28:ED:A9:69:F3:33:B5:D2:08:E8:20:FC:5F:48:35:39:D9:C1:62:83:12:C8
    Fingerprint (SHA1):
        33:47:36:FB:95:E1:C7:61:96:1A:F2:4B:71:7A:8C:31:C6:A3:8F:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #4054: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4055: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4056: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4057: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4058: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4059: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4060: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4061: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4062: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115474 (0x1e67be92)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:54:25 2017
            Not After : Tue May 10 11:54:25 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:fc:65:a4:d6:f4:8a:47:89:13:38:66:95:57:3e:43:
                    54:0b:af:8f:01:8d:22:e7:c1:db:9f:15:46:8c:34:1c:
                    dd:04:29:b9:3b:b0:44:59:1f:b3:b1:f4:09:dd:31:52:
                    61:13:08:b6:b6:16:5c:6f:2b:8b:18:57:9c:7d:08:54:
                    11:13:7a:4b:5c:a2:b5:52:d1:40:e5:f6:2b:77:36:26:
                    0a:85:80:d3:3a:bc:d8:e4:42:e4:27:27:ba:97:7d:f4:
                    44:8b:3d:30:10:74:34:2d:83:2e:67:aa:88:30:b7:8c:
                    f1:cc:ef:d4:19:61:d5:5a:1d:3e:ee:d6:49:52:c1:02:
                    71:04:c9:4c:d4:37:49:2a:00:25:97:de:d2:4c:44:95:
                    1d:19:39:f5:4b:7e:cf:e2:c2:c5:65:7e:c4:1c:16:7e:
                    8d:d0:d1:31:c7:3f:51:9c:36:9b:5c:75:6b:d8:58:94:
                    b5:1a:9a:31:22:95:16:48:70:10:92:8e:3b:c6:c4:14:
                    80:37:25:cb:7a:a1:63:77:20:28:ff:64:f6:bf:0f:42:
                    98:0f:2f:a3:49:b7:82:77:0d:4a:d5:a6:0a:27:77:42:
                    4e:20:fc:e1:1e:c4:23:bf:05:5b:99:58:2a:4a:db:9d:
                    3e:66:b1:b9:06:fa:b6:ad:b9:c7:3b:77:62:ed:3e:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:5d:34:1e:fc:77:0e:f3:ea:81:d8:dc:1d:2a:cd:c9:
        da:d6:57:89:1d:d7:0f:01:d9:a3:24:be:95:2a:ed:5a:
        e7:72:89:c6:fb:e8:43:ce:c7:07:1f:13:0f:ac:26:09:
        56:01:aa:c1:87:26:a2:d6:b7:21:81:8d:b6:ca:f7:e7:
        c9:c5:f5:d9:7a:61:2c:e6:2c:85:68:ab:16:43:4b:c5:
        b7:54:a7:78:ab:06:37:e7:37:e8:1a:4b:73:0d:d8:5c:
        9b:1a:78:d7:45:7f:88:c5:f6:98:0c:ff:0c:e6:15:5f:
        f1:48:1c:d0:7c:9f:c6:f5:5c:40:dc:e3:6f:01:e4:10:
        d9:b3:9c:d2:96:68:a5:09:41:fa:88:5c:2e:88:9d:84:
        85:c4:60:fc:c4:5e:5e:ce:a3:8e:4a:b0:00:43:bd:93:
        66:85:37:41:09:67:19:aa:29:17:9e:89:e8:a3:49:45:
        9b:e9:0f:7f:86:84:9d:4e:05:38:df:17:e7:dd:61:a3:
        47:2c:4c:d6:e5:1c:7b:b8:5e:00:17:1d:5d:1b:8a:7f:
        5b:0e:5a:ea:48:78:6b:80:9b:80:3e:df:96:59:cf:01:
        63:e3:a2:d0:7d:f7:02:34:0b:d6:29:ce:13:b4:53:d3:
        c9:84:1b:7e:5a:c8:e0:6f:db:37:a7:ae:fe:c7:44:a2
    Fingerprint (SHA-256):
        60:E5:1E:1F:6D:92:74:AE:4C:36:D1:51:5F:EF:DB:5F:D0:37:E4:46:FC:7E:8A:19:25:5A:18:20:B0:CF:C5:E8
    Fingerprint (SHA1):
        3E:F6:D0:77:CB:74:C1:FF:F9:5C:55:AD:53:04:F6:B5:04:05:C2:BB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #4063: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4064: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4065: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4066: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4067: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4068: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4069: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #4070: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #4071: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #4072: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #4073: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #4074: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #4075: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #4076: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4077: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4078: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #4079: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #4080: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4081: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115483 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4082: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4083: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4084: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4085: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115484   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4086: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4087: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4088: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4089: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115485   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4090: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4091: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4092: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4093: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 510115486   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4094: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4095: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4096: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4097: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510115487   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4098: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4099: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #4100: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4101: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 510115488   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4102: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4103: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #4104: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4105: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 510115489   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4106: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4107: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #4108: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4109: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 510115490   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4110: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4111: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #4112: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4113: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 510115491   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4114: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4115: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4116: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115483 (0x1e67be9b)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:29 2017
            Not After : Tue May 10 11:54:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    96:24:bf:1c:51:68:bd:89:e8:b3:04:b8:d0:77:d1:93:
                    e9:dd:a9:ad:d0:60:ad:36:89:35:50:a0:57:01:39:05:
                    46:75:87:d5:a8:8c:29:f7:5d:8e:5d:67:b7:2b:f8:3e:
                    1e:c8:5c:22:7b:bb:e4:55:cc:fb:0e:ee:d0:d7:aa:a8:
                    91:43:82:8c:a9:06:8d:f3:45:66:35:4d:8c:e5:f7:0d:
                    12:ce:4c:c1:1b:10:d0:c7:cc:d3:11:3c:87:74:93:c4:
                    d3:9e:ba:9b:18:e0:97:64:2a:0c:36:8c:8e:1e:b6:5b:
                    72:bc:81:93:14:4c:c8:2d:a3:77:e6:97:cf:bc:fe:ad:
                    16:9a:b5:43:c4:d7:ec:7d:2f:9d:9b:fa:a3:74:29:65:
                    68:74:d7:4d:69:01:97:0b:1c:13:2a:26:2c:d3:19:50:
                    8a:cd:ca:2a:e4:25:bc:d5:9b:3f:98:49:b4:11:5d:a4:
                    8c:d1:18:8d:59:a1:03:4c:6c:be:fb:f5:4a:01:c5:84:
                    93:db:2d:b2:6d:cc:e7:cc:df:19:33:d1:f1:a6:d5:45:
                    0b:f6:aa:b6:45:6f:c8:a8:a3:b8:32:39:d7:c2:92:3e:
                    28:5b:1e:84:be:4a:37:74:2f:7e:55:94:ce:2c:ac:86:
                    7c:7a:e1:14:43:04:9c:a0:3f:36:21:7f:c7:04:4c:ba
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:23:cb:b7:3e:55:3b:7f:a2:fd:4d:e3:c6:
        c3:6e:82:09:b6:e1:63:5c:b5:03:cf:79:82:cf:fc:3b:
        02:1d:00:83:dd:bb:f5:c5:37:a6:af:53:ef:1b:ec:e8:
        d0:bb:47:33:f1:66:d8:4f:2a:aa:5a:d6:10:22:b2
    Fingerprint (SHA-256):
        C4:D0:F1:7E:BE:76:33:09:F9:72:C5:22:5D:0E:06:28:37:09:EA:A6:CE:67:3F:47:73:6C:34:C7:BC:47:3D:75
    Fingerprint (SHA1):
        FC:1B:16:F5:15:EA:55:94:2E:33:B7:08:C8:35:59:F1:FD:37:07:76
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4117: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115483 (0x1e67be9b)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:29 2017
            Not After : Tue May 10 11:54:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    96:24:bf:1c:51:68:bd:89:e8:b3:04:b8:d0:77:d1:93:
                    e9:dd:a9:ad:d0:60:ad:36:89:35:50:a0:57:01:39:05:
                    46:75:87:d5:a8:8c:29:f7:5d:8e:5d:67:b7:2b:f8:3e:
                    1e:c8:5c:22:7b:bb:e4:55:cc:fb:0e:ee:d0:d7:aa:a8:
                    91:43:82:8c:a9:06:8d:f3:45:66:35:4d:8c:e5:f7:0d:
                    12:ce:4c:c1:1b:10:d0:c7:cc:d3:11:3c:87:74:93:c4:
                    d3:9e:ba:9b:18:e0:97:64:2a:0c:36:8c:8e:1e:b6:5b:
                    72:bc:81:93:14:4c:c8:2d:a3:77:e6:97:cf:bc:fe:ad:
                    16:9a:b5:43:c4:d7:ec:7d:2f:9d:9b:fa:a3:74:29:65:
                    68:74:d7:4d:69:01:97:0b:1c:13:2a:26:2c:d3:19:50:
                    8a:cd:ca:2a:e4:25:bc:d5:9b:3f:98:49:b4:11:5d:a4:
                    8c:d1:18:8d:59:a1:03:4c:6c:be:fb:f5:4a:01:c5:84:
                    93:db:2d:b2:6d:cc:e7:cc:df:19:33:d1:f1:a6:d5:45:
                    0b:f6:aa:b6:45:6f:c8:a8:a3:b8:32:39:d7:c2:92:3e:
                    28:5b:1e:84:be:4a:37:74:2f:7e:55:94:ce:2c:ac:86:
                    7c:7a:e1:14:43:04:9c:a0:3f:36:21:7f:c7:04:4c:ba
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:23:cb:b7:3e:55:3b:7f:a2:fd:4d:e3:c6:
        c3:6e:82:09:b6:e1:63:5c:b5:03:cf:79:82:cf:fc:3b:
        02:1d:00:83:dd:bb:f5:c5:37:a6:af:53:ef:1b:ec:e8:
        d0:bb:47:33:f1:66:d8:4f:2a:aa:5a:d6:10:22:b2
    Fingerprint (SHA-256):
        C4:D0:F1:7E:BE:76:33:09:F9:72:C5:22:5D:0E:06:28:37:09:EA:A6:CE:67:3F:47:73:6C:34:C7:BC:47:3D:75
    Fingerprint (SHA1):
        FC:1B:16:F5:15:EA:55:94:2E:33:B7:08:C8:35:59:F1:FD:37:07:76
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4118: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115483 (0x1e67be9b)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:29 2017
            Not After : Tue May 10 11:54:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    96:24:bf:1c:51:68:bd:89:e8:b3:04:b8:d0:77:d1:93:
                    e9:dd:a9:ad:d0:60:ad:36:89:35:50:a0:57:01:39:05:
                    46:75:87:d5:a8:8c:29:f7:5d:8e:5d:67:b7:2b:f8:3e:
                    1e:c8:5c:22:7b:bb:e4:55:cc:fb:0e:ee:d0:d7:aa:a8:
                    91:43:82:8c:a9:06:8d:f3:45:66:35:4d:8c:e5:f7:0d:
                    12:ce:4c:c1:1b:10:d0:c7:cc:d3:11:3c:87:74:93:c4:
                    d3:9e:ba:9b:18:e0:97:64:2a:0c:36:8c:8e:1e:b6:5b:
                    72:bc:81:93:14:4c:c8:2d:a3:77:e6:97:cf:bc:fe:ad:
                    16:9a:b5:43:c4:d7:ec:7d:2f:9d:9b:fa:a3:74:29:65:
                    68:74:d7:4d:69:01:97:0b:1c:13:2a:26:2c:d3:19:50:
                    8a:cd:ca:2a:e4:25:bc:d5:9b:3f:98:49:b4:11:5d:a4:
                    8c:d1:18:8d:59:a1:03:4c:6c:be:fb:f5:4a:01:c5:84:
                    93:db:2d:b2:6d:cc:e7:cc:df:19:33:d1:f1:a6:d5:45:
                    0b:f6:aa:b6:45:6f:c8:a8:a3:b8:32:39:d7:c2:92:3e:
                    28:5b:1e:84:be:4a:37:74:2f:7e:55:94:ce:2c:ac:86:
                    7c:7a:e1:14:43:04:9c:a0:3f:36:21:7f:c7:04:4c:ba
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:23:cb:b7:3e:55:3b:7f:a2:fd:4d:e3:c6:
        c3:6e:82:09:b6:e1:63:5c:b5:03:cf:79:82:cf:fc:3b:
        02:1d:00:83:dd:bb:f5:c5:37:a6:af:53:ef:1b:ec:e8:
        d0:bb:47:33:f1:66:d8:4f:2a:aa:5a:d6:10:22:b2
    Fingerprint (SHA-256):
        C4:D0:F1:7E:BE:76:33:09:F9:72:C5:22:5D:0E:06:28:37:09:EA:A6:CE:67:3F:47:73:6C:34:C7:BC:47:3D:75
    Fingerprint (SHA1):
        FC:1B:16:F5:15:EA:55:94:2E:33:B7:08:C8:35:59:F1:FD:37:07:76
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #4119: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115483 (0x1e67be9b)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:29 2017
            Not After : Tue May 10 11:54:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    96:24:bf:1c:51:68:bd:89:e8:b3:04:b8:d0:77:d1:93:
                    e9:dd:a9:ad:d0:60:ad:36:89:35:50:a0:57:01:39:05:
                    46:75:87:d5:a8:8c:29:f7:5d:8e:5d:67:b7:2b:f8:3e:
                    1e:c8:5c:22:7b:bb:e4:55:cc:fb:0e:ee:d0:d7:aa:a8:
                    91:43:82:8c:a9:06:8d:f3:45:66:35:4d:8c:e5:f7:0d:
                    12:ce:4c:c1:1b:10:d0:c7:cc:d3:11:3c:87:74:93:c4:
                    d3:9e:ba:9b:18:e0:97:64:2a:0c:36:8c:8e:1e:b6:5b:
                    72:bc:81:93:14:4c:c8:2d:a3:77:e6:97:cf:bc:fe:ad:
                    16:9a:b5:43:c4:d7:ec:7d:2f:9d:9b:fa:a3:74:29:65:
                    68:74:d7:4d:69:01:97:0b:1c:13:2a:26:2c:d3:19:50:
                    8a:cd:ca:2a:e4:25:bc:d5:9b:3f:98:49:b4:11:5d:a4:
                    8c:d1:18:8d:59:a1:03:4c:6c:be:fb:f5:4a:01:c5:84:
                    93:db:2d:b2:6d:cc:e7:cc:df:19:33:d1:f1:a6:d5:45:
                    0b:f6:aa:b6:45:6f:c8:a8:a3:b8:32:39:d7:c2:92:3e:
                    28:5b:1e:84:be:4a:37:74:2f:7e:55:94:ce:2c:ac:86:
                    7c:7a:e1:14:43:04:9c:a0:3f:36:21:7f:c7:04:4c:ba
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:23:cb:b7:3e:55:3b:7f:a2:fd:4d:e3:c6:
        c3:6e:82:09:b6:e1:63:5c:b5:03:cf:79:82:cf:fc:3b:
        02:1d:00:83:dd:bb:f5:c5:37:a6:af:53:ef:1b:ec:e8:
        d0:bb:47:33:f1:66:d8:4f:2a:aa:5a:d6:10:22:b2
    Fingerprint (SHA-256):
        C4:D0:F1:7E:BE:76:33:09:F9:72:C5:22:5D:0E:06:28:37:09:EA:A6:CE:67:3F:47:73:6C:34:C7:BC:47:3D:75
    Fingerprint (SHA1):
        FC:1B:16:F5:15:EA:55:94:2E:33:B7:08:C8:35:59:F1:FD:37:07:76
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #4120: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4121: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4122: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4123: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4124: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4125: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4126: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4127: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4128: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4129: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4130: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4131: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4132: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4133: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4134: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4135: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #4136: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4137: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4138: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4139: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4140: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4141: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4142: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4143: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4144: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4145: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4146: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4147: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510115434Z
nextupdate=20180510115434Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 11:54:34 2017
    Next Update: Thu May 10 11:54:34 2018
    CRL Extensions:
chains.sh: #4148: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115434Z
nextupdate=20180510115434Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:54:34 2017
    Next Update: Thu May 10 11:54:34 2018
    CRL Extensions:
chains.sh: #4149: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510115434Z
nextupdate=20180510115434Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 11:54:34 2017
    Next Update: Thu May 10 11:54:34 2018
    CRL Extensions:
chains.sh: #4150: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510115434Z
nextupdate=20180510115434Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 11:54:34 2017
    Next Update: Thu May 10 11:54:34 2018
    CRL Extensions:
chains.sh: #4151: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510115435Z
addcert 14 20170510115435Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 11:54:35 2017
    Next Update: Thu May 10 11:54:34 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed May 10 11:54:35 2017
    CRL Extensions:
chains.sh: #4152: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115436Z
addcert 15 20170510115436Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:54:36 2017
    Next Update: Thu May 10 11:54:34 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed May 10 11:54:36 2017
    CRL Extensions:
chains.sh: #4153: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4154: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4155: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4156: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #4157: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #4158: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #4159: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #4160: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #4161: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #4162: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:31 2017
            Not After : Tue May 10 11:54:31 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:e1:c3:13:05:51:af:83:7d:1f:62:ff:c5:11:70:e8:
                    3f:df:d4:51:81:4a:ba:1a:49:33:13:9e:ca:29:0e:3d:
                    ec:8d:58:c9:ed:e1:c3:f3:77:cf:94:2d:15:a2:cd:9d:
                    32:71:7e:69:92:ff:e3:02:4c:54:c4:fc:df:3d:1e:ec:
                    a1:3a:c8:b4:c1:87:ec:b8:5a:eb:14:81:8b:ba:f1:74:
                    21:7a:7c:71:b9:e5:f2:a2:ae:16:44:cf:1d:e1:47:b7:
                    7b:40:9e:1f:b6:dc:2b:45:ce:2d:af:15:3f:f8:18:c6:
                    bb:70:17:37:0d:9b:7f:d6:19:ab:e1:dd:eb:b5:c4:39:
                    e4:3b:39:45:a9:80:52:33:57:54:4d:9e:47:de:54:59:
                    94:61:71:ac:00:e5:18:4c:80:e3:03:ec:69:37:0a:07:
                    ff:13:ff:8e:be:3d:68:2e:07:ac:ce:58:85:db:a5:84:
                    73:90:76:8b:7f:57:10:58:11:a4:3d:e0:72:7d:b1:dc:
                    72:eb:1f:9d:c9:bc:54:1e:92:81:46:bf:4c:f7:bb:63:
                    8e:45:4b:5d:c7:26:ea:1a:4a:69:ec:b6:7f:24:c9:01:
                    e5:5f:5e:23:98:17:36:df:b7:33:a3:3d:f9:5e:81:78:
                    7b:b4:fa:7b:d7:54:8a:06:67:33:9f:cb:ee:ee:1a:43
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:f2:c5:c3:3f:1a:35:f7:ed:6f:89:04:23:7a:71:73:
        6b:a9:88:29:4a:d5:ba:ce:f1:de:66:7d:09:e1:ad:77:
        0c:b1:64:0b:45:cc:b8:81:7e:fd:62:26:db:c8:be:d9:
        0e:9b:84:f1:2f:38:a4:05:cb:46:72:e6:5d:6b:bf:69:
        61:06:2d:79:54:98:04:04:aa:ce:48:08:4d:75:2a:8d:
        73:cb:10:ed:d8:1a:dc:a9:b1:83:7c:51:60:17:25:bc:
        f9:0c:3e:5c:5a:4a:b9:77:c0:bd:ea:5b:e8:8d:8f:1c:
        4d:3f:b3:43:56:c7:1d:b3:93:f9:d7:24:41:e1:13:c9:
        d4:d8:b2:3f:bf:b7:17:48:a7:0a:3b:37:ed:87:ca:01:
        10:1a:3c:8c:c0:92:a4:b3:e8:6f:04:d8:89:03:72:48:
        f9:a5:c7:fc:dd:76:4d:ea:a1:cf:36:b9:34:e3:77:4d:
        01:bb:7f:4d:88:2c:40:53:75:77:3a:87:39:1c:c4:c6:
        4b:25:ce:54:6a:39:76:2b:91:08:8b:0c:92:0e:4a:4a:
        5f:f6:d6:33:7e:e7:34:97:42:8b:9e:f9:5c:4f:ec:d3:
        57:67:4c:00:8b:9c:48:eb:68:e1:8b:6d:c6:fd:e7:c7:
        42:d4:a2:07:2c:e2:13:f9:6a:ae:8a:a3:84:5f:73:78
    Fingerprint (SHA-256):
        17:CE:57:B4:F7:2F:18:FD:37:0F:12:79:57:C6:36:E2:A7:B3:EB:B1:27:DE:5F:D4:30:2B:F4:18:65:5C:71:AA
    Fingerprint (SHA1):
        10:33:65:CA:3A:25:28:FB:79:3A:05:E7:7C:9E:C5:61:6B:96:36:51
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4163: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4164: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:31 2017
            Not After : Tue May 10 11:54:31 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:e1:c3:13:05:51:af:83:7d:1f:62:ff:c5:11:70:e8:
                    3f:df:d4:51:81:4a:ba:1a:49:33:13:9e:ca:29:0e:3d:
                    ec:8d:58:c9:ed:e1:c3:f3:77:cf:94:2d:15:a2:cd:9d:
                    32:71:7e:69:92:ff:e3:02:4c:54:c4:fc:df:3d:1e:ec:
                    a1:3a:c8:b4:c1:87:ec:b8:5a:eb:14:81:8b:ba:f1:74:
                    21:7a:7c:71:b9:e5:f2:a2:ae:16:44:cf:1d:e1:47:b7:
                    7b:40:9e:1f:b6:dc:2b:45:ce:2d:af:15:3f:f8:18:c6:
                    bb:70:17:37:0d:9b:7f:d6:19:ab:e1:dd:eb:b5:c4:39:
                    e4:3b:39:45:a9:80:52:33:57:54:4d:9e:47:de:54:59:
                    94:61:71:ac:00:e5:18:4c:80:e3:03:ec:69:37:0a:07:
                    ff:13:ff:8e:be:3d:68:2e:07:ac:ce:58:85:db:a5:84:
                    73:90:76:8b:7f:57:10:58:11:a4:3d:e0:72:7d:b1:dc:
                    72:eb:1f:9d:c9:bc:54:1e:92:81:46:bf:4c:f7:bb:63:
                    8e:45:4b:5d:c7:26:ea:1a:4a:69:ec:b6:7f:24:c9:01:
                    e5:5f:5e:23:98:17:36:df:b7:33:a3:3d:f9:5e:81:78:
                    7b:b4:fa:7b:d7:54:8a:06:67:33:9f:cb:ee:ee:1a:43
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:f2:c5:c3:3f:1a:35:f7:ed:6f:89:04:23:7a:71:73:
        6b:a9:88:29:4a:d5:ba:ce:f1:de:66:7d:09:e1:ad:77:
        0c:b1:64:0b:45:cc:b8:81:7e:fd:62:26:db:c8:be:d9:
        0e:9b:84:f1:2f:38:a4:05:cb:46:72:e6:5d:6b:bf:69:
        61:06:2d:79:54:98:04:04:aa:ce:48:08:4d:75:2a:8d:
        73:cb:10:ed:d8:1a:dc:a9:b1:83:7c:51:60:17:25:bc:
        f9:0c:3e:5c:5a:4a:b9:77:c0:bd:ea:5b:e8:8d:8f:1c:
        4d:3f:b3:43:56:c7:1d:b3:93:f9:d7:24:41:e1:13:c9:
        d4:d8:b2:3f:bf:b7:17:48:a7:0a:3b:37:ed:87:ca:01:
        10:1a:3c:8c:c0:92:a4:b3:e8:6f:04:d8:89:03:72:48:
        f9:a5:c7:fc:dd:76:4d:ea:a1:cf:36:b9:34:e3:77:4d:
        01:bb:7f:4d:88:2c:40:53:75:77:3a:87:39:1c:c4:c6:
        4b:25:ce:54:6a:39:76:2b:91:08:8b:0c:92:0e:4a:4a:
        5f:f6:d6:33:7e:e7:34:97:42:8b:9e:f9:5c:4f:ec:d3:
        57:67:4c:00:8b:9c:48:eb:68:e1:8b:6d:c6:fd:e7:c7:
        42:d4:a2:07:2c:e2:13:f9:6a:ae:8a:a3:84:5f:73:78
    Fingerprint (SHA-256):
        17:CE:57:B4:F7:2F:18:FD:37:0F:12:79:57:C6:36:E2:A7:B3:EB:B1:27:DE:5F:D4:30:2B:F4:18:65:5C:71:AA
    Fingerprint (SHA1):
        10:33:65:CA:3A:25:28:FB:79:3A:05:E7:7C:9E:C5:61:6B:96:36:51
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4165: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4166: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4167: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115492 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4168: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4169: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4170: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4171: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 510115493   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4172: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4173: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4174: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115264.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4175: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115238.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4176: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4177: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4178: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115264.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4179: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 510115494   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4180: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4181: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4182: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115264.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4183: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115239.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4184: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4185: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4186: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4187: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 510115495   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4188: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4189: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4190: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115264.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4191: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115240.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4192: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4193: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4194: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115264.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4195: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115241.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4196: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4197: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510115439Z
nextupdate=20180510115439Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 11:54:39 2017
    Next Update: Thu May 10 11:54:39 2018
    CRL Extensions:
chains.sh: #4198: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115439Z
nextupdate=20180510115439Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:54:39 2017
    Next Update: Thu May 10 11:54:39 2018
    CRL Extensions:
chains.sh: #4199: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510115439Z
nextupdate=20180510115439Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 11:54:39 2017
    Next Update: Thu May 10 11:54:39 2018
    CRL Extensions:
chains.sh: #4200: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510115439Z
nextupdate=20180510115439Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 11:54:39 2017
    Next Update: Thu May 10 11:54:39 2018
    CRL Extensions:
chains.sh: #4201: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115440Z
addcert 20 20170510115440Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:54:40 2017
    Next Update: Thu May 10 11:54:39 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 11:54:40 2017
    CRL Extensions:
chains.sh: #4202: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115441Z
addcert 40 20170510115441Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:54:41 2017
    Next Update: Thu May 10 11:54:39 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 11:54:40 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 11:54:41 2017
    CRL Extensions:
chains.sh: #4203: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4204: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4205: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4206: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115492 (0x1e67bea4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:36 2017
            Not After : Tue May 10 11:54:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:03:ba:fd:00:69:6b:03:7c:25:f8:75:c4:83:9c:aa:
                    95:db:10:84:6e:2c:52:ee:ad:99:d9:f4:a5:d8:8b:f8:
                    76:bb:46:ff:3a:f7:75:33:fa:b5:cc:ef:69:38:1a:5f:
                    1e:ba:82:f3:01:3b:b2:a4:41:3b:bf:c9:f6:96:47:c5:
                    4d:59:a7:2f:76:15:5b:02:00:a8:e0:2d:6e:21:b7:c8:
                    c2:63:22:97:b0:6f:c3:36:ed:50:b4:e6:e6:76:85:3e:
                    5f:91:79:d6:b1:d5:cc:f4:1e:91:41:e6:2d:f3:8c:df:
                    5f:48:5a:47:bb:1f:e8:c6:b2:e1:a1:46:aa:29:2d:cc:
                    cd:40:40:37:0e:b2:1e:49:0f:d2:f1:ba:a9:81:34:50:
                    df:1d:5c:03:96:bb:e8:dc:34:a2:97:57:fd:d9:39:2e:
                    ac:9c:ba:fb:1b:7a:de:59:a8:67:b5:ec:0d:4b:fe:0c:
                    3a:cb:66:91:e2:de:e7:57:9a:04:1f:89:be:cf:a8:22:
                    97:c4:b5:16:ad:00:ed:dd:bd:4b:0e:d2:52:16:2e:9c:
                    79:4a:20:39:be:2b:ce:30:57:78:47:c1:f4:63:b5:46:
                    24:d2:e1:f8:ee:36:7a:f4:a4:93:c0:9d:96:30:e7:0a:
                    2f:80:81:4b:b5:9d:01:c0:b7:5b:3d:d5:46:ce:79:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:f2:7a:58:c7:14:41:e0:99:40:bb:62:d2:36:38:3b:
        63:fe:38:87:f1:2f:0e:58:19:38:2b:24:cc:2f:cf:14:
        c0:18:0e:23:3b:96:aa:e3:c6:f5:d4:80:6f:2e:91:a5:
        13:2c:0f:c7:2a:3f:ff:22:72:f0:24:f9:44:c4:4f:83:
        b5:8f:bd:30:81:e1:5b:11:40:3b:c0:b9:14:56:fb:59:
        78:fd:84:cc:93:1b:48:e7:b7:a7:a2:47:04:44:91:e6:
        28:47:a5:ab:4c:d5:44:d4:0f:92:5f:51:ce:b2:c7:b2:
        00:90:f4:6c:79:46:35:92:cd:7f:2c:cb:06:d5:96:31:
        e9:a1:f1:ec:9f:32:51:73:bc:d9:ac:38:65:51:d6:e6:
        eb:2c:25:ba:c5:61:2b:5a:c5:66:58:0d:3f:fb:90:e6:
        d7:ae:d0:25:d9:f5:3a:c9:a7:03:86:4f:74:7e:b8:4e:
        f8:ce:13:7b:9e:40:67:46:ac:84:28:1a:a0:35:26:6d:
        a1:34:58:f3:93:31:1a:db:53:19:68:21:8c:a1:da:6c:
        a1:52:02:d0:99:dd:ad:5e:cb:b2:ce:84:ac:64:a4:d5:
        6d:81:3b:32:7f:71:86:d0:9f:b9:78:05:13:c1:c7:13:
        f7:7f:80:22:3b:be:e2:a3:05:62:ea:c8:7c:fc:a2:3a
    Fingerprint (SHA-256):
        E8:14:32:4A:A1:31:15:EA:A8:EA:64:61:2D:08:D3:A3:5A:F3:CC:45:9F:63:F0:E0:6D:A3:4D:A4:C0:C3:79:CB
    Fingerprint (SHA1):
        D7:7D:11:75:97:90:F0:55:B9:3B:B0:23:4F:B5:D1:D7:27:C1:55:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4207: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4208: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115492 (0x1e67bea4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:54:36 2017
            Not After : Tue May 10 11:54:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:03:ba:fd:00:69:6b:03:7c:25:f8:75:c4:83:9c:aa:
                    95:db:10:84:6e:2c:52:ee:ad:99:d9:f4:a5:d8:8b:f8:
                    76:bb:46:ff:3a:f7:75:33:fa:b5:cc:ef:69:38:1a:5f:
                    1e:ba:82:f3:01:3b:b2:a4:41:3b:bf:c9:f6:96:47:c5:
                    4d:59:a7:2f:76:15:5b:02:00:a8:e0:2d:6e:21:b7:c8:
                    c2:63:22:97:b0:6f:c3:36:ed:50:b4:e6:e6:76:85:3e:
                    5f:91:79:d6:b1:d5:cc:f4:1e:91:41:e6:2d:f3:8c:df:
                    5f:48:5a:47:bb:1f:e8:c6:b2:e1:a1:46:aa:29:2d:cc:
                    cd:40:40:37:0e:b2:1e:49:0f:d2:f1:ba:a9:81:34:50:
                    df:1d:5c:03:96:bb:e8:dc:34:a2:97:57:fd:d9:39:2e:
                    ac:9c:ba:fb:1b:7a:de:59:a8:67:b5:ec:0d:4b:fe:0c:
                    3a:cb:66:91:e2:de:e7:57:9a:04:1f:89:be:cf:a8:22:
                    97:c4:b5:16:ad:00:ed:dd:bd:4b:0e:d2:52:16:2e:9c:
                    79:4a:20:39:be:2b:ce:30:57:78:47:c1:f4:63:b5:46:
                    24:d2:e1:f8:ee:36:7a:f4:a4:93:c0:9d:96:30:e7:0a:
                    2f:80:81:4b:b5:9d:01:c0:b7:5b:3d:d5:46:ce:79:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:f2:7a:58:c7:14:41:e0:99:40:bb:62:d2:36:38:3b:
        63:fe:38:87:f1:2f:0e:58:19:38:2b:24:cc:2f:cf:14:
        c0:18:0e:23:3b:96:aa:e3:c6:f5:d4:80:6f:2e:91:a5:
        13:2c:0f:c7:2a:3f:ff:22:72:f0:24:f9:44:c4:4f:83:
        b5:8f:bd:30:81:e1:5b:11:40:3b:c0:b9:14:56:fb:59:
        78:fd:84:cc:93:1b:48:e7:b7:a7:a2:47:04:44:91:e6:
        28:47:a5:ab:4c:d5:44:d4:0f:92:5f:51:ce:b2:c7:b2:
        00:90:f4:6c:79:46:35:92:cd:7f:2c:cb:06:d5:96:31:
        e9:a1:f1:ec:9f:32:51:73:bc:d9:ac:38:65:51:d6:e6:
        eb:2c:25:ba:c5:61:2b:5a:c5:66:58:0d:3f:fb:90:e6:
        d7:ae:d0:25:d9:f5:3a:c9:a7:03:86:4f:74:7e:b8:4e:
        f8:ce:13:7b:9e:40:67:46:ac:84:28:1a:a0:35:26:6d:
        a1:34:58:f3:93:31:1a:db:53:19:68:21:8c:a1:da:6c:
        a1:52:02:d0:99:dd:ad:5e:cb:b2:ce:84:ac:64:a4:d5:
        6d:81:3b:32:7f:71:86:d0:9f:b9:78:05:13:c1:c7:13:
        f7:7f:80:22:3b:be:e2:a3:05:62:ea:c8:7c:fc:a2:3a
    Fingerprint (SHA-256):
        E8:14:32:4A:A1:31:15:EA:A8:EA:64:61:2D:08:D3:A3:5A:F3:CC:45:9F:63:F0:E0:6D:A3:4D:A4:C0:C3:79:CB
    Fingerprint (SHA1):
        D7:7D:11:75:97:90:F0:55:B9:3B:B0:23:4F:B5:D1:D7:27:C1:55:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4209: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4210: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #4211: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115496 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4212: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #4213: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4214: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4215: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510115497   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4216: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4217: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4218: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4219: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115498   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4220: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4221: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4222: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4223: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 510115499   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4224: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4225: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #4226: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510115500 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4227: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #4228: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #4229: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4230: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 510115501   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4231: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4232: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4233: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4234: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 510115502   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4235: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4236: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #4237: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #4238: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #4239: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115496 (0x1e67bea8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:54:41 2017
            Not After : Tue May 10 11:54:41 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:1d:27:78:af:a3:63:9b:b3:af:64:07:f1:78:ca:4d:
                    96:e4:7d:dc:aa:18:3b:2f:d3:69:ea:a8:e5:02:81:fe:
                    be:2a:c4:5f:9e:43:d0:05:9e:49:ef:22:1e:bd:6e:02:
                    05:e1:ac:68:08:e1:b9:57:89:75:5b:9b:e2:59:e7:01:
                    46:02:67:87:a9:84:dd:93:7b:e2:35:28:56:35:0a:04:
                    11:f3:9b:0b:d5:41:be:59:e6:e6:36:f4:47:6a:2f:5e:
                    ce:c9:35:82:25:9a:63:fb:d5:da:e4:80:b4:29:01:91:
                    ef:7a:53:d3:70:bd:6c:cb:b8:a2:92:2e:9f:8b:4a:02:
                    e2:3a:14:43:eb:fe:d5:67:df:06:23:f5:14:00:53:cc:
                    0c:fa:d4:d8:0f:0f:a3:35:8c:4c:7e:05:e5:02:6b:fe:
                    28:81:79:58:8d:5f:17:9c:88:e6:6b:61:ce:a6:32:3a:
                    ec:39:c8:55:2a:2a:45:73:ce:bf:fb:a0:fa:eb:be:cf:
                    d1:29:0e:c4:ce:f4:1d:7e:79:8e:91:29:3d:4e:d1:aa:
                    3b:a5:56:77:8d:40:e4:7f:f6:a8:08:05:34:31:56:89:
                    4d:39:c7:77:c4:99:43:d3:15:eb:ea:1b:c5:56:7d:18:
                    b9:47:fc:7d:da:59:53:01:ac:f5:09:2d:b9:22:f2:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:11:f8:3c:a6:07:59:08:e2:5c:bc:67:63:b3:32:f3:
        08:93:67:df:a6:d5:7c:58:3f:1b:e9:d5:ac:52:0f:6a:
        73:cf:fe:cb:64:a9:dd:58:b8:84:4d:a8:7f:0d:1c:65:
        f9:4f:8f:79:07:5f:cf:c4:f1:d2:3b:e9:28:6f:ad:51:
        9c:db:ab:71:98:29:cb:a1:d0:05:4c:1f:48:aa:93:7d:
        63:62:16:39:02:03:49:1a:5e:6a:42:bf:06:6e:1e:51:
        4f:2e:1b:89:83:e3:e8:6d:0f:3b:32:89:f8:77:15:29:
        05:c3:aa:34:76:57:6d:d1:9f:32:de:17:34:56:4e:5c:
        36:0e:ae:e4:91:d5:76:94:15:d2:55:ca:55:73:99:77:
        6c:f6:20:9f:ef:4c:41:85:bd:3d:47:01:24:01:df:11:
        a6:f3:3e:a9:c7:8d:31:8f:46:de:37:09:1c:d8:dc:d8:
        ac:a0:6b:3b:3a:26:ea:a4:b3:dc:a1:b4:f9:cd:c4:58:
        4b:4f:9e:3d:e0:76:96:26:b9:4b:c2:eb:4d:65:29:e9:
        97:0d:1e:09:e6:67:b6:f8:0c:df:33:75:cb:4b:54:39:
        c1:5f:58:77:f3:3b:d6:b9:46:ac:78:16:c3:7c:58:8e:
        1c:51:29:38:d8:fe:21:2a:8f:80:e3:d2:b9:31:b1:f2
    Fingerprint (SHA-256):
        72:2D:F6:A9:1C:13:1D:EF:44:C9:25:EA:FF:1C:D6:B9:4C:B8:31:D5:0F:40:DE:16:DE:45:94:A5:FB:88:F7:A5
    Fingerprint (SHA1):
        AA:EA:9E:33:EB:C2:D3:22:28:63:89:F2:70:DC:2A:64:7E:FF:42:8E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4240: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115498 (0x1e67beaa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:54:42 2017
            Not After : Tue May 10 11:54:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:89:62:ae:fd:3b:ab:1e:50:73:10:62:ca:b7:32:75:
                    d8:96:62:14:78:87:90:56:39:0f:47:f9:7f:6a:36:c2:
                    46:ed:67:6b:4c:23:48:e4:5d:cb:e7:cd:4d:8c:6f:c1:
                    e5:4f:b2:3a:74:69:22:1b:f7:61:75:08:82:ef:6c:76:
                    ce:61:35:3f:c7:00:a6:26:50:14:ab:e6:f5:27:a8:d5:
                    53:9d:51:0f:c6:03:87:9c:1b:90:fe:81:74:e7:93:59:
                    86:82:f6:77:30:5c:06:12:e6:31:4c:b5:68:50:95:a5:
                    43:39:94:90:b7:e2:5b:10:6d:c0:9f:fa:0c:80:00:b9:
                    37:04:eb:86:d8:e7:6c:a0:a9:51:ed:a9:3f:b2:54:ce:
                    31:d3:c9:bb:67:8a:cb:0b:95:04:93:64:16:2d:ce:6d:
                    5a:e9:28:4a:9b:ee:05:a9:b1:ba:3c:6d:ee:d0:ae:7b:
                    a5:7d:6f:09:c5:ae:15:68:5c:44:6b:e8:bb:6a:86:29:
                    65:a7:83:00:7f:71:98:bc:11:1f:c2:0f:6e:38:71:ec:
                    ba:a6:f2:4e:a5:42:8b:12:87:62:99:10:26:41:c8:43:
                    1f:dc:24:9e:29:bb:c4:44:b3:b4:a9:92:2a:42:0d:90:
                    95:4e:91:6f:58:fa:24:f4:41:49:34:9b:71:ef:65:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:01:cd:dd:df:ff:4c:df:4b:3d:85:58:db:b8:23:4d:
        d9:ba:0f:d3:0f:05:58:1e:08:04:39:83:c5:2a:a1:83:
        b8:02:e1:24:04:e6:ee:24:d7:ab:ee:07:01:ac:07:ed:
        a9:40:d6:2c:12:02:9e:8e:58:f3:d5:d7:5d:10:17:08:
        0c:d5:58:e4:f7:a8:cf:23:98:d6:87:10:62:7a:2d:1b:
        d7:86:13:ce:ed:a5:5a:67:1e:4d:5d:21:cf:c6:50:73:
        79:a8:b3:c9:db:35:96:29:5c:46:a7:8b:bc:96:c1:45:
        b8:c2:68:b1:44:89:b4:25:3a:78:96:50:82:51:7d:05:
        06:bb:32:21:7d:00:de:bd:67:b3:b5:52:c4:95:7b:46:
        63:55:b6:5f:90:18:fc:86:76:d9:ed:35:83:a5:27:24:
        20:2e:dd:da:49:e7:2e:58:61:75:dc:21:13:0c:ab:1e:
        90:2d:d6:cc:58:db:78:39:c3:13:f8:c3:aa:71:d1:24:
        2d:b4:bf:f6:0a:48:ad:4f:8f:43:8a:6c:c2:91:02:7b:
        63:da:d5:74:cf:87:14:fe:34:68:b6:c0:27:e7:13:3f:
        9b:ab:7d:e3:a4:2b:45:f4:53:01:f1:91:e8:50:f1:c0:
        59:03:03:e9:f5:f6:e6:32:89:2a:f9:1d:41:ef:49:1f
    Fingerprint (SHA-256):
        4D:50:08:23:66:2B:19:2D:6C:3D:D7:0C:25:B2:3D:08:89:38:9F:22:24:D1:23:0D:CF:DF:79:91:56:48:73:5F
    Fingerprint (SHA1):
        1A:AF:56:AB:37:58:B9:14:CA:4D:C3:8C:DC:8A:DE:88:E2:1D:2E:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4241: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115496 (0x1e67bea8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:54:41 2017
            Not After : Tue May 10 11:54:41 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:1d:27:78:af:a3:63:9b:b3:af:64:07:f1:78:ca:4d:
                    96:e4:7d:dc:aa:18:3b:2f:d3:69:ea:a8:e5:02:81:fe:
                    be:2a:c4:5f:9e:43:d0:05:9e:49:ef:22:1e:bd:6e:02:
                    05:e1:ac:68:08:e1:b9:57:89:75:5b:9b:e2:59:e7:01:
                    46:02:67:87:a9:84:dd:93:7b:e2:35:28:56:35:0a:04:
                    11:f3:9b:0b:d5:41:be:59:e6:e6:36:f4:47:6a:2f:5e:
                    ce:c9:35:82:25:9a:63:fb:d5:da:e4:80:b4:29:01:91:
                    ef:7a:53:d3:70:bd:6c:cb:b8:a2:92:2e:9f:8b:4a:02:
                    e2:3a:14:43:eb:fe:d5:67:df:06:23:f5:14:00:53:cc:
                    0c:fa:d4:d8:0f:0f:a3:35:8c:4c:7e:05:e5:02:6b:fe:
                    28:81:79:58:8d:5f:17:9c:88:e6:6b:61:ce:a6:32:3a:
                    ec:39:c8:55:2a:2a:45:73:ce:bf:fb:a0:fa:eb:be:cf:
                    d1:29:0e:c4:ce:f4:1d:7e:79:8e:91:29:3d:4e:d1:aa:
                    3b:a5:56:77:8d:40:e4:7f:f6:a8:08:05:34:31:56:89:
                    4d:39:c7:77:c4:99:43:d3:15:eb:ea:1b:c5:56:7d:18:
                    b9:47:fc:7d:da:59:53:01:ac:f5:09:2d:b9:22:f2:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:11:f8:3c:a6:07:59:08:e2:5c:bc:67:63:b3:32:f3:
        08:93:67:df:a6:d5:7c:58:3f:1b:e9:d5:ac:52:0f:6a:
        73:cf:fe:cb:64:a9:dd:58:b8:84:4d:a8:7f:0d:1c:65:
        f9:4f:8f:79:07:5f:cf:c4:f1:d2:3b:e9:28:6f:ad:51:
        9c:db:ab:71:98:29:cb:a1:d0:05:4c:1f:48:aa:93:7d:
        63:62:16:39:02:03:49:1a:5e:6a:42:bf:06:6e:1e:51:
        4f:2e:1b:89:83:e3:e8:6d:0f:3b:32:89:f8:77:15:29:
        05:c3:aa:34:76:57:6d:d1:9f:32:de:17:34:56:4e:5c:
        36:0e:ae:e4:91:d5:76:94:15:d2:55:ca:55:73:99:77:
        6c:f6:20:9f:ef:4c:41:85:bd:3d:47:01:24:01:df:11:
        a6:f3:3e:a9:c7:8d:31:8f:46:de:37:09:1c:d8:dc:d8:
        ac:a0:6b:3b:3a:26:ea:a4:b3:dc:a1:b4:f9:cd:c4:58:
        4b:4f:9e:3d:e0:76:96:26:b9:4b:c2:eb:4d:65:29:e9:
        97:0d:1e:09:e6:67:b6:f8:0c:df:33:75:cb:4b:54:39:
        c1:5f:58:77:f3:3b:d6:b9:46:ac:78:16:c3:7c:58:8e:
        1c:51:29:38:d8:fe:21:2a:8f:80:e3:d2:b9:31:b1:f2
    Fingerprint (SHA-256):
        72:2D:F6:A9:1C:13:1D:EF:44:C9:25:EA:FF:1C:D6:B9:4C:B8:31:D5:0F:40:DE:16:DE:45:94:A5:FB:88:F7:A5
    Fingerprint (SHA1):
        AA:EA:9E:33:EB:C2:D3:22:28:63:89:F2:70:DC:2A:64:7E:FF:42:8E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4242: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #4243: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115496 (0x1e67bea8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:54:41 2017
            Not After : Tue May 10 11:54:41 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:1d:27:78:af:a3:63:9b:b3:af:64:07:f1:78:ca:4d:
                    96:e4:7d:dc:aa:18:3b:2f:d3:69:ea:a8:e5:02:81:fe:
                    be:2a:c4:5f:9e:43:d0:05:9e:49:ef:22:1e:bd:6e:02:
                    05:e1:ac:68:08:e1:b9:57:89:75:5b:9b:e2:59:e7:01:
                    46:02:67:87:a9:84:dd:93:7b:e2:35:28:56:35:0a:04:
                    11:f3:9b:0b:d5:41:be:59:e6:e6:36:f4:47:6a:2f:5e:
                    ce:c9:35:82:25:9a:63:fb:d5:da:e4:80:b4:29:01:91:
                    ef:7a:53:d3:70:bd:6c:cb:b8:a2:92:2e:9f:8b:4a:02:
                    e2:3a:14:43:eb:fe:d5:67:df:06:23:f5:14:00:53:cc:
                    0c:fa:d4:d8:0f:0f:a3:35:8c:4c:7e:05:e5:02:6b:fe:
                    28:81:79:58:8d:5f:17:9c:88:e6:6b:61:ce:a6:32:3a:
                    ec:39:c8:55:2a:2a:45:73:ce:bf:fb:a0:fa:eb:be:cf:
                    d1:29:0e:c4:ce:f4:1d:7e:79:8e:91:29:3d:4e:d1:aa:
                    3b:a5:56:77:8d:40:e4:7f:f6:a8:08:05:34:31:56:89:
                    4d:39:c7:77:c4:99:43:d3:15:eb:ea:1b:c5:56:7d:18:
                    b9:47:fc:7d:da:59:53:01:ac:f5:09:2d:b9:22:f2:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:11:f8:3c:a6:07:59:08:e2:5c:bc:67:63:b3:32:f3:
        08:93:67:df:a6:d5:7c:58:3f:1b:e9:d5:ac:52:0f:6a:
        73:cf:fe:cb:64:a9:dd:58:b8:84:4d:a8:7f:0d:1c:65:
        f9:4f:8f:79:07:5f:cf:c4:f1:d2:3b:e9:28:6f:ad:51:
        9c:db:ab:71:98:29:cb:a1:d0:05:4c:1f:48:aa:93:7d:
        63:62:16:39:02:03:49:1a:5e:6a:42:bf:06:6e:1e:51:
        4f:2e:1b:89:83:e3:e8:6d:0f:3b:32:89:f8:77:15:29:
        05:c3:aa:34:76:57:6d:d1:9f:32:de:17:34:56:4e:5c:
        36:0e:ae:e4:91:d5:76:94:15:d2:55:ca:55:73:99:77:
        6c:f6:20:9f:ef:4c:41:85:bd:3d:47:01:24:01:df:11:
        a6:f3:3e:a9:c7:8d:31:8f:46:de:37:09:1c:d8:dc:d8:
        ac:a0:6b:3b:3a:26:ea:a4:b3:dc:a1:b4:f9:cd:c4:58:
        4b:4f:9e:3d:e0:76:96:26:b9:4b:c2:eb:4d:65:29:e9:
        97:0d:1e:09:e6:67:b6:f8:0c:df:33:75:cb:4b:54:39:
        c1:5f:58:77:f3:3b:d6:b9:46:ac:78:16:c3:7c:58:8e:
        1c:51:29:38:d8:fe:21:2a:8f:80:e3:d2:b9:31:b1:f2
    Fingerprint (SHA-256):
        72:2D:F6:A9:1C:13:1D:EF:44:C9:25:EA:FF:1C:D6:B9:4C:B8:31:D5:0F:40:DE:16:DE:45:94:A5:FB:88:F7:A5
    Fingerprint (SHA1):
        AA:EA:9E:33:EB:C2:D3:22:28:63:89:F2:70:DC:2A:64:7E:FF:42:8E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4244: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115498 (0x1e67beaa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:54:42 2017
            Not After : Tue May 10 11:54:42 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:89:62:ae:fd:3b:ab:1e:50:73:10:62:ca:b7:32:75:
                    d8:96:62:14:78:87:90:56:39:0f:47:f9:7f:6a:36:c2:
                    46:ed:67:6b:4c:23:48:e4:5d:cb:e7:cd:4d:8c:6f:c1:
                    e5:4f:b2:3a:74:69:22:1b:f7:61:75:08:82:ef:6c:76:
                    ce:61:35:3f:c7:00:a6:26:50:14:ab:e6:f5:27:a8:d5:
                    53:9d:51:0f:c6:03:87:9c:1b:90:fe:81:74:e7:93:59:
                    86:82:f6:77:30:5c:06:12:e6:31:4c:b5:68:50:95:a5:
                    43:39:94:90:b7:e2:5b:10:6d:c0:9f:fa:0c:80:00:b9:
                    37:04:eb:86:d8:e7:6c:a0:a9:51:ed:a9:3f:b2:54:ce:
                    31:d3:c9:bb:67:8a:cb:0b:95:04:93:64:16:2d:ce:6d:
                    5a:e9:28:4a:9b:ee:05:a9:b1:ba:3c:6d:ee:d0:ae:7b:
                    a5:7d:6f:09:c5:ae:15:68:5c:44:6b:e8:bb:6a:86:29:
                    65:a7:83:00:7f:71:98:bc:11:1f:c2:0f:6e:38:71:ec:
                    ba:a6:f2:4e:a5:42:8b:12:87:62:99:10:26:41:c8:43:
                    1f:dc:24:9e:29:bb:c4:44:b3:b4:a9:92:2a:42:0d:90:
                    95:4e:91:6f:58:fa:24:f4:41:49:34:9b:71:ef:65:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:01:cd:dd:df:ff:4c:df:4b:3d:85:58:db:b8:23:4d:
        d9:ba:0f:d3:0f:05:58:1e:08:04:39:83:c5:2a:a1:83:
        b8:02:e1:24:04:e6:ee:24:d7:ab:ee:07:01:ac:07:ed:
        a9:40:d6:2c:12:02:9e:8e:58:f3:d5:d7:5d:10:17:08:
        0c:d5:58:e4:f7:a8:cf:23:98:d6:87:10:62:7a:2d:1b:
        d7:86:13:ce:ed:a5:5a:67:1e:4d:5d:21:cf:c6:50:73:
        79:a8:b3:c9:db:35:96:29:5c:46:a7:8b:bc:96:c1:45:
        b8:c2:68:b1:44:89:b4:25:3a:78:96:50:82:51:7d:05:
        06:bb:32:21:7d:00:de:bd:67:b3:b5:52:c4:95:7b:46:
        63:55:b6:5f:90:18:fc:86:76:d9:ed:35:83:a5:27:24:
        20:2e:dd:da:49:e7:2e:58:61:75:dc:21:13:0c:ab:1e:
        90:2d:d6:cc:58:db:78:39:c3:13:f8:c3:aa:71:d1:24:
        2d:b4:bf:f6:0a:48:ad:4f:8f:43:8a:6c:c2:91:02:7b:
        63:da:d5:74:cf:87:14:fe:34:68:b6:c0:27:e7:13:3f:
        9b:ab:7d:e3:a4:2b:45:f4:53:01:f1:91:e8:50:f1:c0:
        59:03:03:e9:f5:f6:e6:32:89:2a:f9:1d:41:ef:49:1f
    Fingerprint (SHA-256):
        4D:50:08:23:66:2B:19:2D:6C:3D:D7:0C:25:B2:3D:08:89:38:9F:22:24:D1:23:0D:CF:DF:79:91:56:48:73:5F
    Fingerprint (SHA1):
        1A:AF:56:AB:37:58:B9:14:CA:4D:C3:8C:DC:8A:DE:88:E2:1D:2E:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4245: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #4246: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #4247: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #4248: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115496 (0x1e67bea8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:54:41 2017
            Not After : Tue May 10 11:54:41 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:1d:27:78:af:a3:63:9b:b3:af:64:07:f1:78:ca:4d:
                    96:e4:7d:dc:aa:18:3b:2f:d3:69:ea:a8:e5:02:81:fe:
                    be:2a:c4:5f:9e:43:d0:05:9e:49:ef:22:1e:bd:6e:02:
                    05:e1:ac:68:08:e1:b9:57:89:75:5b:9b:e2:59:e7:01:
                    46:02:67:87:a9:84:dd:93:7b:e2:35:28:56:35:0a:04:
                    11:f3:9b:0b:d5:41:be:59:e6:e6:36:f4:47:6a:2f:5e:
                    ce:c9:35:82:25:9a:63:fb:d5:da:e4:80:b4:29:01:91:
                    ef:7a:53:d3:70:bd:6c:cb:b8:a2:92:2e:9f:8b:4a:02:
                    e2:3a:14:43:eb:fe:d5:67:df:06:23:f5:14:00:53:cc:
                    0c:fa:d4:d8:0f:0f:a3:35:8c:4c:7e:05:e5:02:6b:fe:
                    28:81:79:58:8d:5f:17:9c:88:e6:6b:61:ce:a6:32:3a:
                    ec:39:c8:55:2a:2a:45:73:ce:bf:fb:a0:fa:eb:be:cf:
                    d1:29:0e:c4:ce:f4:1d:7e:79:8e:91:29:3d:4e:d1:aa:
                    3b:a5:56:77:8d:40:e4:7f:f6:a8:08:05:34:31:56:89:
                    4d:39:c7:77:c4:99:43:d3:15:eb:ea:1b:c5:56:7d:18:
                    b9:47:fc:7d:da:59:53:01:ac:f5:09:2d:b9:22:f2:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:11:f8:3c:a6:07:59:08:e2:5c:bc:67:63:b3:32:f3:
        08:93:67:df:a6:d5:7c:58:3f:1b:e9:d5:ac:52:0f:6a:
        73:cf:fe:cb:64:a9:dd:58:b8:84:4d:a8:7f:0d:1c:65:
        f9:4f:8f:79:07:5f:cf:c4:f1:d2:3b:e9:28:6f:ad:51:
        9c:db:ab:71:98:29:cb:a1:d0:05:4c:1f:48:aa:93:7d:
        63:62:16:39:02:03:49:1a:5e:6a:42:bf:06:6e:1e:51:
        4f:2e:1b:89:83:e3:e8:6d:0f:3b:32:89:f8:77:15:29:
        05:c3:aa:34:76:57:6d:d1:9f:32:de:17:34:56:4e:5c:
        36:0e:ae:e4:91:d5:76:94:15:d2:55:ca:55:73:99:77:
        6c:f6:20:9f:ef:4c:41:85:bd:3d:47:01:24:01:df:11:
        a6:f3:3e:a9:c7:8d:31:8f:46:de:37:09:1c:d8:dc:d8:
        ac:a0:6b:3b:3a:26:ea:a4:b3:dc:a1:b4:f9:cd:c4:58:
        4b:4f:9e:3d:e0:76:96:26:b9:4b:c2:eb:4d:65:29:e9:
        97:0d:1e:09:e6:67:b6:f8:0c:df:33:75:cb:4b:54:39:
        c1:5f:58:77:f3:3b:d6:b9:46:ac:78:16:c3:7c:58:8e:
        1c:51:29:38:d8:fe:21:2a:8f:80:e3:d2:b9:31:b1:f2
    Fingerprint (SHA-256):
        72:2D:F6:A9:1C:13:1D:EF:44:C9:25:EA:FF:1C:D6:B9:4C:B8:31:D5:0F:40:DE:16:DE:45:94:A5:FB:88:F7:A5
    Fingerprint (SHA1):
        AA:EA:9E:33:EB:C2:D3:22:28:63:89:F2:70:DC:2A:64:7E:FF:42:8E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4249: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115500 (0x1e67beac)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 11:54:43 2017
            Not After : Tue May 10 11:54:43 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:4e:a7:51:42:2d:1d:d7:5e:5d:d2:f5:a0:b3:81:36:
                    96:cd:f5:d0:67:97:26:12:d7:50:13:54:f0:51:56:fa:
                    8b:d2:eb:29:11:51:9d:19:a4:fe:e1:44:f7:27:46:7c:
                    24:b6:5a:40:0e:c6:e9:47:1a:d5:a4:d6:44:27:a3:6e:
                    0b:e7:0a:ab:33:97:69:85:8d:82:6c:80:55:e8:bc:3c:
                    89:2c:ac:9e:f6:a1:48:94:93:26:e8:91:ea:74:a7:c4:
                    6b:77:95:c9:10:7a:8a:6d:b5:25:b0:f9:d7:e5:20:b8:
                    58:1c:0d:17:50:2d:dd:c8:60:5c:bb:f1:27:16:cf:2c:
                    46:d7:c8:d1:17:fd:43:3a:eb:e6:e5:35:17:49:0d:dc:
                    a0:44:ae:a8:49:e9:9c:1e:d9:9d:75:11:7d:68:9e:3a:
                    97:c5:5e:96:53:19:44:fc:98:2d:8c:dd:41:49:01:e7:
                    e1:56:44:7b:64:4e:01:3a:a1:40:3e:55:68:f1:ef:83:
                    be:71:8c:f7:13:de:84:d9:e9:31:28:05:71:e5:21:6e:
                    0d:b6:cc:c4:fd:1b:f3:6e:ce:f4:62:fb:ae:e8:ae:0a:
                    0c:a8:77:63:44:09:61:14:79:29:6b:50:02:5b:9a:18:
                    e7:98:f8:dc:dc:e2:81:a9:95:ef:3c:33:da:00:99:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:fd:4b:c2:c9:8e:76:6a:9c:75:7a:fa:8e:76:34:8a:
        01:bc:21:33:36:c0:bd:77:11:1c:38:78:82:0a:4c:2b:
        3a:6c:13:cf:34:6d:f0:46:81:25:b4:a3:d5:3a:f0:e0:
        ca:cd:69:49:7c:6b:7f:2c:01:88:dc:51:26:83:ef:fa:
        62:33:2c:3b:30:e3:0c:b4:6e:f1:73:24:06:24:bd:d7:
        67:b6:f3:5c:b6:cf:71:35:74:7d:6d:9e:9e:40:ec:33:
        fc:c3:b5:4b:8c:7f:f8:79:f8:84:d5:27:82:59:bb:ab:
        1c:a5:28:49:f6:b1:0d:72:4f:3a:f2:eb:97:54:7d:e8:
        ed:ba:2d:c8:b2:d6:9d:af:e6:21:f8:79:05:d9:e5:2f:
        1b:75:8d:37:d6:1c:3a:e7:89:cd:85:19:dd:6b:fc:cd:
        4d:8c:62:2c:f6:75:7d:53:9b:a5:2c:2c:b4:3b:0a:19:
        e0:f8:31:12:a5:9d:df:4a:9f:ed:0a:ca:3f:48:43:f8:
        d8:3a:c3:89:d1:0d:8c:93:b8:23:3e:da:61:46:f8:63:
        56:4b:db:03:75:eb:17:c4:25:76:bd:32:13:9a:e9:31:
        f8:7e:72:94:f3:69:58:a3:35:45:df:50:14:3c:89:cc:
        fc:71:b5:9e:78:11:e8:15:1e:96:a4:87:a7:02:7f:a5
    Fingerprint (SHA-256):
        C7:74:21:7A:48:EC:AA:B2:A8:1F:7C:E7:AE:BE:3C:B6:55:DF:74:38:F7:48:FB:2B:26:1E:07:3B:C2:06:EB:D8
    Fingerprint (SHA1):
        EA:B9:17:5A:0C:74:01:52:03:9E:B1:56:9F:AD:74:AE:66:8B:30:B3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #4250: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115496 (0x1e67bea8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:54:41 2017
            Not After : Tue May 10 11:54:41 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:1d:27:78:af:a3:63:9b:b3:af:64:07:f1:78:ca:4d:
                    96:e4:7d:dc:aa:18:3b:2f:d3:69:ea:a8:e5:02:81:fe:
                    be:2a:c4:5f:9e:43:d0:05:9e:49:ef:22:1e:bd:6e:02:
                    05:e1:ac:68:08:e1:b9:57:89:75:5b:9b:e2:59:e7:01:
                    46:02:67:87:a9:84:dd:93:7b:e2:35:28:56:35:0a:04:
                    11:f3:9b:0b:d5:41:be:59:e6:e6:36:f4:47:6a:2f:5e:
                    ce:c9:35:82:25:9a:63:fb:d5:da:e4:80:b4:29:01:91:
                    ef:7a:53:d3:70:bd:6c:cb:b8:a2:92:2e:9f:8b:4a:02:
                    e2:3a:14:43:eb:fe:d5:67:df:06:23:f5:14:00:53:cc:
                    0c:fa:d4:d8:0f:0f:a3:35:8c:4c:7e:05:e5:02:6b:fe:
                    28:81:79:58:8d:5f:17:9c:88:e6:6b:61:ce:a6:32:3a:
                    ec:39:c8:55:2a:2a:45:73:ce:bf:fb:a0:fa:eb:be:cf:
                    d1:29:0e:c4:ce:f4:1d:7e:79:8e:91:29:3d:4e:d1:aa:
                    3b:a5:56:77:8d:40:e4:7f:f6:a8:08:05:34:31:56:89:
                    4d:39:c7:77:c4:99:43:d3:15:eb:ea:1b:c5:56:7d:18:
                    b9:47:fc:7d:da:59:53:01:ac:f5:09:2d:b9:22:f2:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:11:f8:3c:a6:07:59:08:e2:5c:bc:67:63:b3:32:f3:
        08:93:67:df:a6:d5:7c:58:3f:1b:e9:d5:ac:52:0f:6a:
        73:cf:fe:cb:64:a9:dd:58:b8:84:4d:a8:7f:0d:1c:65:
        f9:4f:8f:79:07:5f:cf:c4:f1:d2:3b:e9:28:6f:ad:51:
        9c:db:ab:71:98:29:cb:a1:d0:05:4c:1f:48:aa:93:7d:
        63:62:16:39:02:03:49:1a:5e:6a:42:bf:06:6e:1e:51:
        4f:2e:1b:89:83:e3:e8:6d:0f:3b:32:89:f8:77:15:29:
        05:c3:aa:34:76:57:6d:d1:9f:32:de:17:34:56:4e:5c:
        36:0e:ae:e4:91:d5:76:94:15:d2:55:ca:55:73:99:77:
        6c:f6:20:9f:ef:4c:41:85:bd:3d:47:01:24:01:df:11:
        a6:f3:3e:a9:c7:8d:31:8f:46:de:37:09:1c:d8:dc:d8:
        ac:a0:6b:3b:3a:26:ea:a4:b3:dc:a1:b4:f9:cd:c4:58:
        4b:4f:9e:3d:e0:76:96:26:b9:4b:c2:eb:4d:65:29:e9:
        97:0d:1e:09:e6:67:b6:f8:0c:df:33:75:cb:4b:54:39:
        c1:5f:58:77:f3:3b:d6:b9:46:ac:78:16:c3:7c:58:8e:
        1c:51:29:38:d8:fe:21:2a:8f:80:e3:d2:b9:31:b1:f2
    Fingerprint (SHA-256):
        72:2D:F6:A9:1C:13:1D:EF:44:C9:25:EA:FF:1C:D6:B9:4C:B8:31:D5:0F:40:DE:16:DE:45:94:A5:FB:88:F7:A5
    Fingerprint (SHA1):
        AA:EA:9E:33:EB:C2:D3:22:28:63:89:F2:70:DC:2A:64:7E:FF:42:8E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4251: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #4252: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #4253: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #4254: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #4255: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #4256: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115501 (0x1e67bead)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 11:54:43 2017
            Not After : Tue May 10 11:54:43 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:0f:02:9f:8b:cd:5a:ce:45:5d:e5:70:84:07:ad:ad:
                    ea:2c:47:cd:8f:de:fa:d6:ac:52:9d:87:de:13:38:b5:
                    35:2f:f4:28:53:71:5d:0c:95:93:f0:59:fd:6d:f5:12:
                    ab:57:c2:32:7c:7b:95:95:ca:bd:46:60:7b:73:a5:b2:
                    62:35:0e:9a:90:96:f8:85:b0:23:17:c2:12:a5:94:ec:
                    32:61:79:94:53:ab:9f:99:05:1f:a6:33:bf:e0:52:fa:
                    25:90:62:d6:f9:47:f1:52:f5:9c:8b:f1:e9:65:98:6a:
                    d5:ec:de:2c:ba:68:d5:b1:9f:83:01:39:ec:1a:9f:05:
                    6d:ec:b5:f3:97:eb:4e:99:62:10:63:6e:64:32:60:2d:
                    40:57:69:77:88:71:ad:65:ad:72:c0:37:05:d7:92:d7:
                    99:3b:65:0a:7d:96:a9:d4:af:97:43:c4:be:01:c9:2e:
                    2b:63:b2:de:30:cc:73:34:14:ee:30:21:e4:57:21:a0:
                    64:e3:29:4f:bd:8e:97:d7:05:0a:d1:3c:88:2b:27:27:
                    d0:90:d2:11:b9:d7:7f:6b:65:8c:4b:a1:f1:68:a7:37:
                    04:fc:4c:6f:95:03:ac:30:b8:00:bc:b7:2d:62:6b:d0:
                    2e:f5:88:03:16:58:a7:e8:32:67:8e:57:8f:94:35:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:1e:ef:8e:c1:56:93:94:a1:65:4b:ad:76:e5:f1:96:
        43:6c:f9:7e:8a:45:0b:f8:c0:2b:36:b9:47:48:de:c6:
        d9:21:02:cf:a3:51:c2:a9:68:cd:f3:ee:a6:ac:95:7c:
        4d:30:c5:44:57:f8:68:b0:9e:7c:4c:06:e2:6e:99:0a:
        7b:70:ee:c1:e4:6f:e8:56:50:6f:b9:1c:a0:fc:f6:80:
        7e:3e:3f:de:68:0f:df:62:a0:ca:49:20:b4:c5:3d:5e:
        22:db:29:78:c1:98:26:66:57:cf:20:72:30:14:61:d2:
        3f:bd:11:5a:13:fa:15:b0:52:a5:29:63:66:54:90:47:
        5e:3e:d5:c7:24:9d:7c:91:e1:94:4d:03:77:94:8d:49:
        39:d4:9c:f8:cf:97:b1:47:8f:40:38:50:3d:dd:62:2a:
        bd:f8:de:04:53:4a:cd:a2:bb:f4:3e:69:88:bf:af:fd:
        f0:a7:12:eb:60:3d:a9:d4:f3:b4:8c:23:0d:51:36:78:
        b9:ed:43:4b:62:7e:bf:e9:6d:ef:4c:16:6d:ca:e9:fd:
        3a:a0:ca:26:d7:c5:37:2e:be:02:41:11:4c:5b:8a:4a:
        11:c1:a1:0b:ac:1f:f1:2f:f2:4e:27:d5:60:55:2c:79:
        86:1f:f0:59:19:ea:29:c7:bf:de:9c:ac:73:82:dd:3f
    Fingerprint (SHA-256):
        10:63:4F:48:A8:BD:62:47:BF:15:F6:E7:F5:3D:C2:00:5B:12:F9:C0:18:25:F1:B4:71:27:68:E8:B2:49:18:DE
    Fingerprint (SHA1):
        24:F1:FA:D4:4C:91:F3:29:DA:30:F6:3C:CE:B5:C3:78:91:1C:3D:93
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4257: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #4258: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #4259: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #4260: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #4261: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4262: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4263: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4264: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4265: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4266: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4267: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4268: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4269: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4270: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4271: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4272: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4273: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4274: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4275: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #4276: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4277: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4278: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4279: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4280: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 16257 at Wed May 10 11:54:45 UTC 2017
kill -USR1 16257
httpserv: normal termination
httpserv -b -p 9333 2>/dev/null;
httpserv with PID 16257 killed at Wed May 10 11:54:45 UTC 2017
TIMESTAMP chains END: Wed May 10 11:54:45 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Wed May 10 11:54:45 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Wed May 10 11:54:45 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #4281: ec(perf) test - PASSED
TIMESTAMP ecperf END: Wed May 10 11:54:45 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Wed May 10 11:54:45 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4282: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4283: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4284: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4285: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #4286: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #4287: pk11 ec tests - PASSED
TIMESTAMP ectest END: Wed May 10 11:54:46 UTC 2017
TIMESTAMP ec END: Wed May 10 11:54:46 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Wed May 10 11:54:46 UTC 2017
gtests: prng_gtest der_gtest pk11_gtest util_gtest
gtests.sh: #4288: Skipping prng_gtest (not built) - UNKNOWN
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (1 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #4289: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #4290: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #4291: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #4292: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #4293: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #4294: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #4295: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #4296: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #4297: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #4298: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #4299: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #4300: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #4301: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #4302: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #4303: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #4304: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #4305: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #4306: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #4307: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Wed May 10 11:54:46 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Wed May 10 11:54:46 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #4308: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4309: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4310: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4311: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4312: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4313: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4314: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4315: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4316: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4317: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4318: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4319: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4320: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4321: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4322: create certificate: sign  - PASSED
ssl_gtest.sh: #4323: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Wed May 10 11:54:47 UTC 2017
ssl_gtests.sh: Testing with PKIX ===============================
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Wed May 10 11:54:47 UTC 2017
TIMESTAMP libpkix END: Wed May 10 11:54:47 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Wed May 10 11:54:47 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #4324: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -f ../tests.pw
cert.sh: #4325: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4326: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4327: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #4328: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -f ../tests.pw
cert.sh: #4329: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4330: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4331: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4332: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4333: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4334: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4335: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4336: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -f ../tests.pw
cert.sh: #4337: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4338: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4339: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4340: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4341: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4342: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4343: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4344: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4345: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4346: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4347: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4348: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4349: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4350: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4351: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4352: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4353: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4354: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4355: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4356: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4357: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4358: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4359: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #4360: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4361: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4362: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4363: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4364: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4365: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4366: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4367: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4368: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4369: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4370: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4371: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4372: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw
cert.sh: #4373: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4374: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4375: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #4376: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4377: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #4378: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4379: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #4380: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4381: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #4382: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4383: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #4384: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4385: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4386: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #4387: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4388: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #4389: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4390: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #4391: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4392: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4393: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #4394: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4395: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4396: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4397: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #4398: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4399: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #4400: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4401: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw
cert.sh: #4402: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4403: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4404: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #4405: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4406: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #4407: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4408: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #4409: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4410: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #4411: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4412: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #4413: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4414: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4415: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #4416: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4417: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #4418: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4419: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #4420: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4421: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4422: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4423: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #4424: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4425: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4426: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4427: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4428: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #4429: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #4430: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw
cert.sh: #4431: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4432: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA.ca.cert
cert.sh: #4433: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4434: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #4435: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4436: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #4437: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4438: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4439: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #4440: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4441: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4442: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #4443: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4444: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4445: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #4446: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4447: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4448: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #4449: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4450: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4451: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4452: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA.ca.cert
cert.sh: #4453: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4454: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #4455: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4456: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #4457: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4458: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4459: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #4460: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4461: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4462: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #4463: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4464: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4465: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #4466: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4467: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4468: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #4469: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4470: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4471: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #4472: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4473: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4474: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #4475: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4476: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4477: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #4478: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4479: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4480: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #4481: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4482: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4483: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #4484: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4485: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4486: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4487: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4488: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw
cert.sh: #4489: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4490: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #4491: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4492: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #4493: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4494: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #4495: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4496: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4497: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #4498: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4499: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4500: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #4501: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4502: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4503: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #4504: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4505: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4506: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #4507: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4508: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw
cert.sh: #4509: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4510: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #4511: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4512: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #4513: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4514: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #4515: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4516: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4517: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #4518: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4519: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4520: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #4521: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4522: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4523: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #4524: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4525: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4526: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #4527: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4528: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw
cert.sh: #4529: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4530: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA.ca.cert
cert.sh: #4531: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4532: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #4533: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4534: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #4535: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4536: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4537: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #4538: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4539: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4540: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #4541: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4542: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4543: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #4544: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4545: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4546: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #4547: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4548: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw
cert.sh: #4549: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4550: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA.ca.cert
cert.sh: #4551: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4552: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #4553: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4554: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4555: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4556: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4557: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4558: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4559: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4560: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4561: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4562: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4563: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4564: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4565: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4566: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4567: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4568: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #4569: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #4570: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #4571: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #4572: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #4573: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #4574: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #4575: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #4576: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw
cert.sh: #4577: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4578: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #4579: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4580: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw
cert.sh: #4581: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4582: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #4583: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4584: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #4585: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4586: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4587: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #4588: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4589: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4590: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #4591: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4592: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw
cert.sh: #4593: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4594: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #4595: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4596: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #4597: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4598: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #4599: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4600: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4601: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #4602: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4603: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4604: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #4605: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4606: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4607: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #4608: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4609: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4610: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #4611: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4612: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:44:88
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:54:59 2017
            Not After : Thu Aug 10 11:54:59 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:29:4d:26:52:15:be:3c:5a:ee:93:81:6b:72:79:a2:
                    01:e0:72:31:3a:54:c9:cb:e8:7b:2d:47:4c:82:eb:ff:
                    9d:df:25:a9:2c:a2:bf:7c:5d:9c:ce:25:14:c5:e8:ed:
                    f5:af:bb:60:d7:83:cd:d7:5d:99:dd:5b:bd:6a:cc:2e:
                    91:e2:3a:64:26:92:45:3c:01:57:36:c5:77:92:54:67:
                    67:f5:07:f2:f2:3a:73:4f:2a:09:22:86:46:f6:cb:1e:
                    05:fb:3c:23:38:a6:27:d6:bf:a7:89:e7:2c:4d:76:c2:
                    1d:eb:92:2a:61:cd:9a:84:93:7a:9f:69:82:77:de:78:
                    25:d7:c5:e1:42:76:1a:ee:4e:de:a9:21:73:92:04:c4:
                    f2:70:8b:c6:ac:ae:53:c9:51:ea:f3:9a:f4:0a:e1:02:
                    b3:8d:5f:38:9b:f4:68:34:7c:35:d0:94:ba:e6:8d:3a:
                    12:c9:9b:19:aa:5f:c8:aa:75:34:50:6f:60:ba:2f:af:
                    76:36:4a:c6:16:13:80:a9:d5:67:bd:52:bc:6c:14:36:
                    09:5a:e2:3e:48:dd:29:fd:f8:58:fd:39:15:39:8a:6e:
                    e1:98:4c:94:3f:96:42:f7:29:1c:e6:39:ec:7f:4c:ee:
                    66:2c:ec:cc:41:63:f3:0d:55:01:e3:7d:14:17:a8:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:7d:7f:2f:8e:0b:c1:79:c5:db:fb:de:ff:28:70:43:
        ee:0b:e6:78:f1:98:8c:38:8d:cb:3d:25:43:56:e3:1d:
        e5:b7:6b:50:76:d6:61:a9:51:0f:93:32:87:94:d1:fe:
        e9:de:0c:b9:77:7f:46:ae:53:45:56:e7:1a:56:0f:73:
        7b:b8:d5:19:4f:b9:f9:04:13:11:46:e4:b2:28:65:50:
        32:c6:b0:e7:28:6e:54:bd:38:7f:88:79:f3:d5:70:d4:
        f5:d4:77:f6:c1:0b:a5:c7:1a:99:14:de:b7:ae:00:4e:
        e3:d8:f1:f5:97:a0:08:b2:64:0a:1d:b1:d5:b3:dc:02:
        ea:b0:21:e4:8f:7f:4e:6f:68:49:2c:dc:4a:b9:f7:e6:
        94:d4:9f:d0:58:b4:17:3a:57:e0:37:b0:bb:cb:bd:a0:
        bd:3b:65:20:99:a6:89:0f:ef:30:45:29:b8:9f:f3:ce:
        ad:17:d7:57:72:fd:06:2f:3c:3c:d0:21:8b:4b:ce:50:
        57:92:02:cb:44:1b:f8:cd:f8:d6:18:63:36:53:7d:e0:
        df:60:64:52:18:65:ba:9d:a6:22:53:88:90:6c:ef:34:
        4c:fb:71:7c:3b:1f:ca:e3:94:69:ba:aa:03:9f:57:07:
        cf:fd:74:6c:ff:5a:bd:0f:95:66:79:35:a2:5d:b1:f6
    Fingerprint (SHA-256):
        C0:3E:C4:8A:A0:05:C9:5A:F8:9A:7C:0F:13:70:02:4D:02:CA:8B:CA:45:59:C8:BB:44:2B:F3:2D:C4:A8:1E:67
    Fingerprint (SHA1):
        51:56:23:86:D7:B6:9E:5E:BA:CC:3F:71:D2:9E:37:2A:CC:7C:C6:6D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4613: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:44:89
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:55:00 2017
            Not After : Thu Aug 10 11:55:00 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:db:f8:84:53:41:8e:c0:88:74:86:f0:54:ac:56:0c:
                    ad:aa:3e:0f:df:20:15:0e:b6:eb:d6:07:1a:12:0c:a2:
                    09:19:16:18:88:e8:f4:c7:44:f9:60:d0:d9:06:18:01:
                    73:93:e4:cc:1f:ea:e4:f9:69:60:34:f5:15:52:ff:75:
                    01:09:e9:c3:e6:29:94:a6:3d:23:5d:6a:1e:c9:51:73:
                    2e:c1:1b:5e:49:e0:b4:57:b2:d8:3e:4e:5c:c1:6b:75:
                    d5:5d:e2:9b:08:f0:0e:96:cd:16:81:52:16:87:e6:cf:
                    33:ac:ee:83:0b:73:6e:4d:f2:ce:2b:7b:b3:1b:65:3e:
                    5c:a4:b6:69:ab:98:b0:bb:e4:40:c7:1b:cf:e6:b8:e3:
                    ad:96:69:33:b9:ba:74:dc:2f:b1:57:7e:3d:89:ce:cb:
                    c4:f1:cd:56:6d:8d:37:53:f7:02:2d:c6:01:31:50:44:
                    81:a0:15:e3:43:bf:20:69:ce:d0:b4:c9:a3:44:c1:74:
                    f9:a5:d1:c7:d8:11:21:12:fe:1d:72:0a:28:e6:2c:f2:
                    87:79:ec:66:75:4a:af:6d:a8:93:5b:dd:78:ca:52:67:
                    fe:83:3a:e4:62:64:3c:0b:fe:78:d0:28:cf:35:3e:86:
                    d0:2d:5b:78:2f:bd:b1:53:e3:ed:de:0f:0b:fa:75:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5b:d0:68:31:54:6a:57:e3:b5:bd:ea:0b:8e:42:ff:5e:
        2e:60:51:ea:db:72:27:48:95:c4:33:58:e8:46:bd:80:
        a6:35:aa:f6:8b:92:b3:65:1a:3c:c9:a8:da:ef:1b:06:
        39:ee:2c:40:11:0f:81:85:ec:ed:c0:a0:40:2a:87:db:
        c0:14:01:d1:79:ed:47:9f:62:a0:99:78:4a:b9:99:35:
        bb:5b:5d:b3:b2:fe:15:52:17:f0:0b:e1:ed:d7:bc:7c:
        cd:dc:c3:6f:c0:de:0d:44:68:de:40:73:0f:85:04:45:
        64:a5:b4:06:75:57:c1:38:e3:84:b4:ec:b7:5d:1a:0e:
        03:29:39:ca:58:d3:f8:4f:cc:8a:c1:2c:17:0c:ac:e8:
        78:7e:c3:04:e4:ff:04:6d:d8:ed:53:92:69:01:f3:4f:
        b5:74:85:b8:36:74:35:02:ff:e5:bf:6a:91:22:2c:b5:
        34:a8:35:96:18:4e:78:e2:31:dc:a9:d1:aa:f0:be:41:
        cc:c4:12:93:16:b7:bd:af:c6:eb:8e:80:94:b4:16:0c:
        4c:95:f9:35:b6:9a:09:30:7d:c6:7b:44:e6:12:41:95:
        5b:76:9b:28:71:7d:6c:ca:15:13:23:68:03:19:4a:23:
        72:55:17:98:2a:cf:a3:21:18:a0:03:5f:04:37:3a:93
    Fingerprint (SHA-256):
        69:30:CE:5F:22:99:5A:E6:25:1C:16:44:C3:1E:74:D5:D0:63:7C:9A:66:1F:65:A6:B9:A8:8A:04:CA:B0:6A:D4
    Fingerprint (SHA1):
        2C:05:C4:8C:1F:A1:5D:81:9F:56:6A:9F:E7:60:DA:A9:8B:E8:1D:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4614: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:44:8a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:55:00 2017
            Not After : Thu Aug 10 11:55:00 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:c8:f9:b7:e3:ae:4e:04:f2:b3:dd:63:b6:53:e9:83:
                    76:af:94:cb:22:d6:59:37:76:bb:88:45:97:18:c5:a3:
                    06:2e:98:6d:4e:33:90:8b:ad:74:ef:15:4e:2f:aa:f8:
                    e7:04:01:63:b2:3a:03:b8:fa:18:e4:8e:18:91:a5:90:
                    a9:a7:ba:b7:9c:a7:2a:01:d9:f5:17:cc:17:28:b9:14:
                    d2:4b:63:30:02:0f:ec:c9:88:30:8b:4a:21:fa:62:74:
                    76:bd:fc:46:18:48:35:82:2a:d7:8f:5f:eb:4a:ab:0c:
                    4e:c2:48:35:86:7a:37:9b:0a:29:fe:7c:bf:e6:9b:37:
                    8c:05:db:80:cb:fe:93:c5:eb:d4:6c:e5:ef:e0:f1:d1:
                    ff:e2:42:15:81:53:2e:68:79:64:7c:65:67:b1:7f:cf:
                    00:54:ac:2c:c6:59:7e:19:71:9d:41:4d:b7:2e:1a:26:
                    ab:d3:49:ce:ab:49:9d:07:6b:54:45:6c:55:6f:db:49:
                    3f:c0:b0:dc:88:05:1b:04:76:a4:50:12:5c:52:0f:1e:
                    c2:1e:88:8d:d4:cf:75:52:c0:e7:31:e0:e3:cd:64:bd:
                    de:69:2a:a7:e6:71:c7:22:3f:78:b0:2e:ea:2a:2d:88:
                    4d:f0:ae:3e:14:ed:71:17:45:b2:fa:91:fc:f2:1e:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:d1:20:3c:7c:97:21:59:c9:69:e2:70:46:a6:d5:5a:
        67:e2:82:f7:ab:15:5f:1d:e1:7b:ea:d6:8f:c5:21:ad:
        f2:48:24:94:c9:29:43:56:0e:7d:38:98:f9:44:a5:f5:
        3c:15:f7:46:8f:76:3d:5e:75:0f:d2:d5:79:cf:ba:fb:
        c4:f9:71:c2:21:07:3c:a7:da:86:6c:f6:01:3d:f7:a1:
        0c:f6:71:39:fd:9b:5b:90:77:82:07:52:c5:a7:cd:48:
        32:bc:10:c5:13:e6:7d:8b:0f:45:42:ec:b8:38:5d:77:
        ce:42:86:0b:68:ea:92:9f:ae:5a:b5:da:6b:30:b0:5e:
        cc:4a:6d:34:6b:53:cd:3d:28:78:1e:ae:35:22:00:df:
        c9:49:08:ba:4d:aa:9b:ad:d3:0b:c6:03:cb:c1:05:a4:
        6f:4b:d8:42:38:78:7e:be:95:9b:68:72:76:92:08:08:
        ac:76:25:30:a9:7a:0d:44:fc:99:64:9a:f3:76:19:f2:
        d4:dd:c2:74:58:f3:fe:8b:01:91:13:f9:fc:0b:77:48:
        78:5a:91:00:58:ab:69:33:c1:0a:a4:b3:6a:09:5a:bf:
        15:de:97:2f:fd:a1:29:47:89:eb:5b:a3:48:d9:7e:1c:
        05:e6:17:29:27:cd:6a:41:97:e8:9f:6b:60:a3:64:40
    Fingerprint (SHA-256):
        AB:E2:DD:EB:FF:62:00:7D:EC:76:6F:70:EB:21:CB:BB:A0:90:FD:C4:24:4B:3C:13:67:2B:BB:B4:51:3C:91:63
    Fingerprint (SHA1):
        30:E1:8C:A1:92:85:20:88:0D:58:22:74:76:1E:2A:FB:CA:DD:86:DD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4615: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:44:8a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:55:00 2017
            Not After : Thu Aug 10 11:55:00 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:64:81:31:54:8b:dc:a9:10:5b:cd:63:9a:26:ba:bd:
                    55:1e:cf:a2:ce:66:ba:78:d2:25:31:fc:a4:2c:0c:ef:
                    c4:32:3e:1c:c0:12:de:d5:ed:92:ae:0c:15:85:4d:1f:
                    fa:a7:e7:fe:2f:df:fb:55:f5:a7:d8:25:bf:0e:ea:03:
                    49:32:a7:a2:37:f7:b1:52:39:1f:ef:5a:ca:86:7f:fe:
                    fe:1e:6e:24:99:fb:70:d7:33:c6:d2:7d:da:7d:dd:ca:
                    77:f0:91:5f:d7:09:78:24:26:f4:0a:10:f3:f9:7b:68:
                    37:d9:b6:40:f4:9c:d5:6c:44:8b:ba:80:4c:0a:c9:7b:
                    e1:c2:54:fa:89:f7:c4:ba:3f:6b:62:ee:bb:63:ee:c3:
                    e4:e9:5b:83:2a:de:c1:a5:52:7c:fc:4c:22:e3:09:37:
                    09:71:a8:e8:e9:a5:bd:85:ea:72:68:07:81:82:c0:2c:
                    1c:32:cd:85:56:27:8e:5f:af:59:ab:4d:03:ab:79:62:
                    68:44:8e:9b:40:d4:98:98:dc:de:0e:b1:ca:c4:1c:5f:
                    f3:a5:75:99:43:83:4e:e2:d9:4a:63:6f:a4:01:b4:d8:
                    dc:1c:89:13:f8:53:aa:53:fa:45:13:9e:21:75:a2:5f:
                    94:f8:24:b4:15:dd:0c:7a:1c:7e:52:8c:8a:4b:53:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:b9:cf:ed:75:d4:ac:7a:6f:ac:75:3b:f3:b0:e5:85:
        06:15:f1:83:e8:bb:0b:7a:e4:78:a2:31:dd:1c:9a:78:
        dd:fb:28:59:c6:f3:63:81:6a:90:ac:81:5c:aa:e2:22:
        db:a3:7d:6f:80:8e:9e:57:7b:30:9c:33:f3:fd:0c:66:
        50:e7:63:22:4f:22:28:c5:3f:59:af:70:21:47:d7:76:
        d3:2c:ad:95:0a:36:33:91:0a:6e:d7:2b:2f:bb:e2:32:
        c4:a1:90:7e:de:b2:17:f4:d7:f6:c2:fb:ad:6d:25:c1:
        71:38:09:d4:53:93:2e:6d:da:1c:ae:94:bf:fb:d1:90:
        f1:5e:ca:70:8f:31:c0:d9:0f:8c:0d:18:fa:6a:5a:9d:
        62:9f:bc:69:37:ac:9d:bb:dd:9c:e0:31:f3:2a:ca:43:
        3e:97:f9:5a:6a:8a:82:7a:fe:c2:56:e2:c2:5e:98:99:
        53:48:c5:a3:34:4e:ac:09:9b:5b:ac:d5:17:e1:21:e0:
        a5:46:8e:60:91:93:40:2f:b9:1b:5f:b3:61:bf:be:7c:
        a0:76:e7:f7:f4:3e:79:97:27:08:5e:15:bd:ce:e7:37:
        77:df:86:0b:65:49:40:62:f0:39:f1:1b:a2:4a:0f:3e:
        95:1d:81:e9:ac:e3:a5:55:69:de:09:9d:0d:45:06:2f
    Fingerprint (SHA-256):
        A6:7F:AA:A5:9B:41:67:4B:6C:76:68:20:A8:F5:C6:91:C1:DF:9C:E4:05:EE:11:DC:52:E3:CA:DC:58:83:3E:73
    Fingerprint (SHA1):
        7D:4A:F2:13:9A:6F:15:AA:BA:97:B8:38:F2:FD:E5:B7:5A:B5:EF:E0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4616: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:44:8b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:55:00 2017
            Not After : Thu Aug 10 11:55:00 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:10:b5:9c:84:ee:8a:dd:2f:60:59:57:23:ff:26:cb:
                    ed:c2:fb:c4:84:1f:a7:63:4d:d1:03:6b:29:8b:01:63:
                    9b:b1:06:d0:f7:a8:0a:cb:6d:84:a7:1f:7f:68:b3:14:
                    41:b0:ab:3d:ca:c6:dd:3d:a7:e6:f5:61:cc:b4:8e:69:
                    f9:03:6a:a8:20:f8:d1:e0:d9:9a:92:04:3a:9b:59:70:
                    ee:4f:8d:81:d0:3c:5c:48:e2:1a:28:a3:47:45:a5:61:
                    61:83:46:fc:4f:0c:6f:53:84:b8:10:29:72:54:32:18:
                    84:93:ab:6d:5b:88:69:28:a2:6b:64:9a:98:3a:0c:d9:
                    bd:b4:52:87:2f:66:4b:97:4f:03:ea:18:33:bc:ae:88:
                    bd:b2:09:93:a6:5f:3b:61:36:84:50:f9:bd:ca:8d:e0:
                    0b:32:6b:c4:60:78:02:27:47:ae:17:b8:c1:fd:17:1d:
                    47:87:d8:35:1c:bc:52:f8:e3:a0:c6:fe:1e:85:34:99:
                    ee:6f:66:64:ac:df:24:34:02:2e:d9:5f:cc:f6:8f:0f:
                    ff:97:00:6b:7a:1f:1f:7c:f1:7a:67:99:b5:4d:1d:36:
                    8f:46:26:9b:f1:d1:67:58:3d:18:8f:a6:41:91:03:22:
                    16:a4:ee:7a:b0:6e:41:32:cf:58:9a:b1:77:cf:e5:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:0f:50:eb:ae:15:08:de:41:66:ad:69:90:2b:bc:63:
        8a:b7:64:24:42:8c:02:4a:0e:e2:b7:b9:e8:5c:53:84:
        17:13:e0:f8:57:23:40:3c:7a:1d:e4:94:64:00:73:38:
        c3:96:5d:9d:cd:dd:75:65:2f:50:c3:7f:e6:26:7a:10:
        ae:98:25:41:b6:f4:1a:4e:7b:4a:ce:ee:16:fe:ae:7e:
        76:0c:2b:ad:e5:1c:47:44:3e:5f:9d:85:16:49:fe:9c:
        65:4e:ad:c1:0c:6f:4d:51:ad:a6:4f:fd:1d:9e:b5:53:
        df:2b:27:8b:19:6e:cd:f6:b6:11:c4:6f:b4:17:0f:cf:
        4a:55:eb:dd:42:f5:76:5f:c1:b0:02:11:2f:c8:75:2c:
        c0:d5:7d:c0:de:dc:ca:c7:42:e9:42:72:47:a4:ab:62:
        48:b6:19:41:fc:be:50:92:c4:69:14:d6:ba:21:04:6d:
        ff:98:54:68:31:16:a4:59:f7:c9:fd:11:d1:61:96:09:
        5f:72:2e:7a:df:f0:e4:e8:7f:ca:27:b0:b2:3f:68:11:
        ac:9a:3c:43:01:e4:d0:c5:64:28:f3:65:1a:04:c9:63:
        07:5b:3c:30:bf:e4:3a:78:59:c3:cb:61:e6:9b:f8:9b:
        be:6a:9f:b9:af:a0:a8:e8:3f:24:ba:f9:eb:3a:75:51
    Fingerprint (SHA-256):
        0A:5A:0E:A8:BD:EC:61:34:41:B6:64:4C:E9:D8:0F:A6:FF:81:AE:48:A7:2D:E6:DF:33:32:CB:A7:99:5C:93:4A
    Fingerprint (SHA1):
        1E:EC:C5:12:91:83:A8:D5:8D:95:9B:AC:83:BD:58:DE:ED:D4:54:79
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4617: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:44:8b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:55:01 2017
            Not After : Thu Aug 10 11:55:01 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:bc:15:a1:2a:7e:25:a0:88:9c:e9:68:21:0a:76:cc:
                    27:f9:3f:10:67:c1:b7:73:f7:71:86:77:fa:f9:b3:ef:
                    c4:e6:ef:ea:ec:4f:ea:a9:85:c1:b2:e4:94:b4:fd:65:
                    dc:ef:27:29:ec:d7:54:b0:3e:96:25:49:eb:52:41:47:
                    03:39:18:d3:cb:d6:b7:a7:28:ca:00:12:27:4e:96:0c:
                    09:b4:9f:99:f3:38:6f:71:9b:f9:2a:1c:01:55:6c:74:
                    9a:09:07:29:e6:23:12:f0:14:33:c7:df:1e:91:f4:a3:
                    92:ca:13:11:e3:1c:3e:07:ec:8e:86:8a:44:db:f6:c9:
                    b8:b5:aa:33:70:a6:a4:4d:e0:ac:d2:ea:4d:a9:d5:b5:
                    3f:a7:08:f2:07:2f:cd:8b:f7:26:16:ee:2a:5e:30:0a:
                    5b:06:72:fa:85:1b:2a:ac:c1:a7:aa:39:96:c0:56:59:
                    5f:c6:86:bd:9f:12:e8:44:d3:43:ae:72:19:30:82:e9:
                    3b:d4:b3:ce:8c:f6:07:f8:62:b2:c6:58:a4:75:a2:d9:
                    80:e8:fc:56:b6:5a:bc:f6:ca:73:ae:97:ce:ec:af:32:
                    19:65:f6:2e:6c:f3:46:77:a8:0e:e5:61:1f:d5:16:b3:
                    de:02:83:18:50:7a:83:ef:65:7c:19:73:52:0d:bd:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:2e:86:b3:c7:89:8b:a1:4e:7a:b1:6f:05:39:9c:43:
        4c:6f:08:a4:f2:8f:a5:b3:cf:a6:7a:92:8a:82:fb:c2:
        25:c8:32:22:5c:55:1e:5d:44:00:24:b0:1e:c1:d5:3d:
        ad:44:04:7e:f1:60:1c:76:6b:59:ec:03:49:a6:5f:71:
        81:e1:d8:0c:d9:7d:59:10:94:8a:be:a5:1a:12:dc:ea:
        d4:f7:39:2b:5e:22:ce:55:ba:b4:3a:f5:81:1d:71:5f:
        75:e5:74:cd:87:a0:a6:63:7a:f4:90:d6:92:bd:d4:b8:
        ab:fd:db:8b:aa:3a:e4:aa:c2:ec:44:c9:da:c5:04:8c:
        b9:48:a6:29:a2:c2:88:03:78:93:b0:17:83:74:9a:22:
        9f:6e:19:30:84:99:44:c6:8f:b0:bb:3f:64:52:43:ed:
        32:a7:38:2a:96:f3:cf:2f:5e:6d:0b:60:52:b4:be:11:
        70:aa:f0:2b:91:1c:b4:0f:e1:c5:56:0b:5b:82:ec:f9:
        ea:f4:65:29:f1:69:32:0c:9b:52:b1:a3:25:0f:c7:3d:
        5e:b3:3d:71:2b:17:dd:6d:e3:80:0b:91:e3:c8:bd:cb:
        90:65:7c:06:22:85:4b:d8:d2:4f:3c:23:6b:df:64:d8:
        62:d7:ee:ff:d4:99:2e:59:19:46:2c:bb:e3:92:35:47
    Fingerprint (SHA-256):
        DA:37:D4:8D:E5:94:AC:37:30:72:5E:78:C8:9F:C8:0E:CA:13:84:4A:CA:16:FC:A1:8C:16:2F:C3:48:67:7E:98
    Fingerprint (SHA1):
        4B:14:E5:A6:FB:B2:44:DC:F4:54:F9:0C:97:78:8B:2D:28:F1:05:33
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4618: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:44:8c
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:55:01 2017
            Not After : Thu Aug 10 11:55:01 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:8f:34:79:40:c4:d0:cd:64:42:6e:85:23:a2:98:5a:
                    b1:40:60:8b:92:7b:14:99:f7:e2:b7:f4:c7:1d:e4:ed:
                    6a:a0:59:cb:49:1c:b5:0d:d3:e5:8e:32:66:38:5f:ac:
                    a3:bd:41:d9:29:b1:b4:14:84:5a:bd:45:54:cf:79:8d:
                    35:7f:95:d4:98:fb:e8:fd:29:05:44:b0:37:7c:d4:b3:
                    26:cb:f4:e5:58:65:31:b2:26:f1:8c:9c:d9:97:9e:d3:
                    4b:b6:ae:b7:c7:4a:df:30:89:e0:ba:12:bf:75:b8:04:
                    ca:70:00:20:5e:84:5a:1e:9b:43:68:5e:c9:29:0e:04:
                    08:65:8d:ed:85:4b:61:79:e7:fd:73:38:ea:bc:c9:d8:
                    c4:0f:94:d7:1a:6c:c4:dc:7d:ca:c2:35:b5:ca:25:74:
                    08:dd:ac:70:69:a9:9a:99:5d:fc:47:d8:b5:98:af:54:
                    59:88:79:54:03:81:e0:c4:fa:36:93:e7:f6:bb:70:b7:
                    73:64:ae:c3:c4:a3:da:0f:21:62:be:0c:42:24:24:2a:
                    d1:e0:8f:11:54:76:6d:eb:c4:13:6b:b0:d9:ce:b3:66:
                    ad:33:1b:fb:90:08:5e:d6:7b:f7:22:73:a8:b8:29:76:
                    70:31:2f:93:70:af:b8:04:6a:f2:35:6a:d5:5a:1a:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0f:1f:5d:9c:f0:2e:3f:ad:39:10:79:8e:3d:df:17:eb:
        22:6a:99:f7:0b:6a:7a:c5:05:ad:47:1a:f1:90:12:8c:
        97:48:b6:50:7e:bc:30:14:20:78:75:08:f6:5c:69:13:
        1a:71:66:9e:85:36:09:21:d2:61:82:8b:e0:a7:53:45:
        37:85:ef:30:3d:72:0b:2f:cc:cf:68:6d:5a:23:ca:ee:
        9d:4b:84:39:96:96:ea:a4:0d:03:05:c5:cb:76:3f:cd:
        b7:6e:9d:64:c6:1d:a5:2d:0a:2e:4b:7e:9a:82:35:bc:
        3b:ab:eb:63:1d:80:8c:cf:d8:59:97:1f:8c:72:e7:bf:
        53:01:13:87:8b:33:33:12:c9:b7:ff:d5:87:0a:39:40:
        05:07:10:ea:fc:94:8c:07:32:97:be:df:cf:ba:a5:f8:
        dc:94:49:e3:a6:92:8c:c2:c6:25:ae:5e:84:08:10:34:
        17:00:bc:a8:bd:3a:6d:a7:7b:c2:60:e5:9f:b8:5c:c2:
        92:00:1f:4f:f5:77:82:96:7e:2e:b0:51:f8:2a:d6:b7:
        97:6f:7e:ef:95:4b:5a:e4:90:59:77:1d:63:f4:ef:52:
        f2:25:86:aa:f0:dd:fa:9d:83:66:50:ae:aa:a7:a2:68:
        27:9c:d0:ab:79:a6:cb:87:a7:a2:ab:e6:4f:e5:e9:68
    Fingerprint (SHA-256):
        BE:0D:0B:0E:0E:DE:0E:F1:C9:99:2A:A3:68:67:9C:6E:9C:2A:1A:DF:76:1F:6B:16:31:35:C4:00:83:BE:A3:50
    Fingerprint (SHA1):
        6E:D3:0D:22:05:A0:6C:C5:D6:38:C7:00:FE:AB:E1:FD:FA:B0:A2:D7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4619: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:44:8d
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:55:02 2017
            Not After : Thu Aug 10 11:55:02 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:a4:08:2d:67:61:a4:57:d1:c2:a8:62:09:93:89:4e:
                    7f:fc:37:81:f3:f1:93:75:e3:8e:81:47:5c:66:02:57:
                    9e:e4:20:27:a7:05:13:8e:d0:49:2f:de:8a:96:d4:2d:
                    9e:e7:de:03:62:f3:16:d8:98:4a:65:db:4b:16:09:8c:
                    85:2e:db:e5:b0:11:48:73:3b:97:17:63:9a:16:9a:26:
                    ba:5b:6f:92:3a:46:8b:a6:3b:74:03:94:20:c2:16:2e:
                    b4:11:69:e7:87:16:25:23:6d:80:ee:37:08:96:fd:16:
                    72:87:46:08:53:aa:ca:ca:ab:b2:21:17:71:4e:53:95:
                    ef:d2:f2:b3:58:98:e9:98:2b:90:28:78:f5:2d:6e:9f:
                    df:53:69:dc:82:c6:7f:45:e5:24:cb:b0:2f:c6:18:49:
                    44:d6:09:20:ee:c3:b1:3b:f8:f8:cf:9c:93:44:63:6c:
                    4c:82:61:30:d8:ab:0e:46:8e:c2:37:1d:f7:a2:33:71:
                    0e:20:ba:cf:01:86:35:ad:fe:09:58:ec:ec:aa:e1:a5:
                    dc:31:a0:e8:4d:47:88:ea:64:2a:01:86:1d:54:3e:49:
                    52:6b:d0:78:b0:dd:96:32:da:d3:a8:12:4a:65:46:01:
                    61:12:fe:a9:0e:52:de:f7:a8:0a:42:12:bb:ab:d3:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:0e:1e:d1:85:bb:07:4f:df:3b:05:b2:a4:87:2e:20:
        28:39:38:28:f8:2a:2a:e1:72:d2:bd:b2:69:0e:5d:2c:
        5b:14:52:a2:a0:e5:b9:e2:5d:4d:ca:3d:ba:ad:ad:73:
        b1:ef:45:02:60:61:45:54:35:db:d9:70:86:26:fd:b4:
        49:10:b9:48:d1:56:ba:a1:07:af:3a:f1:02:df:4e:09:
        74:07:d6:63:64:4e:17:7f:48:29:4a:b9:1f:de:73:0d:
        90:4d:02:d5:8a:e8:fa:1c:e3:5e:de:73:4a:fb:e3:2b:
        ed:12:57:1d:05:7d:6a:bd:8f:32:a4:13:1c:7f:85:fe:
        6b:97:ff:13:1c:d0:e3:13:67:20:42:2c:ac:6f:98:cc:
        88:c9:b6:4d:d1:2d:2e:5f:e0:3f:7b:c9:71:ae:8a:9a:
        c0:cf:02:a5:26:11:cd:c5:72:86:c9:34:b3:8d:67:b1:
        36:20:a0:85:45:74:46:f2:af:c5:99:f8:48:8e:e1:db:
        89:83:67:87:0d:71:3f:21:bc:a6:6d:77:33:71:8a:18:
        bd:b4:75:c6:d2:34:81:47:aa:89:ee:c4:00:29:a0:3a:
        d1:b8:f6:92:2b:6b:d6:f9:47:4b:15:2c:c2:86:aa:0b:
        19:9d:80:52:c8:84:a1:d0:b2:c0:34:e6:f2:7c:76:b1
    Fingerprint (SHA-256):
        5D:57:5F:6E:35:65:F1:04:E8:EA:14:3D:15:B4:FA:4C:C2:3E:56:22:B1:87:1E:A4:1F:43:52:7B:FF:D7:F6:BB
    Fingerprint (SHA1):
        33:CB:07:C4:91:4E:65:92:04:85:3C:C9:76:15:67:D7:3A:F5:E5:75
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4620: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:44:8e
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:55:02 2017
            Not After : Thu Aug 10 11:55:02 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:0f:ac:1d:17:95:12:c6:ab:8b:0d:bb:14:e2:cd:44:
                    59:aa:40:ae:52:de:05:89:1f:7b:46:be:46:89:1b:eb:
                    ce:d6:e4:a6:02:38:58:e0:a7:8b:12:6c:f2:94:ed:b0:
                    1b:b6:a8:74:70:bf:c2:bb:d4:31:25:92:49:6a:14:18:
                    14:7c:24:66:cc:04:b6:81:a0:71:ba:89:84:1b:52:5b:
                    d0:87:02:2d:e6:f3:0e:7c:82:43:f7:83:a8:f2:ea:db:
                    df:f1:ec:aa:2a:fc:c4:ea:84:de:45:9a:c0:32:59:a0:
                    28:79:1d:9e:a1:e0:f9:cd:3e:2c:bd:03:c9:0c:4b:33:
                    7b:ee:ab:a7:fd:0e:21:c6:6f:e4:ab:05:3d:a0:70:03:
                    c8:46:21:3a:f9:7a:01:50:a3:58:52:de:06:f8:be:5b:
                    1d:05:9e:c9:04:80:3d:e2:1e:3a:b4:c8:a8:90:c5:b7:
                    7f:c7:26:d1:51:19:d9:66:56:89:9a:14:e2:7d:76:a4:
                    6d:46:de:0b:76:ac:fb:e0:ed:26:40:f5:8a:8a:76:3d:
                    b5:96:05:7e:4a:97:70:4d:07:2f:27:f2:63:2c:d6:2d:
                    28:a0:8c:c3:a0:1c:ad:3d:76:ce:ec:23:01:b8:37:66:
                    a5:2d:ce:86:60:4b:53:a5:68:af:32:ce:76:31:11:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:e3:ca:fd:02:f1:98:ff:a6:2e:9b:e7:f0:9a:29:df:
        79:c2:0c:8e:1c:56:f6:b9:6e:f9:b2:8f:a3:0e:b3:1e:
        3d:4d:b5:26:aa:ba:16:e0:26:96:ff:1f:6e:af:5e:0b:
        77:50:83:44:f5:52:1b:c5:fc:68:0c:4f:c6:b6:da:fe:
        b9:f0:d4:dd:7d:91:c2:14:76:a7:85:fd:16:27:25:39:
        83:b1:3c:9b:3a:ef:dc:bf:bd:00:73:ec:07:db:4e:6f:
        03:cd:f4:99:73:05:e4:3d:86:ae:f3:43:67:7b:02:c2:
        2a:0d:4f:27:c4:22:72:9f:83:32:6c:d6:76:17:56:47:
        5d:12:e4:79:86:92:53:b4:80:ea:77:c4:f8:e0:03:d4:
        42:9c:8d:6b:cf:53:39:2d:d7:28:6e:7c:69:15:bf:da:
        b1:ed:c8:98:78:bc:60:a1:2f:52:59:ec:5b:0e:f1:7a:
        8f:e0:9a:85:a5:6c:71:0a:bc:cd:29:70:8a:77:a3:30:
        09:8d:36:d6:02:c5:7d:78:1d:c7:c5:10:ca:41:b9:6e:
        11:2f:07:5f:85:d5:48:62:ed:d0:d3:79:76:31:97:85:
        c3:fa:c2:a1:d6:6f:ac:c5:1b:e5:2a:6f:de:0f:f5:de:
        d9:37:f2:6f:12:6a:54:50:db:30:12:ad:11:60:55:14
    Fingerprint (SHA-256):
        55:76:9A:3B:32:09:9A:E4:46:93:4C:99:3E:71:DE:26:70:47:75:A8:14:87:34:A6:57:8C:CB:2D:A4:2D:AE:EA
    Fingerprint (SHA1):
        4B:D7:3D:56:EE:52:EA:E2:24:15:A3:76:D2:3D:09:EA:B3:02:E5:D2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4621: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:44:8e
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:55:02 2017
            Not After : Thu Aug 10 11:55:02 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:ae:d7:a7:d0:00:65:bd:59:99:88:3a:a6:5c:90:f2:
                    38:17:9a:17:c6:1c:1a:ef:6c:69:4a:5b:17:b5:40:14:
                    d2:e1:2c:69:b1:dc:3c:2b:3f:62:72:8b:5a:f9:7a:d2:
                    cd:72:53:00:70:b4:03:86:93:d7:f4:da:3f:a1:38:49:
                    a0:91:23:94:e2:86:c5:1c:8d:1a:dc:4f:75:2b:65:13:
                    21:3c:4d:b0:52:9d:26:cc:d0:b2:55:74:de:8a:97:f4:
                    ba:9d:5e:cb:9d:85:2f:ac:c2:be:82:48:2e:07:bc:61:
                    0a:c2:5e:ec:65:fe:98:78:e8:fa:4f:db:d8:76:c7:b6:
                    1f:db:99:54:f0:9b:70:28:cd:8e:11:da:82:9c:bf:db:
                    23:17:a1:58:bd:28:c4:3b:3c:3c:3b:72:85:c0:96:3e:
                    38:17:81:af:55:f1:a9:a7:f6:2f:74:ed:22:76:4a:00:
                    f4:fc:c4:ba:b0:4c:5a:09:14:21:4d:24:72:06:7d:6c:
                    29:cf:1f:a9:f6:3b:f2:de:70:ca:37:f1:41:02:14:31:
                    81:9e:36:b0:78:da:23:08:ab:80:37:b9:c7:12:3c:4a:
                    a7:c4:f2:76:71:50:49:2e:00:30:6d:5d:8f:10:44:f7:
                    5d:37:ad:45:bb:0b:13:00:b2:07:d1:75:6f:70:b6:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:74:27:71:82:53:d9:b9:a1:f2:cf:59:f9:23:d6:fe:
        58:c4:04:52:95:ca:21:1d:81:91:33:51:91:40:3e:00:
        d3:99:a1:4f:1f:b3:1e:6f:d8:7e:4e:fb:6e:b4:ca:f7:
        ba:35:ab:67:4a:40:54:08:fb:67:47:ea:b3:78:4c:cd:
        7c:2d:2e:79:66:ab:27:8f:13:62:26:63:12:be:3b:67:
        1f:7f:44:93:68:78:75:ef:92:b4:3a:eb:e7:bb:86:e8:
        4e:c5:48:77:7c:f0:11:48:22:71:42:3a:da:44:26:f7:
        0b:0d:87:7b:93:e9:61:d7:cb:ae:ca:cd:14:3e:6d:1f:
        a8:dc:e6:16:86:37:93:d4:c4:33:3b:f1:f3:a8:8d:09:
        ff:dd:d2:f0:9a:67:c3:84:3a:87:bb:cb:85:36:6f:9c:
        e8:d5:a0:01:e6:6d:98:27:c0:96:3a:13:7b:68:40:49:
        b6:34:da:1a:3e:08:b8:29:ad:ca:b2:fd:4f:5e:46:d7:
        62:0f:82:27:28:1f:92:ae:58:64:8e:8e:dc:89:36:d2:
        ff:7b:f9:b8:70:d0:30:c0:c2:a8:ae:06:71:0e:23:3f:
        fa:a7:f2:18:97:8e:3c:67:7d:c2:2a:ba:59:6c:0b:33:
        9e:bd:9b:9d:f5:7f:44:11:fb:06:fc:18:f2:b0:4a:1c
    Fingerprint (SHA-256):
        D3:91:E0:8F:21:BA:BD:07:65:34:9F:09:2B:A7:9D:DB:EE:1C:E5:7B:81:39:14:AE:60:2A:75:CF:AD:87:97:C1
    Fingerprint (SHA1):
        13:41:84:E3:FF:A4:DC:B5:CE:B4:87:C3:60:36:51:24:C8:DE:9C:EA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4622: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:44:8f
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:55:03 2017
            Not After : Thu Aug 10 11:55:03 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:f8:6b:e0:9b:ec:12:ac:1c:6e:54:98:0e:3c:33:f1:
                    33:51:a8:9e:d0:6e:86:cc:7d:5b:eb:55:db:7b:78:04:
                    cc:56:e1:0e:5c:65:41:64:ec:53:c4:1c:88:e4:8c:08:
                    3a:dd:c6:d7:e7:81:97:37:db:43:27:ff:ed:b6:06:0f:
                    f9:0d:e8:18:68:77:86:e7:43:24:b7:e6:e5:21:3d:e4:
                    ae:3c:2a:45:da:0c:33:65:d5:be:cb:08:1d:bd:ed:7b:
                    c3:76:22:b9:07:26:11:af:b2:63:dc:bf:70:7b:5b:c2:
                    d3:e3:fd:1c:a3:d7:2f:be:4b:dc:0b:c6:87:5d:9c:26:
                    12:a0:27:5d:7d:40:f3:32:db:dc:fb:06:e6:ca:aa:5f:
                    de:af:04:0a:c9:7d:ee:7f:94:c9:c3:f1:b4:5c:96:0c:
                    31:75:46:9d:3f:43:f1:42:30:92:6e:29:eb:3a:41:79:
                    cf:52:31:6a:dc:0a:cb:9d:c9:8e:fb:9a:99:cb:57:2b:
                    4a:cd:31:7a:65:88:8d:52:15:3f:7b:5f:db:e8:ef:48:
                    76:09:09:a1:3f:a8:73:52:28:c9:8a:f1:b7:22:41:f9:
                    76:7b:89:85:6a:e2:b9:98:46:5c:ea:0a:83:f5:3b:ca:
                    42:52:a5:7b:3e:51:31:b5:6b:08:11:56:50:27:26:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:9e:37:60:fd:0a:4c:df:1e:3c:75:a4:0a:b8:99:67:
        94:b5:66:f0:17:c0:a9:f3:10:b9:94:2a:6e:78:41:f0:
        1a:db:48:f9:fc:d4:70:e7:d7:c4:f1:87:4b:4c:8c:e1:
        f8:93:a4:b4:4d:97:d0:6c:87:5d:d4:7d:77:44:14:1d:
        65:6a:89:81:d9:9a:26:9b:7d:91:3e:e1:50:65:14:f0:
        b6:45:67:ad:10:a8:9f:25:97:8c:cd:15:29:b5:8a:60:
        cc:02:e1:2e:a6:18:1b:ec:6b:b2:3a:64:b2:4e:b0:fc:
        cd:ec:43:c2:ca:ca:1f:bd:22:1c:56:5d:94:12:17:7a:
        51:9f:b3:cf:9e:ac:db:b9:bb:a4:23:47:b2:c2:5e:ff:
        1f:ef:86:80:41:87:82:14:17:8d:9b:d0:46:06:4c:97:
        14:4e:f8:95:74:c6:c0:db:52:88:3c:fe:ca:fc:f6:d8:
        fd:6e:4f:1c:19:a3:8d:74:f2:10:98:eb:6b:c8:9b:33:
        4c:ed:96:a5:de:56:2d:8a:02:d2:b9:b6:2f:63:ca:0a:
        21:52:35:71:80:c2:16:bb:e5:12:fd:55:93:31:ba:79:
        a9:5f:84:30:ed:fc:26:bf:b0:f7:53:f2:81:9e:cf:80:
        bb:3b:02:d5:87:2a:ff:34:34:b1:36:73:1f:2a:e5:f1
    Fingerprint (SHA-256):
        A1:6C:02:7B:A3:36:D7:4D:21:45:A9:40:8E:B5:8B:53:91:A8:CA:96:63:36:6C:BC:68:34:21:62:77:4F:F3:11
    Fingerprint (SHA1):
        BD:46:C9:67:0C:4F:FE:EA:BE:36:A5:5A:81:DB:E7:82:A5:00:10:95
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4623: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #4624: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #4625: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #4626: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:44:91
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed May 10 11:55:04 2017
            Not After : Thu Aug 10 11:55:04 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:68:f5:eb:f7:e8:35:4f:48:ba:83:1d:a4:52:b0:ad:
                    dd:d4:79:3b:cf:5d:ce:66:00:51:df:8a:70:27:cd:47:
                    ce:a1:53:cf:35:b4:1a:2a:81:2b:c7:3e:21:3a:c6:43:
                    1e:ed:eb:08:05:93:44:f9:40:dc:06:fe:6d:76:ea:7e:
                    80:8a:69:c4:7e:c7:0f:f0:af:af:42:2e:34:1c:a7:a8:
                    56:3c:7e:53:a1:86:76:c4:51:cf:71:0b:bb:07:c4:93:
                    21:eb:f8:00:72:eb:f9:2d:2b:9b:9f:90:c9:1c:09:0c:
                    06:a0:4b:a2:7d:15:a8:ed:ac:90:1f:f4:83:a8:96:65:
                    c6:c5:4c:c3:43:5d:fd:c4:45:d0:50:ed:98:33:94:2c:
                    e7:7b:4a:58:77:e1:ac:50:93:87:a4:0f:98:89:69:ef:
                    a6:eb:18:a4:fe:06:36:69:62:21:d9:f7:bf:07:1c:e3:
                    66:04:ce:7f:fd:03:c2:08:ea:2e:28:7a:43:2f:34:68:
                    92:b0:e1:ba:47:bf:29:39:77:04:67:d8:69:82:4e:15:
                    21:46:a7:5a:a8:bd:7e:3d:ff:eb:a8:a5:1f:af:cf:9e:
                    1a:c6:5c:c0:a5:5b:79:a7:43:51:9c:34:79:f8:bb:f5:
                    e8:8f:f9:4d:d4:83:c4:12:55:2c:31:0f:91:7d:df:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        29:cf:79:cc:14:f7:c3:af:3e:cc:76:ca:c6:4d:4d:63:
        4b:17:58:2c:c1:f4:c4:0a:56:7a:44:16:5a:ec:83:dd:
        91:26:98:8d:9c:fe:aa:5b:c9:c7:ec:ce:d0:1d:af:b3:
        f7:de:8a:35:85:67:de:0a:c0:44:c8:ed:35:ae:3f:80:
        ac:76:d1:39:5d:3d:0a:14:5f:cb:fa:41:30:f2:b0:7b:
        28:4b:9b:88:b8:08:47:15:b0:56:7e:a2:68:a2:77:31:
        3d:e0:95:58:89:17:ce:51:7e:75:22:e4:10:33:32:a2:
        ff:12:f6:fa:69:c2:eb:49:44:bc:90:50:ae:6b:a0:60:
        87:28:e6:49:6c:76:c8:2e:1d:b3:b9:00:c0:cc:b1:08:
        a3:50:1e:c3:43:53:1b:35:16:3d:5d:5c:4a:95:1f:7b:
        a3:0b:f1:8e:36:d5:43:47:e3:4d:50:49:9b:18:b6:31:
        40:5e:0c:48:c5:b5:7f:9f:4a:71:24:32:5e:eb:f5:82:
        02:f2:e0:80:3f:b7:9f:47:ce:fa:cc:d7:90:31:16:60:
        13:2d:b5:9f:0d:0b:22:81:81:ae:d6:d0:bc:6f:7d:b8:
        9a:27:87:4f:ec:57:a1:5b:ce:1f:0b:af:0e:13:c8:bc:
        c2:97:55:0d:6a:1f:cb:4f:31:d6:a8:c3:44:d7:83:8c
    Fingerprint (SHA-256):
        1F:1C:76:B2:F4:0E:A7:3C:43:66:AC:BE:6F:99:4C:41:9E:DC:9D:56:9C:42:78:16:65:2B:58:DE:45:A7:32:B6
    Fingerprint (SHA1):
        41:0B:94:4E:28:08:F4:10:E2:3B:E8:70:A7:CC:FA:0B:28:D7:33:2D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4627: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
cert.sh: #4628: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #4629: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #4630: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4631: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4632: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4633: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #4634: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:44:93
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed May 10 11:55:05 2017
            Not After : Thu Aug 10 11:55:05 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:6d:9f:f3:7d:73:c8:6c:79:32:61:53:b9:a5:52:e7:
                    a9:d0:c7:39:27:d2:8a:76:cb:1e:64:85:65:7b:08:1e:
                    69:06:48:37:37:a5:05:8c:bc:b2:90:12:d9:53:63:60:
                    b8:e9:8b:a6:e9:ee:36:0b:99:05:91:40:74:c2:fb:85:
                    07:27:cf:47:a8:25:75:9b:88:fe:2b:01:a5:cb:f3:94:
                    33:82:a4:cf:64:1f:cd:8b:8c:f9:88:27:8d:a6:b5:e5:
                    b4:03:3e:79:5c:cd:14:fd:dd:1e:f3:20:a1:2a:4b:b7:
                    70:d1:33:9e:35:9d:c2:22:f4:80:0e:65:2e:7b:3f:00:
                    06:c9:9a:bb:da:2e:5b:28:b3:88:d9:e2:dc:88:b3:e6:
                    06:b5:32:9c:7d:ec:97:46:b2:d1:71:ce:7e:b3:87:ff:
                    92:a2:4d:fc:92:c8:11:6f:d9:84:98:38:46:b1:8b:8b:
                    13:47:5a:7c:01:b5:9f:36:68:61:6c:da:0c:2c:de:0b:
                    48:bc:5e:ed:09:26:d2:5e:a8:79:aa:8c:8f:aa:6b:51:
                    4e:09:4a:da:57:59:d4:0c:5d:ce:ae:6e:6e:4a:73:5c:
                    0a:57:23:ad:39:75:ae:94:89:14:82:ea:fe:b0:c6:83:
                    d7:a1:cb:df:bc:f9:ee:96:98:d5:51:52:7d:67:c4:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a7:8e:59:e6:6d:8d:f1:bb:d8:25:9b:da:92:80:6e:31:
        e6:3e:10:0c:2b:95:4f:34:9e:7f:34:fb:67:e8:99:6d:
        7b:69:dd:82:2f:69:a6:f1:71:07:0d:2c:78:ac:4a:3e:
        36:92:5c:3d:60:24:78:0d:a6:c1:4f:21:1c:76:c1:35:
        73:ab:05:2b:94:e4:a9:ff:34:dc:a6:20:92:b2:a6:e2:
        a5:46:9f:21:28:d8:8b:19:20:28:6d:04:04:36:22:3e:
        97:b6:a3:35:dc:bf:98:f5:fa:59:b0:d8:ca:d1:92:87:
        5f:b8:57:90:c1:eb:61:24:fc:fd:9d:3f:e7:20:09:97:
        47:5d:e6:e3:be:4a:6a:b9:37:9e:e0:e1:1d:95:61:a9:
        51:27:c0:01:ca:4e:ab:29:7f:82:24:74:2f:a9:7e:3e:
        7a:50:c9:8b:51:b6:cc:29:a7:38:f1:18:b8:7d:22:2c:
        1a:95:30:34:04:4b:43:e5:e6:39:1d:53:de:55:8e:cb:
        81:c3:5d:7d:d2:15:e2:e5:eb:d3:c7:33:64:f1:04:ea:
        32:ab:90:e2:1c:58:08:ea:46:7b:d4:d9:1c:ae:16:e3:
        d0:39:fc:2a:6a:70:95:39:54:ad:fe:e4:3d:17:44:7f:
        0b:d4:33:f3:d3:6c:a4:98:0a:e1:9c:56:68:d6:96:61
    Fingerprint (SHA-256):
        71:83:14:F6:E6:6C:6D:B3:91:24:4C:D4:F2:3E:E7:C8:10:79:6D:6E:8C:D9:5D:C7:03:1C:F2:50:ED:6D:ED:37
    Fingerprint (SHA1):
        CC:84:BB:19:EF:D2:59:BC:03:D5:67:86:D6:5A:42:A0:44:B8:3B:C6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4635: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #4636: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #4637: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw
cert.sh: #4638: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4639: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4640: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass -o root.cert
cert.sh: #4641: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #4642: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4643: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #4644: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #4645: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4646: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA.ca.cert
cert.sh: #4647: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4648: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #4649: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4650: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #4651: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4652: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4653: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #4654: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4655: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4656: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #4657: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4658: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4659: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #4660: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4661: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4662: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #4663: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4664: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #4665: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #4666: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #4667: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #4668: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4669: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #4670: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4671: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4672: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4673: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4674: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4675: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4676: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4677: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4678: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4679: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4680: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4681: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4682: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4683: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #4684: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4685: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #4686: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4687: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4688: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #4689: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4690: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4691: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #4692: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4693: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4694: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #4695: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4696: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4697: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #4698: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4699: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4700: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #4701: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4702: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4703: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #4704: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4705: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4706: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #4707: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4708: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4709: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #4710: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4711: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4712: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #4713: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4714: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4715: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #4716: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4717: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4718: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #4719: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4720: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4721: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #4722: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4723: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4724: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #4725: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4726: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4727: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #4728: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4729: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4730: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #4731: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4732: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4733: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #4734: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4735: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4736: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #4737: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4738: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4739: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #4740: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4741: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4742: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #4743: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4744: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4745: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #4746: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4747: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4748: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #4749: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4750: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4751: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #4752: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4753: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4754: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #4755: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4756: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4757: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #4758: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4759: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4760: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #4761: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4762: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4763: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #4764: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4765: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4766: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #4767: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4768: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4769: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #4770: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4771: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4772: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #4773: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4774: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4775: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #4776: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4777: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4778: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #4779: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4780: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4781: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #4782: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4783: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4784: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #4785: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4786: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4787: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #4788: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4789: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4790: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #4791: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4792: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4793: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #4794: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4795: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4796: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #4797: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4798: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4799: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #4800: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4801: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4802: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #4803: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4804: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4805: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #4806: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4807: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4808: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #4809: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4810: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4811: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #4812: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4813: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4814: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #4815: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4816: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4817: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #4818: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4819: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4820: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #4821: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4822: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4823: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #4824: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4825: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4826: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #4827: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4828: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4829: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #4830: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4831: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4832: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #4833: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4834: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4835: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #4836: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4837: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4838: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #4839: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4840: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4841: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #4842: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4843: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4844: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #4845: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4846: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4847: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #4848: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4849: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4850: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #4851: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4852: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4853: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #4854: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4855: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4856: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #4857: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4858: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4859: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #4860: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4861: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4862: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #4863: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4864: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4865: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #4866: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4867: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4868: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #4869: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4870: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4871: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #4872: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4873: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4874: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #4875: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4876: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4877: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #4878: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4879: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #4880: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #4881: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #4882: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #4883: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #4884: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #4885: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #4886: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #4887: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #4888: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #4889: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #4890: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #4891: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #4892: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #4893: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #4894: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #4895: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #4896: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Wed May 10 11:55:26 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Wed May 10 11:55:26 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4897: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                95:c2:ad:11:88:00:ae:3b:c7:7c:f8:8c:a9:82:8e:01
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4898: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4899: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4900: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4901: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                af:3e:87:10:8a:63:38:1b:23:a2:8b:bd:54:9a:f0:2a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 11:54:49 2017
            Not After : Tue May 10 11:54:49 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:9d:dd:c9:83:e2:0d:2c:03:67:6d:65:96:d4:c9:
                    14:88:65:31:7c:3d:28:db:ad:4f:05:5c:23:d2:19:94:
                    ea:f6:5d:53:59:da:de:bd:9c:be:6f:0c:56:91:b7:a4:
                    f9:5f:b9:e5:4d:5d:4f:65:a9:d2:28:84:d3:21:bb:d8:
                    52:d5:69:00:23:dc:22:48:5c:0c:9d:61:de:6b:08:2d:
                    2d:ed:c6:19:8a:08:c6:ef:8d:4c:9d:23:49:5f:ca:14:
                    5c:87:23:8d:59:41:3d:77:97:4f:d9:22:19:44:70:7b:
                    fd:de:91:85:c7:e7:3c:b5:03:be:7f:29:60:43:30:60:
                    fb:8d:33:5f:92
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:41:02:07:ae:78:f7:09:ca:e8:38:3b:e1:
        bf:88:44:51:5e:4e:82:f5:8f:d6:26:ab:dc:3f:1a:9e:
        bd:10:d2:63:14:a3:1f:82:b7:c4:3d:42:a2:49:13:2d:
        ef:7e:08:6b:e5:42:b5:92:7e:ee:66:a5:d9:cb:3d:d3:
        66:28:e8:22:16:24:02:42:01:08:0d:05:29:b4:be:3f:
        f4:0b:d6:ad:05:ce:fd:60:b0:83:07:fe:a1:f1:1a:4e:
        e6:18:d8:71:f3:db:d5:8a:7b:e4:13:2c:c7:c9:ec:b0:
        81:21:0d:ac:fe:bf:31:98:c0:73:89:ef:48:fd:6d:c0:
        a9:17:6d:e4:26:ce:c5:94:ae:5d
    Fingerprint (SHA-256):
        33:B9:30:F8:6B:9C:A1:26:B1:76:58:06:EA:EA:60:4E:FA:DC:48:64:BB:9C:A9:0E:8F:9E:56:11:11:E1:BC:EF
    Fingerprint (SHA1):
        1B:D2:DD:31:D0:BB:36:5F:63:03:23:0E:E0:A4:51:23:C6:17:FF:F5
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 11:54:55 2017
            Not After : Tue May 10 11:54:55 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:4c:d4:1b:0f:b9:7f:b3:60:e6:02:a0:a8:6d:b1:68:
                    3e:ac:d8:84:df:0c:f8:8a:55:d7:ae:a2:9a:b2:58:bd:
                    24:6b:97:3e:ab:7f:44:6b:96:7a:a4:40:c2:5b:ec:9c:
                    ea:60:c7:db:6b:68:6b:8e:11:83:c1:38:57:e2:dd:df:
                    2c:7c:a5:00:aa:ac:22:93:28:a0:e5:da:04:9c:6f:46:
                    38:32:39:33:98:1b:31:eb:8d:24:35:72:d5:c9:c5:7e:
                    97
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:86:02:41:55:44:88:9c:32:88:c2:3c:07:90:a2:
        b2:0b:0d:ea:32:22:64:28:1f:3f:1e:33:53:fe:3a:36:
        e0:3e:03:45:19:45:0b:07:d6:ba:4e:7e:c7:b7:ea:06:
        bf:98:33:67:f0:ab:52:01:4a:82:99:2a:d2:01:c7:bf:
        af:53:6f:16:2e:cd:02:41:55:1e:84:80:4e:36:a1:c8:
        88:29:d9:e5:bb:ce:42:7a:33:37:61:74:cc:21:d8:26:
        52:ae:1e:88:42:c3:55:ec:c5:04:b6:cd:05:69:b3:34:
        ed:88:e0:27:68:41:39:5d:81:ee:fa:7b:06:58:b2:d2:
        68:bd:42:1b:d0:fa:de:2b:d2
    Fingerprint (SHA-256):
        0A:E1:DD:0E:9E:AE:96:B7:56:52:7B:BE:33:4B:75:9B:38:32:9F:15:5C:01:F2:97:D2:AD:0A:E3:42:3E:C2:A5
    Fingerprint (SHA1):
        BC:24:57:40:64:73:FD:A8:A7:88:6E:E9:A5:1C:BF:77:D3:90:2C:B4
    Friendly Name: Alice-ec
tools.sh: #4902: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4903: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                7a:4e:81:c8:41:35:45:c0:6c:a6:c6:a9:2c:b0:43:6d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4904: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4905: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4906: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                7e:61:f8:b3:6e:fd:d3:6c:69:37:d3:99:d5:10:4f:47
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4907: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4908: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4909: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                47:74:0e:ee:40:05:e6:41:3b:3f:a6:82:56:e5:f6:96
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4910: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4911: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4912: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                3e:67:4a:53:95:63:04:64:43:25:31:83:82:1a:86:f6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4913: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4914: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4915: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                0e:15:f5:34:43:65:6f:fa:38:e6:5b:91:f8:90:bc:7e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4916: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4917: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4918: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                c5:bd:4e:b0:01:82:be:86:e8:83:f1:14:4f:d9:f7:94
            Iteration Count: 2000 (0x7d0)
tools.sh: #4919: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4920: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4921: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                06:45:ce:f5:67:21:2d:90:b2:75:dd:58:92:7b:78:f5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4922: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4923: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4924: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                df:f3:59:cf:15:df:a0:a0:b9:f7:fd:f1:03:b9:f3:b1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4925: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4926: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4927: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7b:b5:35:0f:a0:5c:2b:c3:30:56:ae:bd:8e:a2:93:d1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4928: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4929: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4930: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                68:85:4e:74:e8:e5:f7:1a:dd:23:5b:22:f6:45:e1:de
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4931: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4932: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4933: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d9:c8:eb:09:cd:33:b3:5a:61:f4:7a:be:46:ac:60:1c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4934: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4935: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4936: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2b:c4:c5:5a:67:fd:83:96:d4:8c:d2:50:27:15:3c:28
            Iteration Count: 2000 (0x7d0)
tools.sh: #4937: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4938: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4939: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        54:5a:2f:cb:b7:64:c5:f1:a1:4c:7e:9d:0e:fd:87:b3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:7b:74:ac:82:f1:50:0c:49:b2:cf:5c:d6:f8:b3:
                    79:d5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4940: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4941: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4942: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3e:d6:75:3a:10:32:b2:1b:04:42:ec:68:1c:58:4f:18
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:63:8d:bc:1a:e5:82:c8:c6:71:f8:ce:0d:81:ce:
                    cb:87
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4943: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4944: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4945: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        81:b4:dc:27:56:1e:ab:2b:22:e9:b1:12:e4:54:5c:32
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:27:93:e8:61:7a:af:97:74:c5:7a:8b:1f:1d:bd:
                    d5:1d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4946: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4947: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4948: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5a:5b:18:28:60:7a:fc:c3:21:45:1a:05:22:b6:cb:ae
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:f8:23:22:62:c2:9c:c6:11:fa:8c:d3:5a:7b:21:
                    79:cb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4949: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4950: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4951: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ab:1a:7f:71:60:89:34:84:23:4d:df:91:3a:e8:fc:00
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:22:a2:bd:b4:98:06:00:a7:c8:53:c6:44:0d:b8:
                    95:e0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4952: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4953: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4954: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a7:6f:fa:18:c0:4d:16:f2:5b:43:25:05:8c:e9:a5:bf
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:d6:4c:84:6d:fb:2b:f5:d5:fb:e2:04:3b:de:86:
                    6f:c0
tools.sh: #4955: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4956: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4957: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        84:47:b0:a0:a6:02:79:64:41:bc:62:1e:c6:1e:46:e8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:6c:91:0b:00:ba:66:a3:15:32:b8:07:fd:6d:58:
                    c1:fb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4958: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4959: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4960: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c6:6e:2f:23:1a:35:2e:0f:e4:7e:0e:29:94:4e:cb:28
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:88:f3:f1:a3:9e:fa:27:84:2e:87:c0:d7:af:9e:
                    90:a6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4961: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4962: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4963: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6c:6f:13:ef:9c:b6:24:7d:1f:6c:e6:da:ff:9c:73:4c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:14:c9:be:35:fb:0c:3c:81:53:04:c3:45:4c:de:
                    ae:68
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4964: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4965: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4966: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        03:db:37:e4:83:5e:30:99:b5:61:1f:f4:59:23:b2:bf
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:ed:e6:1e:1e:b3:1f:6a:f8:4c:a8:0a:bd:e5:88:
                    d2:f7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4967: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4968: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4969: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        70:9d:0b:e7:3e:d1:f6:85:87:86:10:8a:65:9a:fe:ac
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:f3:c4:34:10:0a:e0:d6:cb:07:c2:d6:31:52:01:
                    12:d0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4970: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4971: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4972: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        eb:8b:84:c5:66:d2:eb:a8:42:48:63:92:d3:85:1f:7e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:b0:5d:de:ee:ed:38:b1:a6:37:6f:9a:65:83:ca:
                    31:77
tools.sh: #4973: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4974: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4975: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        40:f7:0f:23:79:f4:2a:cc:57:04:ca:6b:88:bf:8a:c5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:2a:58:6a:cd:3e:3f:bb:10:94:ba:28:1e:54:46:
                    f3:7a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4976: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4977: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4978: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d8:b2:c4:1c:d6:88:74:b5:bb:79:0a:40:ca:f5:f3:75
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:db:77:b2:6c:30:e2:a2:00:92:a9:2b:24:44:cc:
                    0c:1f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4979: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4980: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4981: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        23:57:9a:9a:02:76:f9:92:27:e0:91:3b:5f:72:19:cb
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:e0:f1:d5:1e:0e:45:95:8d:77:c4:18:9b:bb:3d:
                    c2:a0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4982: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4983: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4984: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        29:40:69:ce:04:e9:1d:a6:90:e1:b1:48:44:66:92:f6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:ab:41:58:fd:65:cb:40:be:56:4f:d9:5f:cc:ef:
                    ad:26
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4985: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4986: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4987: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e7:8e:da:5b:b1:9f:44:2d:37:91:8b:d0:d4:3a:9d:b6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:45:f4:1b:7c:87:55:a2:04:7b:2e:c1:26:a4:ab:
                    13:04
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4988: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4989: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4990: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1d:78:90:0c:01:6a:e8:a8:ea:fc:64:fd:cd:14:d7:68
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:fa:6b:c1:2b:74:79:63:17:ed:1e:d2:58:be:45:
                    05:46
tools.sh: #4991: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4992: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4993: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9e:4f:ad:84:1e:3d:44:c9:13:06:d4:c8:2c:2c:7d:1a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:7c:bd:fd:d5:e8:f7:af:87:d1:91:dd:d9:2b:93:
                    a5:50
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4994: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4995: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4996: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        60:f1:4c:d0:b9:a8:c0:11:d7:cc:53:d3:24:f3:19:aa
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:00:43:af:50:ef:82:ae:e1:c1:7f:f3:4a:77:a6:
                    04:6f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #4997: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4998: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4999: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        57:9d:9d:f9:4e:16:a6:af:26:90:30:5e:7b:a4:0d:e5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:9f:6b:54:97:ab:c4:5e:a2:96:75:5d:a6:5b:78:
                    f0:f0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5000: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5001: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5002: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        92:89:82:0c:8a:9a:dd:71:f2:79:23:40:f9:1c:c8:c6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:29:e6:50:75:51:db:3c:cf:72:fa:fc:c2:2e:4c:
                    13:87
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5003: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5004: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5005: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        79:bb:d0:ea:7b:4b:24:51:1f:a7:8f:80:0b:68:75:3e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:c5:58:6e:e9:91:c6:68:2b:6d:06:1b:80:c7:f3:
                    e6:de
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5006: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5007: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5008: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        40:04:d0:b2:7b:cc:54:17:51:ac:51:1c:16:31:25:b9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:c8:6e:04:d0:c1:65:89:7d:84:53:5d:e3:07:94:
                    c6:14
tools.sh: #5009: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5010: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5011: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        24:fd:6e:7a:f4:a0:f8:7b:8e:10:85:23:3e:4c:3a:e1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:03:f9:16:cf:3c:96:83:2a:8f:9d:91:77:ed:27:
                    ee:ba
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5012: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5013: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5014: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        44:1d:bc:eb:91:77:ef:fa:2c:9c:56:06:cc:a7:eb:d5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:26:a6:9c:d1:d0:f7:81:b6:7c:75:6e:c4:ec:87:
                    1a:09
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5015: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5016: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5017: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3f:2e:14:af:aa:d6:db:5a:a6:dc:f7:35:da:49:11:f7
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:84:71:f0:36:b6:a4:41:d7:df:f1:c5:1e:81:08:
                    00:3c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5018: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5019: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5020: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        33:09:9c:44:4b:6a:d8:f8:24:32:c5:42:6c:bd:b7:fe
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:02:ec:0b:77:83:9a:ab:64:ca:99:1b:d7:19:70:
                    44:5d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5021: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5022: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5023: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        03:ee:a3:e5:19:0f:1a:32:02:c8:6c:7a:2c:a9:ed:58
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:43:42:aa:b6:a3:0a:d7:39:47:2c:64:65:7b:67:
                    1b:fa
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5024: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5025: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5026: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        77:20:d1:7f:10:6e:77:7a:8f:53:19:5c:63:44:84:12
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:85:ad:50:20:a7:26:29:9a:fd:ba:95:de:33:a8:
                    0d:4c
tools.sh: #5027: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5028: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5029: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f0:f3:84:65:61:f1:36:30:63:b6:9e:31:b8:cd:1d:95
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:1c:db:b9:1d:58:c3:b7:21:5e:52:6f:09:c3:ab:
                    77:b4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5030: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5031: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5032: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        30:43:0d:5e:76:d6:da:2d:de:5c:94:07:da:3c:e1:d7
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:91:2e:93:17:26:ea:26:0a:77:bf:3f:8f:5b:de:
                    ca:18
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5033: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5034: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5035: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ee:6f:b0:27:b9:bc:29:20:6c:fd:c6:a5:3b:1b:77:40
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:67:9c:4b:2d:8e:8e:d4:d7:e8:2a:91:70:4e:02:
                    63:7f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5036: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5037: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5038: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ec:a1:0a:72:c7:9d:a5:6a:f0:15:26:0b:22:cb:44:72
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:c3:38:0f:18:3c:aa:76:c8:3d:93:68:56:f6:d8:
                    ad:e3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5039: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5040: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5041: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f8:cd:4b:ed:c8:7d:19:08:8a:7b:22:08:80:e6:76:d5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:43:1b:0a:fc:0d:fd:70:37:35:cd:ec:59:a9:8a:
                    80:c1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5042: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5043: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5044: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a7:c6:4a:a3:87:f9:47:5c:9e:8c:4d:61:18:e0:ec:65
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:19:b8:ad:90:4c:9d:5f:af:39:85:22:9c:83:60:
                    96:c1
tools.sh: #5045: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5046: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5047: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                b6:fb:96:e4:8e:48:3b:8d:2a:79:07:87:10:e8:a1:39
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5048: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5049: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5050: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                9b:0c:03:f2:3d:94:98:bd:03:da:ee:f7:a8:0f:64:59
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5051: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5052: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5053: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                41:23:03:82:d5:83:34:3e:9c:c3:1d:92:ab:9d:b9:43
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5054: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5055: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5056: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                66:c1:a0:d2:e6:31:d0:f9:6c:7e:3a:fb:9c:05:3a:12
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5057: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5058: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5059: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                6c:d9:fd:e8:ee:ca:f0:bf:d4:bb:9c:bc:6c:fd:c8:f6
            Iteration Count: 2000 (0x7d0)
tools.sh: #5060: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5061: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5062: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                88:c2:10:3b:0d:97:42:20:8f:cb:31:e7:13:ee:69:04
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5063: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5064: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5065: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                7c:2f:5f:4e:e8:76:62:08:80:fc:4e:4a:d3:c8:71:9f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5066: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5067: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5068: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                eb:ee:0e:f6:82:fe:c0:08:3a:51:bd:4e:af:8c:8d:93
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5069: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5070: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5071: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                dd:c8:9f:56:c6:a4:f3:b7:a2:ba:a8:b4:56:a6:04:72
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5072: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5073: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5074: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                3f:6d:e7:25:d7:07:de:f0:da:4d:80:37:3a:05:38:7f
            Iteration Count: 2000 (0x7d0)
tools.sh: #5075: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5076: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5077: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                ee:74:04:b0:c0:2d:3e:b9:b8:7a:e9:e6:31:75:7c:c6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5078: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5079: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5080: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                78:bb:fc:53:88:70:5e:4f:af:30:72:f5:f4:b7:65:bb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5081: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5082: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5083: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                b1:d9:40:f3:2e:d8:bf:16:6c:ea:30:c9:64:41:fa:e9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5084: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5085: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5086: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                c4:c9:ba:d0:4b:6e:a5:2f:23:e1:13:09:04:39:fb:6c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5087: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5088: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5089: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                fe:77:ee:9e:82:87:b8:ff:a0:c2:8b:40:0b:52:cc:cc
            Iteration Count: 2000 (0x7d0)
tools.sh: #5090: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5091: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5092: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f0:d2:45:70:c3:6f:5a:69:77:34:4c:90:fb:43:b2:d8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5093: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5094: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5095: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7e:8d:c6:57:cd:23:c8:a3:4d:24:29:95:c9:25:0b:ca
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5096: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5097: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5098: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6c:df:04:0f:7c:0d:62:fd:19:d2:5f:42:ca:cc:48:51
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5099: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5100: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5101: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e2:e6:e5:59:99:5b:45:7e:12:ba:93:33:09:4e:45:90
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5102: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5103: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5104: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2d:ee:ab:35:1d:6b:da:7a:b4:fc:3a:40:57:f1:f1:2b
            Iteration Count: 2000 (0x7d0)
tools.sh: #5105: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5106: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5107: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c7:74:0f:2a:20:de:0c:8e:ce:fb:75:51:e4:6e:aa:9d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5108: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5109: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5110: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                69:45:e3:d0:75:93:35:6b:7d:b2:ae:63:71:fc:d4:2d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5111: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5112: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5113: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                39:c4:72:3b:92:be:77:68:59:85:a8:88:3a:39:9a:8d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5114: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5115: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5116: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ba:d9:02:34:f5:90:7a:e7:20:1c:a1:eb:9c:e2:c9:92
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5117: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5118: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5119: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1d:61:ec:d4:9f:8d:6d:cb:b7:cb:00:1a:e5:fe:44:36
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5120: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5121: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5122: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a1:30:40:fe:81:61:cc:77:4b:eb:f6:37:3c:de:dc:07
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5123: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5124: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5125: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                47:3c:73:32:0d:20:92:04:44:3a:d3:ef:35:db:4a:16
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5126: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5127: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5128: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e2:f8:01:f8:a8:25:a4:b6:c1:52:1a:21:cb:87:15:29
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5129: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5130: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5131: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f2:c1:ce:86:12:d8:98:8a:bd:59:19:9f:ac:9d:fd:88
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5132: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5133: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5134: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8d:33:51:1c:90:10:ff:5b:23:93:b4:32:4b:86:16:72
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:47 2017
            Not After : Tue May 10 11:54:47 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b8:83:fe:e6:15:03:84:46:4c:b2:c9:e0:83:d7:da:
                    0b:7e:78:49:db:38:b4:5c:ff:9c:cf:e3:44:f2:24:f1:
                    d8:1d:ed:71:6f:61:59:4a:c0:4a:9b:3c:cc:23:4e:bb:
                    08:7f:c6:6d:d8:62:24:95:7a:f8:35:40:8e:d3:c5:63:
                    de:db:e5:1a:f0:30:ea:9c:b9:72:69:31:d3:0c:d9:14:
                    91:82:a4:54:56:16:ad:12:30:ad:28:63:2b:5a:a3:68:
                    ad:02:67:5a:d2:15:b9:b7:93:6a:f0:c3:09:55:91:ae:
                    84:c5:fb:0f:f6:24:01:68:75:3d:66:6f:e8:bd:dc:32:
                    b7:dd:f1:39:16:91:e9:bf:69:cb:86:0d:d1:07:9a:ef:
                    04:a5:e1:14:a7:54:bc:d2:d8:6f:92:8a:78:af:e4:9b:
                    f9:52:70:00:72:28:c7:0b:e6:9c:71:4a:ce:eb:ac:1e:
                    13:ee:c4:26:e8:e9:ae:ae:39:83:1a:32:32:f2:6c:ad:
                    e6:80:5b:56:93:47:4f:13:12:03:6f:12:0e:5f:ae:90:
                    cb:b5:f5:cf:f4:4f:dc:45:10:ef:b5:80:31:38:60:9f:
                    4d:94:a1:05:e9:7f:c3:3b:58:2c:6b:35:30:bb:d0:21:
                    9c:2e:5d:32:42:d5:41:f9:7a:39:fc:f8:f9:e4:cc:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:36:26:52:54:90:2a:2d:96:d9:03:23:c0:58:b3:0d:
        3a:25:d3:ca:82:5b:35:d6:fa:54:19:29:31:a8:6d:10:
        45:46:1c:56:9e:61:02:21:c3:87:cf:17:e4:a8:ac:7d:
        74:ff:1f:13:72:7d:5d:e5:26:d8:ca:61:48:d7:24:dc:
        51:32:c1:73:94:00:74:58:60:9c:9f:02:43:9a:6e:bf:
        2b:99:6c:d5:d4:8a:b2:9f:a8:2a:c1:49:66:60:12:be:
        78:11:09:dd:8b:de:1b:dd:08:18:1b:d3:41:38:ef:05:
        f3:90:2d:ee:2d:d0:c2:de:37:fe:8c:58:7b:9f:7a:ab:
        72:86:f5:db:8d:1c:41:d9:5a:14:99:77:56:07:72:3f:
        5d:66:89:23:fe:fc:00:98:83:84:79:5b:1f:1b:db:76:
        9b:75:bd:40:0a:e2:c8:d9:5d:8a:71:4d:11:1d:24:98:
        8b:07:18:97:8a:09:b9:8d:cf:4f:60:cf:f4:c6:fb:c1:
        88:da:cb:53:05:e6:b1:39:a9:6e:cc:77:53:c8:4b:78:
        7c:65:5d:16:36:12:4d:a5:11:7e:dc:e2:f1:81:93:61:
        2f:8b:2d:d7:40:ea:e5:27:b2:d3:83:cc:92:0c:fb:be:
        c3:49:94:5f:1e:c0:20:c8:c1:8e:97:8d:94:2a:b1:70
    Fingerprint (SHA-256):
        5E:60:FA:AC:BA:96:E5:8C:C4:D1:39:7C:AA:E9:2D:61:46:CC:22:C9:C8:2E:3F:A2:B0:20:C0:55:58:ED:B5:17
    Fingerprint (SHA1):
        53:FD:FF:D4:48:D5:EF:40:A3:36:F6:EF:B1:38:37:D8:98:57:A7:C3
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:54:54 2017
            Not After : Tue May 10 11:54:54 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:c6:d1:c3:55:13:52:05:70:53:1d:c3:01:7e:ce:ae:
                    c9:78:ea:51:16:d1:74:02:b1:98:68:3a:0f:b9:7f:8b:
                    b1:e9:30:98:cf:ab:0a:05:3d:9a:a2:78:06:69:2e:22:
                    38:13:52:9e:05:3b:48:c0:ba:8e:d1:b3:2f:bc:39:e2:
                    b3:4b:6c:ae:41:4c:bb:b4:92:97:66:e6:ff:3f:7a:4a:
                    a7:68:78:c6:eb:06:b3:07:c2:81:58:b4:d1:8e:5d:dc:
                    e9:85:18:ee:1a:95:5a:97:fe:ce:9f:9e:01:f1:c5:9f:
                    57:04:79:76:9c:a1:eb:f4:34:6f:5d:e9:16:5a:94:3f:
                    73:64:d8:92:1e:9d:54:c4:5c:9b:c1:e0:35:de:43:96:
                    b5:c7:58:8a:e3:5f:bf:e0:db:fd:19:f0:76:53:d2:45:
                    bb:6f:6b:4d:cf:7e:e4:36:66:ca:a0:12:63:08:b3:79:
                    e3:f4:b0:ec:8e:2f:04:7d:c8:54:62:45:41:fb:7c:68:
                    4b:3e:e4:aa:1b:0e:4e:d4:13:0e:0f:59:43:fb:17:fe:
                    29:dc:91:c7:8f:08:20:27:31:c4:ae:52:13:91:91:01:
                    b7:30:a5:f0:90:e3:01:c2:92:b3:98:f8:99:ec:e3:d5:
                    6a:67:00:9c:bf:7d:15:0a:4e:78:1c:c9:a4:73:f7:fb
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:37:08:56:ca:43:0e:95:7f:7b:c9:fb:bc:18:ce:a0:
        cc:c4:f9:77:1e:86:8d:66:8f:94:f0:ff:e3:6f:f5:4c:
        4c:87:97:9f:44:c0:81:72:46:5c:db:ee:d1:46:dd:0e:
        ad:bc:ff:93:e6:29:24:99:91:25:fc:40:69:ea:7a:73:
        22:70:2d:aa:87:5c:b9:51:53:e9:c7:ea:89:b5:90:00:
        85:ac:0f:50:b4:89:b4:b2:3a:a4:81:14:bd:27:ed:dd:
        14:fd:70:21:06:5f:ba:6c:2d:11:22:09:aa:b6:a7:81:
        35:53:f2:f0:95:6e:35:db:66:b3:66:23:73:19:f0:1a:
        32:6c:aa:2a:1f:5b:18:fd:4f:36:c7:92:50:a4:63:8f:
        af:5c:fc:fc:7f:29:64:d5:5d:44:a3:93:fa:8c:88:83:
        a1:b2:26:d9:2c:c1:cb:bd:29:d9:8d:a5:64:26:96:38:
        c4:7b:6d:d1:99:e5:55:df:88:0f:fb:6b:bb:79:a6:94:
        d7:ee:8a:ec:74:e7:1c:97:61:9f:ac:9d:b0:88:c9:63:
        de:1b:03:80:cc:73:b8:e1:6f:b8:e3:17:34:89:5f:2c:
        bb:ba:bc:8d:e5:14:f3:53:ce:e7:60:12:bc:10:15:be:
        5e:44:54:53:d5:f7:0d:33:fb:91:e8:2d:28:30:a7:cd
    Fingerprint (SHA-256):
        BB:10:F5:30:67:22:A4:67:E0:9C:5F:DA:36:D9:51:48:AC:A2:6A:A6:CC:AA:EA:AD:77:4A:A3:88:0F:13:6F:53
    Fingerprint (SHA1):
        CA:63:A3:85:36:6E:22:AB:6B:14:3A:09:2F:CF:EB:57:5A:50:7A:25
    Friendly Name: Alice
tools.sh: #5135: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5136: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #5137: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5138: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #5139: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 37%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #5140: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #5141: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #5142: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
--> sign.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 37%)
tree "../tools/html" signed successfully
tools.sh: #5143: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #5144: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #5145: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Wed May 10 11:55:32 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Wed May 10 11:55:32 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #5146: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5147: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      359918f5fb4d0db85ea576daae66010992b85074   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #5148: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #5149: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #5150: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #5151: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #5152: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5153: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #5154: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5155: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #5156: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5157: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5158: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      359918f5fb4d0db85ea576daae66010992b85074   FIPS_PUB_140_Test_Certificate
fips.sh: #5159: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #5160: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5161: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5162: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5163: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      359918f5fb4d0db85ea576daae66010992b85074   FIPS_PUB_140_Test_Certificate
fips.sh: #5164: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #5165: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #5166: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
Changing byte 0x000633b0 (406448): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle dbtest -r -d ../fips
fips.sh: #5167: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Wed May 10 11:55:42 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Wed May 10 11:55:42 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9195 >/dev/null 2>/dev/null
selfserv_9323 with PID 9195 found at Wed May 10 11:55:42 UTC 2017
selfserv_9323 with PID 9195 started at Wed May 10 11:55:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5168: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9195 at Wed May 10 11:55:42 UTC 2017
kill -USR1 9195
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9195 killed at Wed May 10 11:55:42 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9251 >/dev/null 2>/dev/null
selfserv_9323 with PID 9251 found at Wed May 10 11:55:42 UTC 2017
selfserv_9323 with PID 9251 started at Wed May 10 11:55:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5169: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9251 at Wed May 10 11:55:43 UTC 2017
kill -USR1 9251
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9251 killed at Wed May 10 11:55:43 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9307 >/dev/null 2>/dev/null
selfserv_9323 with PID 9307 found at Wed May 10 11:55:43 UTC 2017
selfserv_9323 with PID 9307 started at Wed May 10 11:55:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5170: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9307 at Wed May 10 11:55:43 UTC 2017
kill -USR1 9307
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9307 killed at Wed May 10 11:55:43 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9375 >/dev/null 2>/dev/null
selfserv_9323 with PID 9375 found at Wed May 10 11:55:43 UTC 2017
selfserv_9323 with PID 9375 started at Wed May 10 11:55:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5171: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9375 at Wed May 10 11:55:43 UTC 2017
kill -USR1 9375
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9375 killed at Wed May 10 11:55:43 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9431 >/dev/null 2>/dev/null
selfserv_9323 with PID 9431 found at Wed May 10 11:55:43 UTC 2017
selfserv_9323 with PID 9431 started at Wed May 10 11:55:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5172: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9431 at Wed May 10 11:55:43 UTC 2017
kill -USR1 9431
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9431 killed at Wed May 10 11:55:43 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9487 >/dev/null 2>/dev/null
selfserv_9323 with PID 9487 found at Wed May 10 11:55:43 UTC 2017
selfserv_9323 with PID 9487 started at Wed May 10 11:55:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5173: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9487 at Wed May 10 11:55:43 UTC 2017
kill -USR1 9487
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9487 killed at Wed May 10 11:55:43 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9555 >/dev/null 2>/dev/null
selfserv_9323 with PID 9555 found at Wed May 10 11:55:43 UTC 2017
selfserv_9323 with PID 9555 started at Wed May 10 11:55:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5174: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 9555 at Wed May 10 11:55:43 UTC 2017
kill -USR1 9555
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9555 killed at Wed May 10 11:55:43 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9611 >/dev/null 2>/dev/null
selfserv_9323 with PID 9611 found at Wed May 10 11:55:43 UTC 2017
selfserv_9323 with PID 9611 started at Wed May 10 11:55:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5175: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 9611 at Wed May 10 11:55:44 UTC 2017
kill -USR1 9611
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9611 killed at Wed May 10 11:55:44 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9667 >/dev/null 2>/dev/null
selfserv_9323 with PID 9667 found at Wed May 10 11:55:44 UTC 2017
selfserv_9323 with PID 9667 started at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5176: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 9667 at Wed May 10 11:55:44 UTC 2017
kill -USR1 9667
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9667 killed at Wed May 10 11:55:44 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9735 >/dev/null 2>/dev/null
selfserv_9323 with PID 9735 found at Wed May 10 11:55:44 UTC 2017
selfserv_9323 with PID 9735 started at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5177: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 9735 at Wed May 10 11:55:44 UTC 2017
kill -USR1 9735
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9735 killed at Wed May 10 11:55:44 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9791 >/dev/null 2>/dev/null
selfserv_9323 with PID 9791 found at Wed May 10 11:55:44 UTC 2017
selfserv_9323 with PID 9791 started at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5178: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 9791 at Wed May 10 11:55:44 UTC 2017
kill -USR1 9791
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9791 killed at Wed May 10 11:55:44 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9848 >/dev/null 2>/dev/null
selfserv_9323 with PID 9848 found at Wed May 10 11:55:44 UTC 2017
selfserv_9323 with PID 9848 started at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5179: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 9848 at Wed May 10 11:55:44 UTC 2017
kill -USR1 9848
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9848 killed at Wed May 10 11:55:44 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9916 >/dev/null 2>/dev/null
selfserv_9323 with PID 9916 found at Wed May 10 11:55:44 UTC 2017
selfserv_9323 with PID 9916 started at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5180: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 9916 at Wed May 10 11:55:44 UTC 2017
kill -USR1 9916
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9916 killed at Wed May 10 11:55:44 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9972 >/dev/null 2>/dev/null
selfserv_9323 with PID 9972 found at Wed May 10 11:55:44 UTC 2017
selfserv_9323 with PID 9972 started at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5181: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 9972 at Wed May 10 11:55:44 UTC 2017
kill -USR1 9972
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9972 killed at Wed May 10 11:55:44 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10028 >/dev/null 2>/dev/null
selfserv_9323 with PID 10028 found at Wed May 10 11:55:45 UTC 2017
selfserv_9323 with PID 10028 started at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5182: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 10028 at Wed May 10 11:55:45 UTC 2017
kill -USR1 10028
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10028 killed at Wed May 10 11:55:45 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10096 >/dev/null 2>/dev/null
selfserv_9323 with PID 10096 found at Wed May 10 11:55:45 UTC 2017
selfserv_9323 with PID 10096 started at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5183: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 10096 at Wed May 10 11:55:45 UTC 2017
kill -USR1 10096
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10096 killed at Wed May 10 11:55:45 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10152 >/dev/null 2>/dev/null
selfserv_9323 with PID 10152 found at Wed May 10 11:55:45 UTC 2017
selfserv_9323 with PID 10152 started at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5184: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 10152 at Wed May 10 11:55:45 UTC 2017
kill -USR1 10152
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10152 killed at Wed May 10 11:55:45 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10208 >/dev/null 2>/dev/null
selfserv_9323 with PID 10208 found at Wed May 10 11:55:45 UTC 2017
selfserv_9323 with PID 10208 started at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5185: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 10208 at Wed May 10 11:55:45 UTC 2017
kill -USR1 10208
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10208 killed at Wed May 10 11:55:45 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10276 >/dev/null 2>/dev/null
selfserv_9323 with PID 10276 found at Wed May 10 11:55:45 UTC 2017
selfserv_9323 with PID 10276 started at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5186: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 10276 at Wed May 10 11:55:45 UTC 2017
kill -USR1 10276
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10276 killed at Wed May 10 11:55:45 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10332 >/dev/null 2>/dev/null
selfserv_9323 with PID 10332 found at Wed May 10 11:55:45 UTC 2017
selfserv_9323 with PID 10332 started at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5187: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 10332 at Wed May 10 11:55:45 UTC 2017
kill -USR1 10332
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10332 killed at Wed May 10 11:55:45 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10388 >/dev/null 2>/dev/null
selfserv_9323 with PID 10388 found at Wed May 10 11:55:45 UTC 2017
selfserv_9323 with PID 10388 started at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5188: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 10388 at Wed May 10 11:55:46 UTC 2017
kill -USR1 10388
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10388 killed at Wed May 10 11:55:46 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10456 >/dev/null 2>/dev/null
selfserv_9323 with PID 10456 found at Wed May 10 11:55:46 UTC 2017
selfserv_9323 with PID 10456 started at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5189: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 10456 at Wed May 10 11:55:46 UTC 2017
kill -USR1 10456
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10456 killed at Wed May 10 11:55:46 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10512 >/dev/null 2>/dev/null
selfserv_9323 with PID 10512 found at Wed May 10 11:55:46 UTC 2017
selfserv_9323 with PID 10512 started at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5190: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 10512 at Wed May 10 11:55:46 UTC 2017
kill -USR1 10512
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10512 killed at Wed May 10 11:55:46 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10568 >/dev/null 2>/dev/null
selfserv_9323 with PID 10568 found at Wed May 10 11:55:46 UTC 2017
selfserv_9323 with PID 10568 started at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5191: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 10568 at Wed May 10 11:55:46 UTC 2017
kill -USR1 10568
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10568 killed at Wed May 10 11:55:46 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10636 >/dev/null 2>/dev/null
selfserv_9323 with PID 10636 found at Wed May 10 11:55:46 UTC 2017
selfserv_9323 with PID 10636 started at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5192: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 10636 at Wed May 10 11:55:46 UTC 2017
kill -USR1 10636
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10636 killed at Wed May 10 11:55:46 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10692 >/dev/null 2>/dev/null
selfserv_9323 with PID 10692 found at Wed May 10 11:55:46 UTC 2017
selfserv_9323 with PID 10692 started at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5193: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 10692 at Wed May 10 11:55:46 UTC 2017
kill -USR1 10692
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10692 killed at Wed May 10 11:55:46 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10748 >/dev/null 2>/dev/null
selfserv_9323 with PID 10748 found at Wed May 10 11:55:46 UTC 2017
selfserv_9323 with PID 10748 started at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5194: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 10748 at Wed May 10 11:55:46 UTC 2017
kill -USR1 10748
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10748 killed at Wed May 10 11:55:46 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10816 >/dev/null 2>/dev/null
selfserv_9323 with PID 10816 found at Wed May 10 11:55:46 UTC 2017
selfserv_9323 with PID 10816 started at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5195: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 10816 at Wed May 10 11:55:47 UTC 2017
kill -USR1 10816
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10816 killed at Wed May 10 11:55:47 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10872 >/dev/null 2>/dev/null
selfserv_9323 with PID 10872 found at Wed May 10 11:55:47 UTC 2017
selfserv_9323 with PID 10872 started at Wed May 10 11:55:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5196: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 10872 at Wed May 10 11:55:47 UTC 2017
kill -USR1 10872
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10872 killed at Wed May 10 11:55:47 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10928 >/dev/null 2>/dev/null
selfserv_9323 with PID 10928 found at Wed May 10 11:55:47 UTC 2017
selfserv_9323 with PID 10928 started at Wed May 10 11:55:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5197: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 10928 at Wed May 10 11:55:47 UTC 2017
kill -USR1 10928
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10928 killed at Wed May 10 11:55:47 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10996 >/dev/null 2>/dev/null
selfserv_9323 with PID 10996 found at Wed May 10 11:55:47 UTC 2017
selfserv_9323 with PID 10996 started at Wed May 10 11:55:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5198: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 10996 at Wed May 10 11:55:47 UTC 2017
kill -USR1 10996
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10996 killed at Wed May 10 11:55:47 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11052 >/dev/null 2>/dev/null
selfserv_9323 with PID 11052 found at Wed May 10 11:55:47 UTC 2017
selfserv_9323 with PID 11052 started at Wed May 10 11:55:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5199: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 11052 at Wed May 10 11:55:47 UTC 2017
kill -USR1 11052
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11052 killed at Wed May 10 11:55:47 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11108 >/dev/null 2>/dev/null
selfserv_9323 with PID 11108 found at Wed May 10 11:55:47 UTC 2017
selfserv_9323 with PID 11108 started at Wed May 10 11:55:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5200: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 11108 at Wed May 10 11:55:47 UTC 2017
kill -USR1 11108
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11108 killed at Wed May 10 11:55:47 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11176 >/dev/null 2>/dev/null
selfserv_9323 with PID 11176 found at Wed May 10 11:55:47 UTC 2017
selfserv_9323 with PID 11176 started at Wed May 10 11:55:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5201: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 11176 at Wed May 10 11:55:47 UTC 2017
kill -USR1 11176
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11176 killed at Wed May 10 11:55:47 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11232 >/dev/null 2>/dev/null
selfserv_9323 with PID 11232 found at Wed May 10 11:55:47 UTC 2017
selfserv_9323 with PID 11232 started at Wed May 10 11:55:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5202: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11232 at Wed May 10 11:55:48 UTC 2017
kill -USR1 11232
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11232 killed at Wed May 10 11:55:48 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11288 >/dev/null 2>/dev/null
selfserv_9323 with PID 11288 found at Wed May 10 11:55:48 UTC 2017
selfserv_9323 with PID 11288 started at Wed May 10 11:55:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5203: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 11288 at Wed May 10 11:55:48 UTC 2017
kill -USR1 11288
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11288 killed at Wed May 10 11:55:48 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11356 >/dev/null 2>/dev/null
selfserv_9323 with PID 11356 found at Wed May 10 11:55:48 UTC 2017
selfserv_9323 with PID 11356 started at Wed May 10 11:55:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5204: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11356 at Wed May 10 11:55:48 UTC 2017
kill -USR1 11356
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11356 killed at Wed May 10 11:55:48 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11412 >/dev/null 2>/dev/null
selfserv_9323 with PID 11412 found at Wed May 10 11:55:48 UTC 2017
selfserv_9323 with PID 11412 started at Wed May 10 11:55:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5205: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11412 at Wed May 10 11:55:48 UTC 2017
kill -USR1 11412
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11412 killed at Wed May 10 11:55:48 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11468 >/dev/null 2>/dev/null
selfserv_9323 with PID 11468 found at Wed May 10 11:55:48 UTC 2017
selfserv_9323 with PID 11468 started at Wed May 10 11:55:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5206: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11468 at Wed May 10 11:55:48 UTC 2017
kill -USR1 11468
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11468 killed at Wed May 10 11:55:48 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11536 >/dev/null 2>/dev/null
selfserv_9323 with PID 11536 found at Wed May 10 11:55:48 UTC 2017
selfserv_9323 with PID 11536 started at Wed May 10 11:55:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5207: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11536 at Wed May 10 11:55:49 UTC 2017
kill -USR1 11536
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11536 killed at Wed May 10 11:55:49 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11592 >/dev/null 2>/dev/null
selfserv_9323 with PID 11592 found at Wed May 10 11:55:49 UTC 2017
selfserv_9323 with PID 11592 started at Wed May 10 11:55:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5208: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11592 at Wed May 10 11:55:49 UTC 2017
kill -USR1 11592
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11592 killed at Wed May 10 11:55:49 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11648 >/dev/null 2>/dev/null
selfserv_9323 with PID 11648 found at Wed May 10 11:55:49 UTC 2017
selfserv_9323 with PID 11648 started at Wed May 10 11:55:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5209: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11648 at Wed May 10 11:55:49 UTC 2017
kill -USR1 11648
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11648 killed at Wed May 10 11:55:49 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11716 >/dev/null 2>/dev/null
selfserv_9323 with PID 11716 found at Wed May 10 11:55:49 UTC 2017
selfserv_9323 with PID 11716 started at Wed May 10 11:55:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5210: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 11716 at Wed May 10 11:55:49 UTC 2017
kill -USR1 11716
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11716 killed at Wed May 10 11:55:49 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11772 >/dev/null 2>/dev/null
selfserv_9323 with PID 11772 found at Wed May 10 11:55:49 UTC 2017
selfserv_9323 with PID 11772 started at Wed May 10 11:55:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5211: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 11772 at Wed May 10 11:55:49 UTC 2017
kill -USR1 11772
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11772 killed at Wed May 10 11:55:49 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11828 >/dev/null 2>/dev/null
selfserv_9323 with PID 11828 found at Wed May 10 11:55:49 UTC 2017
selfserv_9323 with PID 11828 started at Wed May 10 11:55:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5212: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 11828 at Wed May 10 11:55:49 UTC 2017
kill -USR1 11828
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11828 killed at Wed May 10 11:55:49 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11896 >/dev/null 2>/dev/null
selfserv_9323 with PID 11896 found at Wed May 10 11:55:49 UTC 2017
selfserv_9323 with PID 11896 started at Wed May 10 11:55:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5213: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 11896 at Wed May 10 11:55:50 UTC 2017
kill -USR1 11896
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11896 killed at Wed May 10 11:55:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:50 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11952 >/dev/null 2>/dev/null
selfserv_9323 with PID 11952 found at Wed May 10 11:55:50 UTC 2017
selfserv_9323 with PID 11952 started at Wed May 10 11:55:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5214: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 11952 at Wed May 10 11:55:50 UTC 2017
kill -USR1 11952
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11952 killed at Wed May 10 11:55:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:50 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12008 >/dev/null 2>/dev/null
selfserv_9323 with PID 12008 found at Wed May 10 11:55:50 UTC 2017
selfserv_9323 with PID 12008 started at Wed May 10 11:55:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5215: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 12008 at Wed May 10 11:55:50 UTC 2017
kill -USR1 12008
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12008 killed at Wed May 10 11:55:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:50 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12076 >/dev/null 2>/dev/null
selfserv_9323 with PID 12076 found at Wed May 10 11:55:50 UTC 2017
selfserv_9323 with PID 12076 started at Wed May 10 11:55:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5216: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 12076 at Wed May 10 11:55:50 UTC 2017
kill -USR1 12076
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12076 killed at Wed May 10 11:55:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:50 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12132 >/dev/null 2>/dev/null
selfserv_9323 with PID 12132 found at Wed May 10 11:55:50 UTC 2017
selfserv_9323 with PID 12132 started at Wed May 10 11:55:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5217: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 12132 at Wed May 10 11:55:50 UTC 2017
kill -USR1 12132
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12132 killed at Wed May 10 11:55:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:50 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12188 >/dev/null 2>/dev/null
selfserv_9323 with PID 12188 found at Wed May 10 11:55:50 UTC 2017
selfserv_9323 with PID 12188 started at Wed May 10 11:55:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5218: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 12188 at Wed May 10 11:55:51 UTC 2017
kill -USR1 12188
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12188 killed at Wed May 10 11:55:51 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:51 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12256 >/dev/null 2>/dev/null
selfserv_9323 with PID 12256 found at Wed May 10 11:55:51 UTC 2017
selfserv_9323 with PID 12256 started at Wed May 10 11:55:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5219: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 12256 at Wed May 10 11:55:51 UTC 2017
kill -USR1 12256
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12256 killed at Wed May 10 11:55:51 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:51 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12313 >/dev/null 2>/dev/null
selfserv_9323 with PID 12313 found at Wed May 10 11:55:51 UTC 2017
selfserv_9323 with PID 12313 started at Wed May 10 11:55:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5220: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 12313 at Wed May 10 11:55:51 UTC 2017
kill -USR1 12313
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12313 killed at Wed May 10 11:55:51 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:51 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12369 >/dev/null 2>/dev/null
selfserv_9323 with PID 12369 found at Wed May 10 11:55:51 UTC 2017
selfserv_9323 with PID 12369 started at Wed May 10 11:55:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5221: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 12369 at Wed May 10 11:55:51 UTC 2017
kill -USR1 12369
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12369 killed at Wed May 10 11:55:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:51 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12437 >/dev/null 2>/dev/null
selfserv_9323 with PID 12437 found at Wed May 10 11:55:51 UTC 2017
selfserv_9323 with PID 12437 started at Wed May 10 11:55:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5222: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 12437 at Wed May 10 11:55:51 UTC 2017
kill -USR1 12437
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12437 killed at Wed May 10 11:55:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:51 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12493 >/dev/null 2>/dev/null
selfserv_9323 with PID 12493 found at Wed May 10 11:55:51 UTC 2017
selfserv_9323 with PID 12493 started at Wed May 10 11:55:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5223: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 12493 at Wed May 10 11:55:52 UTC 2017
kill -USR1 12493
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12493 killed at Wed May 10 11:55:52 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:52 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12549 >/dev/null 2>/dev/null
selfserv_9323 with PID 12549 found at Wed May 10 11:55:52 UTC 2017
selfserv_9323 with PID 12549 started at Wed May 10 11:55:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5224: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 12549 at Wed May 10 11:55:52 UTC 2017
kill -USR1 12549
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12549 killed at Wed May 10 11:55:52 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:52 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12618 >/dev/null 2>/dev/null
selfserv_9323 with PID 12618 found at Wed May 10 11:55:52 UTC 2017
selfserv_9323 with PID 12618 started at Wed May 10 11:55:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5225: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 12618 at Wed May 10 11:55:52 UTC 2017
kill -USR1 12618
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12618 killed at Wed May 10 11:55:52 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:52 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9323 with PID 12674 found at Wed May 10 11:55:52 UTC 2017
selfserv_9323 with PID 12674 started at Wed May 10 11:55:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5226: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 12674 at Wed May 10 11:55:52 UTC 2017
kill -USR1 12674
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12674 killed at Wed May 10 11:55:52 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:52 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12730 >/dev/null 2>/dev/null
selfserv_9323 with PID 12730 found at Wed May 10 11:55:52 UTC 2017
selfserv_9323 with PID 12730 started at Wed May 10 11:55:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5227: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 12730 at Wed May 10 11:55:52 UTC 2017
kill -USR1 12730
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12730 killed at Wed May 10 11:55:52 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:52 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12798 >/dev/null 2>/dev/null
selfserv_9323 with PID 12798 found at Wed May 10 11:55:52 UTC 2017
selfserv_9323 with PID 12798 started at Wed May 10 11:55:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5228: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 12798 at Wed May 10 11:55:53 UTC 2017
kill -USR1 12798
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12798 killed at Wed May 10 11:55:53 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:53 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12854 >/dev/null 2>/dev/null
selfserv_9323 with PID 12854 found at Wed May 10 11:55:53 UTC 2017
selfserv_9323 with PID 12854 started at Wed May 10 11:55:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5229: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 12854 at Wed May 10 11:55:53 UTC 2017
kill -USR1 12854
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12854 killed at Wed May 10 11:55:53 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:53 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12910 >/dev/null 2>/dev/null
selfserv_9323 with PID 12910 found at Wed May 10 11:55:53 UTC 2017
selfserv_9323 with PID 12910 started at Wed May 10 11:55:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5230: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 12910 at Wed May 10 11:55:53 UTC 2017
kill -USR1 12910
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12910 killed at Wed May 10 11:55:53 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:53 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12978 >/dev/null 2>/dev/null
selfserv_9323 with PID 12978 found at Wed May 10 11:55:53 UTC 2017
selfserv_9323 with PID 12978 started at Wed May 10 11:55:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5231: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 12978 at Wed May 10 11:55:53 UTC 2017
kill -USR1 12978
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12978 killed at Wed May 10 11:55:53 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:53 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13034 >/dev/null 2>/dev/null
selfserv_9323 with PID 13034 found at Wed May 10 11:55:53 UTC 2017
selfserv_9323 with PID 13034 started at Wed May 10 11:55:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5232: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 13034 at Wed May 10 11:55:53 UTC 2017
kill -USR1 13034
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13034 killed at Wed May 10 11:55:53 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:53 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13090 >/dev/null 2>/dev/null
selfserv_9323 with PID 13090 found at Wed May 10 11:55:53 UTC 2017
selfserv_9323 with PID 13090 started at Wed May 10 11:55:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5233: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 13090 at Wed May 10 11:55:53 UTC 2017
kill -USR1 13090
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13090 killed at Wed May 10 11:55:53 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:54 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13159 >/dev/null 2>/dev/null
selfserv_9323 with PID 13159 found at Wed May 10 11:55:54 UTC 2017
selfserv_9323 with PID 13159 started at Wed May 10 11:55:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5234: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 13159 at Wed May 10 11:55:54 UTC 2017
kill -USR1 13159
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13159 killed at Wed May 10 11:55:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:54 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13215 >/dev/null 2>/dev/null
selfserv_9323 with PID 13215 found at Wed May 10 11:55:54 UTC 2017
selfserv_9323 with PID 13215 started at Wed May 10 11:55:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5235: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 13215 at Wed May 10 11:55:54 UTC 2017
kill -USR1 13215
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13215 killed at Wed May 10 11:55:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:54 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13271 >/dev/null 2>/dev/null
selfserv_9323 with PID 13271 found at Wed May 10 11:55:54 UTC 2017
selfserv_9323 with PID 13271 started at Wed May 10 11:55:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5236: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 13271 at Wed May 10 11:55:54 UTC 2017
kill -USR1 13271
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13271 killed at Wed May 10 11:55:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:54 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13339 >/dev/null 2>/dev/null
selfserv_9323 with PID 13339 found at Wed May 10 11:55:54 UTC 2017
selfserv_9323 with PID 13339 started at Wed May 10 11:55:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5237: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 13339 at Wed May 10 11:55:54 UTC 2017
kill -USR1 13339
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13339 killed at Wed May 10 11:55:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:54 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13395 >/dev/null 2>/dev/null
selfserv_9323 with PID 13395 found at Wed May 10 11:55:54 UTC 2017
selfserv_9323 with PID 13395 started at Wed May 10 11:55:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5238: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13395 at Wed May 10 11:55:54 UTC 2017
kill -USR1 13395
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13395 killed at Wed May 10 11:55:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:54 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13452 >/dev/null 2>/dev/null
selfserv_9323 with PID 13452 found at Wed May 10 11:55:54 UTC 2017
selfserv_9323 with PID 13452 started at Wed May 10 11:55:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5239: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 13452 at Wed May 10 11:55:55 UTC 2017
kill -USR1 13452
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13452 killed at Wed May 10 11:55:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:55 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13520 >/dev/null 2>/dev/null
selfserv_9323 with PID 13520 found at Wed May 10 11:55:55 UTC 2017
selfserv_9323 with PID 13520 started at Wed May 10 11:55:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5240: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13520 at Wed May 10 11:55:55 UTC 2017
kill -USR1 13520
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13520 killed at Wed May 10 11:55:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:55 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13576 >/dev/null 2>/dev/null
selfserv_9323 with PID 13576 found at Wed May 10 11:55:55 UTC 2017
selfserv_9323 with PID 13576 started at Wed May 10 11:55:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5241: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13576 at Wed May 10 11:55:55 UTC 2017
kill -USR1 13576
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13576 killed at Wed May 10 11:55:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:55 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13632 >/dev/null 2>/dev/null
selfserv_9323 with PID 13632 found at Wed May 10 11:55:55 UTC 2017
selfserv_9323 with PID 13632 started at Wed May 10 11:55:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5242: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13632 at Wed May 10 11:55:55 UTC 2017
kill -USR1 13632
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13632 killed at Wed May 10 11:55:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:55 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13700 >/dev/null 2>/dev/null
selfserv_9323 with PID 13700 found at Wed May 10 11:55:55 UTC 2017
selfserv_9323 with PID 13700 started at Wed May 10 11:55:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5243: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13700 at Wed May 10 11:55:55 UTC 2017
kill -USR1 13700
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13700 killed at Wed May 10 11:55:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:55 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13756 >/dev/null 2>/dev/null
selfserv_9323 with PID 13756 found at Wed May 10 11:55:55 UTC 2017
selfserv_9323 with PID 13756 started at Wed May 10 11:55:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5244: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13756 at Wed May 10 11:55:56 UTC 2017
kill -USR1 13756
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13756 killed at Wed May 10 11:55:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13812 >/dev/null 2>/dev/null
selfserv_9323 with PID 13812 found at Wed May 10 11:55:56 UTC 2017
selfserv_9323 with PID 13812 started at Wed May 10 11:55:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5245: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13812 at Wed May 10 11:55:56 UTC 2017
kill -USR1 13812
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13812 killed at Wed May 10 11:55:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13880 >/dev/null 2>/dev/null
selfserv_9323 with PID 13880 found at Wed May 10 11:55:56 UTC 2017
selfserv_9323 with PID 13880 started at Wed May 10 11:55:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5246: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 13880 at Wed May 10 11:55:56 UTC 2017
kill -USR1 13880
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13880 killed at Wed May 10 11:55:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13936 >/dev/null 2>/dev/null
selfserv_9323 with PID 13936 found at Wed May 10 11:55:56 UTC 2017
selfserv_9323 with PID 13936 started at Wed May 10 11:55:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5247: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13936 at Wed May 10 11:55:56 UTC 2017
kill -USR1 13936
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13936 killed at Wed May 10 11:55:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13992 >/dev/null 2>/dev/null
selfserv_9323 with PID 13992 found at Wed May 10 11:55:56 UTC 2017
selfserv_9323 with PID 13992 started at Wed May 10 11:55:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5248: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 13992 at Wed May 10 11:55:56 UTC 2017
kill -USR1 13992
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13992 killed at Wed May 10 11:55:56 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14060 >/dev/null 2>/dev/null
selfserv_9323 with PID 14060 found at Wed May 10 11:55:56 UTC 2017
selfserv_9323 with PID 14060 started at Wed May 10 11:55:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5249: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14060 at Wed May 10 11:55:56 UTC 2017
kill -USR1 14060
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14060 killed at Wed May 10 11:55:56 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14116 >/dev/null 2>/dev/null
selfserv_9323 with PID 14116 found at Wed May 10 11:55:56 UTC 2017
selfserv_9323 with PID 14116 started at Wed May 10 11:55:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5250: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14116 at Wed May 10 11:55:57 UTC 2017
kill -USR1 14116
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14116 killed at Wed May 10 11:55:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 11:55:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14172 >/dev/null 2>/dev/null
selfserv_9323 with PID 14172 found at Wed May 10 11:55:57 UTC 2017
selfserv_9323 with PID 14172 started at Wed May 10 11:55:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5251: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14172 at Wed May 10 11:55:57 UTC 2017
kill -USR1 14172
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14172 killed at Wed May 10 11:55:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14240 >/dev/null 2>/dev/null
selfserv_9323 with PID 14240 found at Wed May 10 11:55:57 UTC 2017
selfserv_9323 with PID 14240 started at Wed May 10 11:55:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5252: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14240 at Wed May 10 11:55:57 UTC 2017
kill -USR1 14240
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14240 killed at Wed May 10 11:55:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14296 >/dev/null 2>/dev/null
selfserv_9323 with PID 14296 found at Wed May 10 11:55:57 UTC 2017
selfserv_9323 with PID 14296 started at Wed May 10 11:55:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5253: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14296 at Wed May 10 11:55:57 UTC 2017
kill -USR1 14296
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14296 killed at Wed May 10 11:55:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14352 >/dev/null 2>/dev/null
selfserv_9323 with PID 14352 found at Wed May 10 11:55:57 UTC 2017
selfserv_9323 with PID 14352 started at Wed May 10 11:55:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5254: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14352 at Wed May 10 11:55:57 UTC 2017
kill -USR1 14352
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14352 killed at Wed May 10 11:55:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14420 >/dev/null 2>/dev/null
selfserv_9323 with PID 14420 found at Wed May 10 11:55:57 UTC 2017
selfserv_9323 with PID 14420 started at Wed May 10 11:55:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5255: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14420 at Wed May 10 11:55:57 UTC 2017
kill -USR1 14420
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14420 killed at Wed May 10 11:55:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14476 >/dev/null 2>/dev/null
selfserv_9323 with PID 14476 found at Wed May 10 11:55:58 UTC 2017
selfserv_9323 with PID 14476 started at Wed May 10 11:55:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5256: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14476 at Wed May 10 11:55:58 UTC 2017
kill -USR1 14476
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14476 killed at Wed May 10 11:55:58 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14532 >/dev/null 2>/dev/null
selfserv_9323 with PID 14532 found at Wed May 10 11:55:58 UTC 2017
selfserv_9323 with PID 14532 started at Wed May 10 11:55:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5257: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14532 at Wed May 10 11:55:58 UTC 2017
kill -USR1 14532
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14532 killed at Wed May 10 11:55:58 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14609 >/dev/null 2>/dev/null
selfserv_9323 with PID 14609 found at Wed May 10 11:55:58 UTC 2017
selfserv_9323 with PID 14609 started at Wed May 10 11:55:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5258: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14609 at Wed May 10 11:55:58 UTC 2017
kill -USR1 14609
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14609 killed at Wed May 10 11:55:58 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14673 >/dev/null 2>/dev/null
selfserv_9323 with PID 14673 found at Wed May 10 11:55:58 UTC 2017
selfserv_9323 with PID 14673 started at Wed May 10 11:55:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5259: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14673 at Wed May 10 11:55:58 UTC 2017
kill -USR1 14673
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14673 killed at Wed May 10 11:55:58 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14729 >/dev/null 2>/dev/null
selfserv_9323 with PID 14729 found at Wed May 10 11:55:58 UTC 2017
selfserv_9323 with PID 14729 started at Wed May 10 11:55:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5260: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14729 at Wed May 10 11:55:58 UTC 2017
kill -USR1 14729
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14729 killed at Wed May 10 11:55:58 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14797 >/dev/null 2>/dev/null
selfserv_9323 with PID 14797 found at Wed May 10 11:55:59 UTC 2017
selfserv_9323 with PID 14797 started at Wed May 10 11:55:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5261: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 14797 at Wed May 10 11:55:59 UTC 2017
kill -USR1 14797
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14797 killed at Wed May 10 11:55:59 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:59 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14853 >/dev/null 2>/dev/null
selfserv_9323 with PID 14853 found at Wed May 10 11:55:59 UTC 2017
selfserv_9323 with PID 14853 started at Wed May 10 11:55:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5262: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14853 at Wed May 10 11:55:59 UTC 2017
kill -USR1 14853
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14853 killed at Wed May 10 11:55:59 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:55:59 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14909 >/dev/null 2>/dev/null
selfserv_9323 with PID 14909 found at Wed May 10 11:55:59 UTC 2017
selfserv_9323 with PID 14909 started at Wed May 10 11:55:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5263: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 14909 at Wed May 10 11:55:59 UTC 2017
kill -USR1 14909
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14909 killed at Wed May 10 11:55:59 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:59 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14977 >/dev/null 2>/dev/null
selfserv_9323 with PID 14977 found at Wed May 10 11:55:59 UTC 2017
selfserv_9323 with PID 14977 started at Wed May 10 11:55:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5264: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 14977 at Wed May 10 11:55:59 UTC 2017
kill -USR1 14977
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14977 killed at Wed May 10 11:55:59 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:59 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15033 >/dev/null 2>/dev/null
selfserv_9323 with PID 15033 found at Wed May 10 11:55:59 UTC 2017
selfserv_9323 with PID 15033 started at Wed May 10 11:55:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5265: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 15033 at Wed May 10 11:55:59 UTC 2017
kill -USR1 15033
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15033 killed at Wed May 10 11:55:59 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:55:59 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:55:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15089 >/dev/null 2>/dev/null
selfserv_9323 with PID 15089 found at Wed May 10 11:55:59 UTC 2017
selfserv_9323 with PID 15089 started at Wed May 10 11:55:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5266: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 15089 at Wed May 10 11:56:00 UTC 2017
kill -USR1 15089
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15089 killed at Wed May 10 11:56:00 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15157 >/dev/null 2>/dev/null
selfserv_9323 with PID 15157 found at Wed May 10 11:56:00 UTC 2017
selfserv_9323 with PID 15157 started at Wed May 10 11:56:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5267: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 15157 at Wed May 10 11:56:00 UTC 2017
kill -USR1 15157
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15157 killed at Wed May 10 11:56:00 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15213 >/dev/null 2>/dev/null
selfserv_9323 with PID 15213 found at Wed May 10 11:56:00 UTC 2017
selfserv_9323 with PID 15213 started at Wed May 10 11:56:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5268: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15213 at Wed May 10 11:56:00 UTC 2017
kill -USR1 15213
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15213 killed at Wed May 10 11:56:00 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15269 >/dev/null 2>/dev/null
selfserv_9323 with PID 15269 found at Wed May 10 11:56:00 UTC 2017
selfserv_9323 with PID 15269 started at Wed May 10 11:56:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5269: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 15269 at Wed May 10 11:56:00 UTC 2017
kill -USR1 15269
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15269 killed at Wed May 10 11:56:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15338 >/dev/null 2>/dev/null
selfserv_9323 with PID 15338 found at Wed May 10 11:56:00 UTC 2017
selfserv_9323 with PID 15338 started at Wed May 10 11:56:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5270: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15338 at Wed May 10 11:56:00 UTC 2017
kill -USR1 15338
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15338 killed at Wed May 10 11:56:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15394 >/dev/null 2>/dev/null
selfserv_9323 with PID 15394 found at Wed May 10 11:56:00 UTC 2017
selfserv_9323 with PID 15394 started at Wed May 10 11:56:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5271: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15394 at Wed May 10 11:56:00 UTC 2017
kill -USR1 15394
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15394 killed at Wed May 10 11:56:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15450 >/dev/null 2>/dev/null
selfserv_9323 with PID 15450 found at Wed May 10 11:56:00 UTC 2017
selfserv_9323 with PID 15450 started at Wed May 10 11:56:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5272: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15450 at Wed May 10 11:56:01 UTC 2017
kill -USR1 15450
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15450 killed at Wed May 10 11:56:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:01 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15518 >/dev/null 2>/dev/null
selfserv_9323 with PID 15518 found at Wed May 10 11:56:01 UTC 2017
selfserv_9323 with PID 15518 started at Wed May 10 11:56:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5273: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 15518 at Wed May 10 11:56:01 UTC 2017
kill -USR1 15518
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15518 killed at Wed May 10 11:56:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:01 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15574 >/dev/null 2>/dev/null
selfserv_9323 with PID 15574 found at Wed May 10 11:56:01 UTC 2017
selfserv_9323 with PID 15574 started at Wed May 10 11:56:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5274: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15574 at Wed May 10 11:56:01 UTC 2017
kill -USR1 15574
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15574 killed at Wed May 10 11:56:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:01 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15630 >/dev/null 2>/dev/null
selfserv_9323 with PID 15630 found at Wed May 10 11:56:01 UTC 2017
selfserv_9323 with PID 15630 started at Wed May 10 11:56:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5275: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 15630 at Wed May 10 11:56:01 UTC 2017
kill -USR1 15630
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15630 killed at Wed May 10 11:56:01 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:01 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15698 >/dev/null 2>/dev/null
selfserv_9323 with PID 15698 found at Wed May 10 11:56:01 UTC 2017
selfserv_9323 with PID 15698 started at Wed May 10 11:56:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5276: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 15698 at Wed May 10 11:56:01 UTC 2017
kill -USR1 15698
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15698 killed at Wed May 10 11:56:01 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:01 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15754 >/dev/null 2>/dev/null
selfserv_9323 with PID 15754 found at Wed May 10 11:56:01 UTC 2017
selfserv_9323 with PID 15754 started at Wed May 10 11:56:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5277: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 15754 at Wed May 10 11:56:01 UTC 2017
kill -USR1 15754
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15754 killed at Wed May 10 11:56:01 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:01 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15810 >/dev/null 2>/dev/null
selfserv_9323 with PID 15810 found at Wed May 10 11:56:01 UTC 2017
selfserv_9323 with PID 15810 started at Wed May 10 11:56:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5278: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 15810 at Wed May 10 11:56:02 UTC 2017
kill -USR1 15810
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15810 killed at Wed May 10 11:56:02 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:02 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15878 >/dev/null 2>/dev/null
selfserv_9323 with PID 15878 found at Wed May 10 11:56:02 UTC 2017
selfserv_9323 with PID 15878 started at Wed May 10 11:56:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5279: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 15878 at Wed May 10 11:56:02 UTC 2017
kill -USR1 15878
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15878 killed at Wed May 10 11:56:02 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:02 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15934 >/dev/null 2>/dev/null
selfserv_9323 with PID 15934 found at Wed May 10 11:56:02 UTC 2017
selfserv_9323 with PID 15934 started at Wed May 10 11:56:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5280: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15934 at Wed May 10 11:56:02 UTC 2017
kill -USR1 15934
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15934 killed at Wed May 10 11:56:02 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:02 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15990 >/dev/null 2>/dev/null
selfserv_9323 with PID 15990 found at Wed May 10 11:56:02 UTC 2017
selfserv_9323 with PID 15990 started at Wed May 10 11:56:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5281: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 15990 at Wed May 10 11:56:02 UTC 2017
kill -USR1 15990
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15990 killed at Wed May 10 11:56:02 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:02 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16059 >/dev/null 2>/dev/null
selfserv_9323 with PID 16059 found at Wed May 10 11:56:02 UTC 2017
selfserv_9323 with PID 16059 started at Wed May 10 11:56:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5282: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16059 at Wed May 10 11:56:02 UTC 2017
kill -USR1 16059
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16059 killed at Wed May 10 11:56:02 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:02 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16115 >/dev/null 2>/dev/null
selfserv_9323 with PID 16115 found at Wed May 10 11:56:02 UTC 2017
selfserv_9323 with PID 16115 started at Wed May 10 11:56:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5283: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16115 at Wed May 10 11:56:02 UTC 2017
kill -USR1 16115
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16115 killed at Wed May 10 11:56:02 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:02 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16171 >/dev/null 2>/dev/null
selfserv_9323 with PID 16171 found at Wed May 10 11:56:02 UTC 2017
selfserv_9323 with PID 16171 started at Wed May 10 11:56:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5284: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16171 at Wed May 10 11:56:03 UTC 2017
kill -USR1 16171
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16171 killed at Wed May 10 11:56:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16239 >/dev/null 2>/dev/null
selfserv_9323 with PID 16239 found at Wed May 10 11:56:03 UTC 2017
selfserv_9323 with PID 16239 started at Wed May 10 11:56:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5285: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16239 at Wed May 10 11:56:03 UTC 2017
kill -USR1 16239
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16239 killed at Wed May 10 11:56:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16295 >/dev/null 2>/dev/null
selfserv_9323 with PID 16295 found at Wed May 10 11:56:03 UTC 2017
selfserv_9323 with PID 16295 started at Wed May 10 11:56:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5286: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16295 at Wed May 10 11:56:03 UTC 2017
kill -USR1 16295
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16295 killed at Wed May 10 11:56:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16352 >/dev/null 2>/dev/null
selfserv_9323 with PID 16352 found at Wed May 10 11:56:03 UTC 2017
selfserv_9323 with PID 16352 started at Wed May 10 11:56:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5287: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16352 at Wed May 10 11:56:03 UTC 2017
kill -USR1 16352
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16352 killed at Wed May 10 11:56:03 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16420 >/dev/null 2>/dev/null
selfserv_9323 with PID 16420 found at Wed May 10 11:56:03 UTC 2017
selfserv_9323 with PID 16420 started at Wed May 10 11:56:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5288: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16420 at Wed May 10 11:56:03 UTC 2017
kill -USR1 16420
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16420 killed at Wed May 10 11:56:03 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16476 >/dev/null 2>/dev/null
selfserv_9323 with PID 16476 found at Wed May 10 11:56:04 UTC 2017
selfserv_9323 with PID 16476 started at Wed May 10 11:56:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5289: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16476 at Wed May 10 11:56:04 UTC 2017
kill -USR1 16476
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16476 killed at Wed May 10 11:56:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:04 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16532 >/dev/null 2>/dev/null
selfserv_9323 with PID 16532 found at Wed May 10 11:56:04 UTC 2017
selfserv_9323 with PID 16532 started at Wed May 10 11:56:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5290: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16532 at Wed May 10 11:56:04 UTC 2017
kill -USR1 16532
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16532 killed at Wed May 10 11:56:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:04 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16601 >/dev/null 2>/dev/null
selfserv_9323 with PID 16601 found at Wed May 10 11:56:04 UTC 2017
selfserv_9323 with PID 16601 started at Wed May 10 11:56:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5291: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16601 at Wed May 10 11:56:04 UTC 2017
kill -USR1 16601
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16601 killed at Wed May 10 11:56:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:04 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16657 >/dev/null 2>/dev/null
selfserv_9323 with PID 16657 found at Wed May 10 11:56:04 UTC 2017
selfserv_9323 with PID 16657 started at Wed May 10 11:56:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5292: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16657 at Wed May 10 11:56:04 UTC 2017
kill -USR1 16657
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16657 killed at Wed May 10 11:56:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:04 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16713 >/dev/null 2>/dev/null
selfserv_9323 with PID 16713 found at Wed May 10 11:56:04 UTC 2017
selfserv_9323 with PID 16713 started at Wed May 10 11:56:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5293: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16713 at Wed May 10 11:56:05 UTC 2017
kill -USR1 16713
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16713 killed at Wed May 10 11:56:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16781 >/dev/null 2>/dev/null
selfserv_9323 with PID 16781 found at Wed May 10 11:56:05 UTC 2017
selfserv_9323 with PID 16781 started at Wed May 10 11:56:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5294: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16781 at Wed May 10 11:56:05 UTC 2017
kill -USR1 16781
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16781 killed at Wed May 10 11:56:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16837 >/dev/null 2>/dev/null
selfserv_9323 with PID 16837 found at Wed May 10 11:56:05 UTC 2017
selfserv_9323 with PID 16837 started at Wed May 10 11:56:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5295: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16837 at Wed May 10 11:56:05 UTC 2017
kill -USR1 16837
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16837 killed at Wed May 10 11:56:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16893 >/dev/null 2>/dev/null
selfserv_9323 with PID 16893 found at Wed May 10 11:56:05 UTC 2017
selfserv_9323 with PID 16893 started at Wed May 10 11:56:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5296: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16893 at Wed May 10 11:56:05 UTC 2017
kill -USR1 16893
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16893 killed at Wed May 10 11:56:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16961 >/dev/null 2>/dev/null
selfserv_9323 with PID 16961 found at Wed May 10 11:56:05 UTC 2017
selfserv_9323 with PID 16961 started at Wed May 10 11:56:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5297: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16961 at Wed May 10 11:56:05 UTC 2017
kill -USR1 16961
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16961 killed at Wed May 10 11:56:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17017 >/dev/null 2>/dev/null
selfserv_9323 with PID 17017 found at Wed May 10 11:56:05 UTC 2017
selfserv_9323 with PID 17017 started at Wed May 10 11:56:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5298: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 17017 at Wed May 10 11:56:06 UTC 2017
kill -USR1 17017
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17017 killed at Wed May 10 11:56:06 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17073 >/dev/null 2>/dev/null
selfserv_9323 with PID 17073 found at Wed May 10 11:56:06 UTC 2017
selfserv_9323 with PID 17073 started at Wed May 10 11:56:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5299: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17073 at Wed May 10 11:56:06 UTC 2017
kill -USR1 17073
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17073 killed at Wed May 10 11:56:06 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17141 >/dev/null 2>/dev/null
selfserv_9323 with PID 17141 found at Wed May 10 11:56:06 UTC 2017
selfserv_9323 with PID 17141 started at Wed May 10 11:56:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5300: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17141 at Wed May 10 11:56:06 UTC 2017
kill -USR1 17141
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17141 killed at Wed May 10 11:56:06 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17197 >/dev/null 2>/dev/null
selfserv_9323 with PID 17197 found at Wed May 10 11:56:06 UTC 2017
selfserv_9323 with PID 17197 started at Wed May 10 11:56:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5301: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17197 at Wed May 10 11:56:06 UTC 2017
kill -USR1 17197
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17197 killed at Wed May 10 11:56:06 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17253 >/dev/null 2>/dev/null
selfserv_9323 with PID 17253 found at Wed May 10 11:56:06 UTC 2017
selfserv_9323 with PID 17253 started at Wed May 10 11:56:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5302: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17253 at Wed May 10 11:56:06 UTC 2017
kill -USR1 17253
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17253 killed at Wed May 10 11:56:06 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17321 >/dev/null 2>/dev/null
selfserv_9323 with PID 17321 found at Wed May 10 11:56:06 UTC 2017
selfserv_9323 with PID 17321 started at Wed May 10 11:56:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5303: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17321 at Wed May 10 11:56:07 UTC 2017
kill -USR1 17321
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17321 killed at Wed May 10 11:56:07 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17377 >/dev/null 2>/dev/null
selfserv_9323 with PID 17377 found at Wed May 10 11:56:07 UTC 2017
selfserv_9323 with PID 17377 started at Wed May 10 11:56:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5304: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 17377 at Wed May 10 11:56:07 UTC 2017
kill -USR1 17377
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17377 killed at Wed May 10 11:56:07 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17433 >/dev/null 2>/dev/null
selfserv_9323 with PID 17433 found at Wed May 10 11:56:07 UTC 2017
selfserv_9323 with PID 17433 started at Wed May 10 11:56:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5305: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17433 at Wed May 10 11:56:07 UTC 2017
kill -USR1 17433
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17433 killed at Wed May 10 11:56:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17501 >/dev/null 2>/dev/null
selfserv_9323 with PID 17501 found at Wed May 10 11:56:07 UTC 2017
selfserv_9323 with PID 17501 started at Wed May 10 11:56:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5306: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 17501 at Wed May 10 11:56:07 UTC 2017
kill -USR1 17501
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17501 killed at Wed May 10 11:56:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17557 >/dev/null 2>/dev/null
selfserv_9323 with PID 17557 found at Wed May 10 11:56:07 UTC 2017
selfserv_9323 with PID 17557 started at Wed May 10 11:56:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5307: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 17557 at Wed May 10 11:56:07 UTC 2017
kill -USR1 17557
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17557 killed at Wed May 10 11:56:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17613 >/dev/null 2>/dev/null
selfserv_9323 with PID 17613 found at Wed May 10 11:56:07 UTC 2017
selfserv_9323 with PID 17613 started at Wed May 10 11:56:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5308: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 17613 at Wed May 10 11:56:08 UTC 2017
kill -USR1 17613
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17613 killed at Wed May 10 11:56:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17681 >/dev/null 2>/dev/null
selfserv_9323 with PID 17681 found at Wed May 10 11:56:08 UTC 2017
selfserv_9323 with PID 17681 started at Wed May 10 11:56:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5309: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17681 at Wed May 10 11:56:08 UTC 2017
kill -USR1 17681
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17681 killed at Wed May 10 11:56:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17737 >/dev/null 2>/dev/null
selfserv_9323 with PID 17737 found at Wed May 10 11:56:08 UTC 2017
selfserv_9323 with PID 17737 started at Wed May 10 11:56:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5310: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 17737 at Wed May 10 11:56:08 UTC 2017
kill -USR1 17737
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17737 killed at Wed May 10 11:56:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17793 >/dev/null 2>/dev/null
selfserv_9323 with PID 17793 found at Wed May 10 11:56:08 UTC 2017
selfserv_9323 with PID 17793 started at Wed May 10 11:56:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5311: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17793 at Wed May 10 11:56:08 UTC 2017
kill -USR1 17793
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17793 killed at Wed May 10 11:56:08 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17861 >/dev/null 2>/dev/null
selfserv_9323 with PID 17861 found at Wed May 10 11:56:08 UTC 2017
selfserv_9323 with PID 17861 started at Wed May 10 11:56:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5312: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17861 at Wed May 10 11:56:08 UTC 2017
kill -USR1 17861
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17861 killed at Wed May 10 11:56:08 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17917 >/dev/null 2>/dev/null
selfserv_9323 with PID 17917 found at Wed May 10 11:56:08 UTC 2017
selfserv_9323 with PID 17917 started at Wed May 10 11:56:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5313: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17917 at Wed May 10 11:56:08 UTC 2017
kill -USR1 17917
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17917 killed at Wed May 10 11:56:09 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 11:56:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17973 >/dev/null 2>/dev/null
selfserv_9323 with PID 17973 found at Wed May 10 11:56:09 UTC 2017
selfserv_9323 with PID 17973 started at Wed May 10 11:56:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5314: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17973 at Wed May 10 11:56:09 UTC 2017
kill -USR1 17973
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17973 killed at Wed May 10 11:56:09 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18041 >/dev/null 2>/dev/null
selfserv_9323 with PID 18041 found at Wed May 10 11:56:09 UTC 2017
selfserv_9323 with PID 18041 started at Wed May 10 11:56:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5315: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 18041 at Wed May 10 11:56:09 UTC 2017
kill -USR1 18041
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18041 killed at Wed May 10 11:56:09 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18097 >/dev/null 2>/dev/null
selfserv_9323 with PID 18097 found at Wed May 10 11:56:09 UTC 2017
selfserv_9323 with PID 18097 started at Wed May 10 11:56:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5316: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 18097 at Wed May 10 11:56:09 UTC 2017
kill -USR1 18097
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18097 killed at Wed May 10 11:56:09 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18153 >/dev/null 2>/dev/null
selfserv_9323 with PID 18153 found at Wed May 10 11:56:09 UTC 2017
selfserv_9323 with PID 18153 started at Wed May 10 11:56:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5317: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 18153 at Wed May 10 11:56:09 UTC 2017
kill -USR1 18153
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18153 killed at Wed May 10 11:56:09 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/authin.tl.tmp
0
selfserv_9323 starting at Wed May 10 11:56:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:09 UTC 2017
selfserv_9323 with PID 18216 started at Wed May 10 11:56:09 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:09 UTC 2017
ssl.sh: #5318: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:09 UTC 2017
ssl.sh: #5319: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:10 UTC 2017
ssl.sh: #5320: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:10 UTC 2017
ssl.sh: #5321: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:10 UTC 2017
ssl.sh: #5322: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:10 UTC 2017
ssl.sh: #5323: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:10 UTC 2017
ssl.sh: #5324: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:10 UTC 2017
ssl.sh: #5325: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:10 UTC 2017
ssl.sh: #5326: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:10 UTC 2017
ssl.sh: #5327: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:10 UTC 2017
ssl.sh: #5328: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:10 UTC 2017
ssl.sh: #5329: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:10 UTC 2017
ssl.sh: #5330: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5331: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:11 UTC 2017
ssl.sh: #5332: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:11 UTC 2017
ssl.sh: #5333: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:11 UTC 2017
ssl.sh: #5334: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:11 UTC 2017
ssl.sh: #5335: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:11 UTC 2017
ssl.sh: #5336: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:11 UTC 2017
ssl.sh: #5337: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:11 UTC 2017
ssl.sh: #5338: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:11 UTC 2017
ssl.sh: #5339: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:11 UTC 2017
ssl.sh: #5340: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:11 UTC 2017
ssl.sh: #5341: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:11 UTC 2017
ssl.sh: #5342: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:11 UTC 2017
ssl.sh: #5343: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:12 UTC 2017
ssl.sh: #5344: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:12 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5345: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:12 UTC 2017
ssl.sh: #5346: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:12 UTC 2017
ssl.sh: #5347: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:12 UTC 2017
ssl.sh: #5348: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:12 UTC 2017
ssl.sh: #5349: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:12 UTC 2017
ssl.sh: #5350: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:12 UTC 2017
ssl.sh: #5351: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:12 UTC 2017
ssl.sh: #5352: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:12 UTC 2017
ssl.sh: #5353: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:12 UTC 2017
ssl.sh: #5354: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:12 UTC 2017
ssl.sh: #5355: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:12 UTC 2017
ssl.sh: #5356: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:13 UTC 2017
ssl.sh: #5357: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18216 >/dev/null 2>/dev/null
selfserv_9323 with PID 18216 found at Wed May 10 11:56:13 UTC 2017
ssl.sh: #5358: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 18216 at Wed May 10 11:56:13 UTC 2017
kill -USR1 18216
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18216 killed at Wed May 10 11:56:13 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:13 UTC 2017
selfserv_9323 with PID 19640 started at Wed May 10 11:56:13 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:13 UTC 2017
ssl.sh: #5359: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:13 UTC 2017
ssl.sh: #5360: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:13 UTC 2017
ssl.sh: #5361: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:13 UTC 2017
ssl.sh: #5362: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:13 UTC 2017
ssl.sh: #5363: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:13 UTC 2017
ssl.sh: #5364: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:13 UTC 2017
ssl.sh: #5365: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:13 UTC 2017
ssl.sh: #5366: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:13 UTC 2017
ssl.sh: #5367: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:13 UTC 2017
ssl.sh: #5368: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:14 UTC 2017
ssl.sh: #5369: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:14 UTC 2017
ssl.sh: #5370: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:14 UTC 2017
ssl.sh: #5371: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:14 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5372: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:14 UTC 2017
ssl.sh: #5373: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:14 UTC 2017
ssl.sh: #5374: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:14 UTC 2017
ssl.sh: #5375: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:14 UTC 2017
ssl.sh: #5376: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:14 UTC 2017
ssl.sh: #5377: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:14 UTC 2017
ssl.sh: #5378: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:14 UTC 2017
ssl.sh: #5379: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:14 UTC 2017
ssl.sh: #5380: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:14 UTC 2017
ssl.sh: #5381: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:14 UTC 2017
ssl.sh: #5382: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
ssl.sh: #5383: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
ssl.sh: #5384: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
ssl.sh: #5385: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5386: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
ssl.sh: #5387: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
ssl.sh: #5388: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
ssl.sh: #5389: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
ssl.sh: #5390: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
ssl.sh: #5391: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
ssl.sh: #5392: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
ssl.sh: #5393: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
ssl.sh: #5394: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
ssl.sh: #5395: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
ssl.sh: #5396: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:15 UTC 2017
ssl.sh: #5397: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:16 UTC 2017
ssl.sh: #5398: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19640 >/dev/null 2>/dev/null
selfserv_9323 with PID 19640 found at Wed May 10 11:56:16 UTC 2017
ssl.sh: #5399: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 19640 at Wed May 10 11:56:16 UTC 2017
kill -USR1 19640
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19640 killed at Wed May 10 11:56:16 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:16 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:16 UTC 2017
selfserv_9323 with PID 21062 started at Wed May 10 11:56:16 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:16 UTC 2017
ssl.sh: #5400: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:16 UTC 2017
ssl.sh: #5401: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:16 UTC 2017
ssl.sh: #5402: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:16 UTC 2017
ssl.sh: #5403: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:16 UTC 2017
ssl.sh: #5404: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:16 UTC 2017
ssl.sh: #5405: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:16 UTC 2017
ssl.sh: #5406: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:17 UTC 2017
ssl.sh: #5407: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:17 UTC 2017
ssl.sh: #5408: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:17 UTC 2017
ssl.sh: #5409: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:17 UTC 2017
ssl.sh: #5410: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:17 UTC 2017
ssl.sh: #5411: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:17 UTC 2017
ssl.sh: #5412: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5413: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:17 UTC 2017
ssl.sh: #5414: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:17 UTC 2017
ssl.sh: #5415: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:17 UTC 2017
ssl.sh: #5416: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:17 UTC 2017
ssl.sh: #5417: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:18 UTC 2017
ssl.sh: #5418: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:18 UTC 2017
ssl.sh: #5419: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:18 UTC 2017
ssl.sh: #5420: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:18 UTC 2017
ssl.sh: #5421: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:18 UTC 2017
ssl.sh: #5422: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:18 UTC 2017
ssl.sh: #5423: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:18 UTC 2017
ssl.sh: #5424: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:18 UTC 2017
ssl.sh: #5425: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:18 UTC 2017
ssl.sh: #5426: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5427: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:18 UTC 2017
ssl.sh: #5428: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:19 UTC 2017
ssl.sh: #5429: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:19 UTC 2017
ssl.sh: #5430: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:19 UTC 2017
ssl.sh: #5431: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:19 UTC 2017
ssl.sh: #5432: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:19 UTC 2017
ssl.sh: #5433: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:19 UTC 2017
ssl.sh: #5434: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:19 UTC 2017
ssl.sh: #5435: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:19 UTC 2017
ssl.sh: #5436: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:19 UTC 2017
ssl.sh: #5437: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:19 UTC 2017
ssl.sh: #5438: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:19 UTC 2017
ssl.sh: #5439: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21062 >/dev/null 2>/dev/null
selfserv_9323 with PID 21062 found at Wed May 10 11:56:20 UTC 2017
ssl.sh: #5440: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 21062 at Wed May 10 11:56:20 UTC 2017
kill -USR1 21062
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21062 killed at Wed May 10 11:56:20 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:20 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:20 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:20 UTC 2017
selfserv_9323 with PID 22485 started at Wed May 10 11:56:20 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:20 UTC 2017
ssl.sh: #5441: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:20 UTC 2017
ssl.sh: #5442: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:20 UTC 2017
ssl.sh: #5443: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:20 UTC 2017
ssl.sh: #5444: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:20 UTC 2017
ssl.sh: #5445: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:20 UTC 2017
ssl.sh: #5446: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:20 UTC 2017
ssl.sh: #5447: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:20 UTC 2017
ssl.sh: #5448: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:20 UTC 2017
ssl.sh: #5449: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:20 UTC 2017
ssl.sh: #5450: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:20 UTC 2017
ssl.sh: #5451: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:21 UTC 2017
ssl.sh: #5452: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:21 UTC 2017
ssl.sh: #5453: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5454: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:21 UTC 2017
ssl.sh: #5455: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:21 UTC 2017
ssl.sh: #5456: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:21 UTC 2017
ssl.sh: #5457: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:21 UTC 2017
ssl.sh: #5458: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:21 UTC 2017
ssl.sh: #5459: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:21 UTC 2017
ssl.sh: #5460: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:21 UTC 2017
ssl.sh: #5461: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:21 UTC 2017
ssl.sh: #5462: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:21 UTC 2017
ssl.sh: #5463: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:21 UTC 2017
ssl.sh: #5464: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:22 UTC 2017
ssl.sh: #5465: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:22 UTC 2017
ssl.sh: #5466: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:22 UTC 2017
ssl.sh: #5467: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5468: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:22 UTC 2017
ssl.sh: #5469: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:22 UTC 2017
ssl.sh: #5470: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:22 UTC 2017
ssl.sh: #5471: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:22 UTC 2017
ssl.sh: #5472: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:22 UTC 2017
ssl.sh: #5473: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:22 UTC 2017
ssl.sh: #5474: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:22 UTC 2017
ssl.sh: #5475: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:22 UTC 2017
ssl.sh: #5476: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:22 UTC 2017
ssl.sh: #5477: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:22 UTC 2017
ssl.sh: #5478: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:23 UTC 2017
ssl.sh: #5479: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:23 UTC 2017
ssl.sh: #5480: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22485 >/dev/null 2>/dev/null
selfserv_9323 with PID 22485 found at Wed May 10 11:56:23 UTC 2017
ssl.sh: #5481: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 22485 at Wed May 10 11:56:23 UTC 2017
kill -USR1 22485
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 22485 killed at Wed May 10 11:56:23 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:23 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23917 >/dev/null 2>/dev/null
selfserv_9323 with PID 23917 found at Wed May 10 11:56:23 UTC 2017
selfserv_9323 with PID 23917 started at Wed May 10 11:56:23 UTC 2017
trying to kill selfserv_9323 with PID 23917 at Wed May 10 11:56:23 UTC 2017
kill -USR1 23917
./ssl.sh: line 183: 23917 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9323 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23917 killed at Wed May 10 11:56:23 UTC 2017
selfserv_9323 starting at Wed May 10 11:56:23 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:23 UTC 2017
selfserv_9323 with PID 23959 started at Wed May 10 11:56:23 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:23 UTC 2017
ssl.sh: #5482: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:23 UTC 2017
ssl.sh: #5483: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:23 UTC 2017
ssl.sh: #5484: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:23 UTC 2017
ssl.sh: #5485: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:23 UTC 2017
ssl.sh: #5486: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:23 UTC 2017
ssl.sh: #5487: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:24 UTC 2017
ssl.sh: #5488: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:24 UTC 2017
ssl.sh: #5489: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:24 UTC 2017
ssl.sh: #5490: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:24 UTC 2017
ssl.sh: #5491: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:24 UTC 2017
ssl.sh: #5492: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:24 UTC 2017
ssl.sh: #5493: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:24 UTC 2017
ssl.sh: #5494: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5495: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:24 UTC 2017
ssl.sh: #5496: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:25 UTC 2017
ssl.sh: #5497: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:25 UTC 2017
ssl.sh: #5498: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:25 UTC 2017
ssl.sh: #5499: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:25 UTC 2017
ssl.sh: #5500: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:25 UTC 2017
ssl.sh: #5501: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:25 UTC 2017
ssl.sh: #5502: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:25 UTC 2017
ssl.sh: #5503: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:25 UTC 2017
ssl.sh: #5504: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:25 UTC 2017
ssl.sh: #5505: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:25 UTC 2017
ssl.sh: #5506: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:26 UTC 2017
ssl.sh: #5507: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:26 UTC 2017
ssl.sh: #5508: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5509: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:26 UTC 2017
ssl.sh: #5510: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:26 UTC 2017
ssl.sh: #5511: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:26 UTC 2017
ssl.sh: #5512: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:26 UTC 2017
ssl.sh: #5513: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:26 UTC 2017
ssl.sh: #5514: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:26 UTC 2017
ssl.sh: #5515: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:26 UTC 2017
ssl.sh: #5516: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:27 UTC 2017
ssl.sh: #5517: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:27 UTC 2017
ssl.sh: #5518: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:27 UTC 2017
ssl.sh: #5519: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:27 UTC 2017
ssl.sh: #5520: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:27 UTC 2017
ssl.sh: #5521: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23959 >/dev/null 2>/dev/null
selfserv_9323 with PID 23959 found at Wed May 10 11:56:27 UTC 2017
ssl.sh: #5522: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 23959 at Wed May 10 11:56:27 UTC 2017
kill -USR1 23959
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23959 killed at Wed May 10 11:56:27 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:27 UTC 2017
selfserv_9323 with PID 25385 started at Wed May 10 11:56:27 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:27 UTC 2017
ssl.sh: #5523: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:27 UTC 2017
ssl.sh: #5524: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:28 UTC 2017
ssl.sh: #5525: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:28 UTC 2017
ssl.sh: #5526: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:28 UTC 2017
ssl.sh: #5527: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:28 UTC 2017
ssl.sh: #5528: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:28 UTC 2017
ssl.sh: #5529: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:28 UTC 2017
ssl.sh: #5530: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:28 UTC 2017
ssl.sh: #5531: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:28 UTC 2017
ssl.sh: #5532: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:28 UTC 2017
ssl.sh: #5533: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:29 UTC 2017
ssl.sh: #5534: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:29 UTC 2017
ssl.sh: #5535: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:29 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5536: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:29 UTC 2017
ssl.sh: #5537: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:29 UTC 2017
ssl.sh: #5538: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:29 UTC 2017
ssl.sh: #5539: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:29 UTC 2017
ssl.sh: #5540: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:29 UTC 2017
ssl.sh: #5541: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:29 UTC 2017
ssl.sh: #5542: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:29 UTC 2017
ssl.sh: #5543: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:30 UTC 2017
ssl.sh: #5544: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:30 UTC 2017
ssl.sh: #5545: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:30 UTC 2017
ssl.sh: #5546: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:30 UTC 2017
ssl.sh: #5547: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:30 UTC 2017
ssl.sh: #5548: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:30 UTC 2017
ssl.sh: #5549: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5550: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:30 UTC 2017
ssl.sh: #5551: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:30 UTC 2017
ssl.sh: #5552: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:30 UTC 2017
ssl.sh: #5553: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:31 UTC 2017
ssl.sh: #5554: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:31 UTC 2017
ssl.sh: #5555: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:31 UTC 2017
ssl.sh: #5556: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:31 UTC 2017
ssl.sh: #5557: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:31 UTC 2017
ssl.sh: #5558: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:31 UTC 2017
ssl.sh: #5559: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:31 UTC 2017
ssl.sh: #5560: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:31 UTC 2017
ssl.sh: #5561: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:31 UTC 2017
ssl.sh: #5562: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25385 >/dev/null 2>/dev/null
selfserv_9323 with PID 25385 found at Wed May 10 11:56:31 UTC 2017
ssl.sh: #5563: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 25385 at Wed May 10 11:56:31 UTC 2017
kill -USR1 25385
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25385 killed at Wed May 10 11:56:31 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:31 UTC 2017
selfserv_9323 with PID 26808 started at Wed May 10 11:56:31 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:32 UTC 2017
ssl.sh: #5564: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:32 UTC 2017
ssl.sh: #5565: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:32 UTC 2017
ssl.sh: #5566: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:32 UTC 2017
ssl.sh: #5567: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:32 UTC 2017
ssl.sh: #5568: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:32 UTC 2017
ssl.sh: #5569: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:32 UTC 2017
ssl.sh: #5570: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:32 UTC 2017
ssl.sh: #5571: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:32 UTC 2017
ssl.sh: #5572: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:32 UTC 2017
ssl.sh: #5573: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:32 UTC 2017
ssl.sh: #5574: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:33 UTC 2017
ssl.sh: #5575: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:33 UTC 2017
ssl.sh: #5576: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5577: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:33 UTC 2017
ssl.sh: #5578: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:33 UTC 2017
ssl.sh: #5579: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:33 UTC 2017
ssl.sh: #5580: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:33 UTC 2017
ssl.sh: #5581: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:33 UTC 2017
ssl.sh: #5582: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:33 UTC 2017
ssl.sh: #5583: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:33 UTC 2017
ssl.sh: #5584: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:33 UTC 2017
ssl.sh: #5585: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:33 UTC 2017
ssl.sh: #5586: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:34 UTC 2017
ssl.sh: #5587: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:34 UTC 2017
ssl.sh: #5588: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:34 UTC 2017
ssl.sh: #5589: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:34 UTC 2017
ssl.sh: #5590: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5591: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:34 UTC 2017
ssl.sh: #5592: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:34 UTC 2017
ssl.sh: #5593: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:34 UTC 2017
ssl.sh: #5594: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:34 UTC 2017
ssl.sh: #5595: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:34 UTC 2017
ssl.sh: #5596: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:34 UTC 2017
ssl.sh: #5597: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:34 UTC 2017
ssl.sh: #5598: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:35 UTC 2017
ssl.sh: #5599: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:35 UTC 2017
ssl.sh: #5600: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:35 UTC 2017
ssl.sh: #5601: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:35 UTC 2017
ssl.sh: #5602: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:35 UTC 2017
ssl.sh: #5603: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26808 >/dev/null 2>/dev/null
selfserv_9323 with PID 26808 found at Wed May 10 11:56:35 UTC 2017
ssl.sh: #5604: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 26808 at Wed May 10 11:56:35 UTC 2017
kill -USR1 26808
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26808 killed at Wed May 10 11:56:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:35 UTC 2017
selfserv_9323 with PID 28233 started at Wed May 10 11:56:35 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:35 UTC 2017
ssl.sh: #5605: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:35 UTC 2017
ssl.sh: #5606: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:35 UTC 2017
ssl.sh: #5607: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:36 UTC 2017
ssl.sh: #5608: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:36 UTC 2017
ssl.sh: #5609: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:36 UTC 2017
ssl.sh: #5610: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:36 UTC 2017
ssl.sh: #5611: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:36 UTC 2017
ssl.sh: #5612: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:36 UTC 2017
ssl.sh: #5613: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:36 UTC 2017
ssl.sh: #5614: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:36 UTC 2017
ssl.sh: #5615: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:36 UTC 2017
ssl.sh: #5616: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:37 UTC 2017
ssl.sh: #5617: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5618: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:37 UTC 2017
ssl.sh: #5619: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:37 UTC 2017
ssl.sh: #5620: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:37 UTC 2017
ssl.sh: #5621: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:37 UTC 2017
ssl.sh: #5622: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:37 UTC 2017
ssl.sh: #5623: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:37 UTC 2017
ssl.sh: #5624: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:37 UTC 2017
ssl.sh: #5625: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:38 UTC 2017
ssl.sh: #5626: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:38 UTC 2017
ssl.sh: #5627: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:38 UTC 2017
ssl.sh: #5628: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:38 UTC 2017
ssl.sh: #5629: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:38 UTC 2017
ssl.sh: #5630: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:38 UTC 2017
ssl.sh: #5631: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5632: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:38 UTC 2017
ssl.sh: #5633: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:38 UTC 2017
ssl.sh: #5634: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:39 UTC 2017
ssl.sh: #5635: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:39 UTC 2017
ssl.sh: #5636: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:39 UTC 2017
ssl.sh: #5637: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:39 UTC 2017
ssl.sh: #5638: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:39 UTC 2017
ssl.sh: #5639: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:39 UTC 2017
ssl.sh: #5640: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:39 UTC 2017
ssl.sh: #5641: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:39 UTC 2017
ssl.sh: #5642: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:39 UTC 2017
ssl.sh: #5643: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:40 UTC 2017
ssl.sh: #5644: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9323 with PID 28233 found at Wed May 10 11:56:40 UTC 2017
ssl.sh: #5645: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28233 at Wed May 10 11:56:40 UTC 2017
kill -USR1 28233
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28233 killed at Wed May 10 11:56:40 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:40 UTC 2017
selfserv_9323 with PID 29655 started at Wed May 10 11:56:40 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:40 UTC 2017
ssl.sh: #5646: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:40 UTC 2017
ssl.sh: #5647: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:40 UTC 2017
ssl.sh: #5648: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:40 UTC 2017
ssl.sh: #5649: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:40 UTC 2017
ssl.sh: #5650: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:41 UTC 2017
ssl.sh: #5651: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:41 UTC 2017
ssl.sh: #5652: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:41 UTC 2017
ssl.sh: #5653: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:41 UTC 2017
ssl.sh: #5654: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:41 UTC 2017
ssl.sh: #5655: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:41 UTC 2017
ssl.sh: #5656: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:41 UTC 2017
ssl.sh: #5657: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:41 UTC 2017
ssl.sh: #5658: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5659: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:42 UTC 2017
ssl.sh: #5660: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:42 UTC 2017
ssl.sh: #5661: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:42 UTC 2017
ssl.sh: #5662: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:42 UTC 2017
ssl.sh: #5663: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:42 UTC 2017
ssl.sh: #5664: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:42 UTC 2017
ssl.sh: #5665: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:42 UTC 2017
ssl.sh: #5666: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:42 UTC 2017
ssl.sh: #5667: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:43 UTC 2017
ssl.sh: #5668: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:43 UTC 2017
ssl.sh: #5669: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:43 UTC 2017
ssl.sh: #5670: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:43 UTC 2017
ssl.sh: #5671: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:43 UTC 2017
ssl.sh: #5672: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5673: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:43 UTC 2017
ssl.sh: #5674: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:43 UTC 2017
ssl.sh: #5675: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:43 UTC 2017
ssl.sh: #5676: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:44 UTC 2017
ssl.sh: #5677: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:44 UTC 2017
ssl.sh: #5678: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:44 UTC 2017
ssl.sh: #5679: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:44 UTC 2017
ssl.sh: #5680: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:44 UTC 2017
ssl.sh: #5681: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:44 UTC 2017
ssl.sh: #5682: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:44 UTC 2017
ssl.sh: #5683: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:44 UTC 2017
ssl.sh: #5684: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:44 UTC 2017
ssl.sh: #5685: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29655 >/dev/null 2>/dev/null
selfserv_9323 with PID 29655 found at Wed May 10 11:56:45 UTC 2017
ssl.sh: #5686: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 29655 at Wed May 10 11:56:45 UTC 2017
kill -USR1 29655
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29655 killed at Wed May 10 11:56:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:45 UTC 2017
selfserv_9323 with PID 31077 started at Wed May 10 11:56:45 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:45 UTC 2017
ssl.sh: #5687: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:45 UTC 2017
ssl.sh: #5688: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:45 UTC 2017
ssl.sh: #5689: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:45 UTC 2017
ssl.sh: #5690: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:45 UTC 2017
ssl.sh: #5691: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:45 UTC 2017
ssl.sh: #5692: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:45 UTC 2017
ssl.sh: #5693: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:45 UTC 2017
ssl.sh: #5694: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:46 UTC 2017
ssl.sh: #5695: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:46 UTC 2017
ssl.sh: #5696: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:46 UTC 2017
ssl.sh: #5697: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:46 UTC 2017
ssl.sh: #5698: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:46 UTC 2017
ssl.sh: #5699: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5700: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:46 UTC 2017
ssl.sh: #5701: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:46 UTC 2017
ssl.sh: #5702: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:46 UTC 2017
ssl.sh: #5703: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:46 UTC 2017
ssl.sh: #5704: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:46 UTC 2017
ssl.sh: #5705: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:47 UTC 2017
ssl.sh: #5706: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:47 UTC 2017
ssl.sh: #5707: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:47 UTC 2017
ssl.sh: #5708: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:47 UTC 2017
ssl.sh: #5709: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:47 UTC 2017
ssl.sh: #5710: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:47 UTC 2017
ssl.sh: #5711: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:47 UTC 2017
ssl.sh: #5712: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:47 UTC 2017
ssl.sh: #5713: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5714: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:47 UTC 2017
ssl.sh: #5715: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:47 UTC 2017
ssl.sh: #5716: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:47 UTC 2017
ssl.sh: #5717: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:48 UTC 2017
ssl.sh: #5718: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:48 UTC 2017
ssl.sh: #5719: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:48 UTC 2017
ssl.sh: #5720: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:48 UTC 2017
ssl.sh: #5721: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:48 UTC 2017
ssl.sh: #5722: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:48 UTC 2017
ssl.sh: #5723: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:48 UTC 2017
ssl.sh: #5724: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:48 UTC 2017
ssl.sh: #5725: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:48 UTC 2017
ssl.sh: #5726: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 11:56:48 UTC 2017
ssl.sh: #5727: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 31077 at Wed May 10 11:56:48 UTC 2017
kill -USR1 31077
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31077 killed at Wed May 10 11:56:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32499 >/dev/null 2>/dev/null
selfserv_9323 with PID 32499 found at Wed May 10 11:56:48 UTC 2017
selfserv_9323 with PID 32499 started at Wed May 10 11:56:48 UTC 2017
trying to kill selfserv_9323 with PID 32499 at Wed May 10 11:56:48 UTC 2017
kill -USR1 32499
selfserv: 0 cache hits; 0 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 32499 killed at Wed May 10 11:56:48 UTC 2017
selfserv_9323 starting at Wed May 10 11:56:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:48 UTC 2017
selfserv_9323 with PID 32541 started at Wed May 10 11:56:48 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:49 UTC 2017
ssl.sh: #5728: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:49 UTC 2017
ssl.sh: #5729: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:49 UTC 2017
ssl.sh: #5730: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:49 UTC 2017
ssl.sh: #5731: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:49 UTC 2017
ssl.sh: #5732: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:49 UTC 2017
ssl.sh: #5733: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:49 UTC 2017
ssl.sh: #5734: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:49 UTC 2017
ssl.sh: #5735: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:49 UTC 2017
ssl.sh: #5736: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:49 UTC 2017
ssl.sh: #5737: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:50 UTC 2017
ssl.sh: #5738: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:50 UTC 2017
ssl.sh: #5739: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:50 UTC 2017
ssl.sh: #5740: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5741: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:50 UTC 2017
ssl.sh: #5742: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:50 UTC 2017
ssl.sh: #5743: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:50 UTC 2017
ssl.sh: #5744: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:50 UTC 2017
ssl.sh: #5745: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:50 UTC 2017
ssl.sh: #5746: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:50 UTC 2017
ssl.sh: #5747: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:50 UTC 2017
ssl.sh: #5748: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:51 UTC 2017
ssl.sh: #5749: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:51 UTC 2017
ssl.sh: #5750: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:51 UTC 2017
ssl.sh: #5751: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:51 UTC 2017
ssl.sh: #5752: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:51 UTC 2017
ssl.sh: #5753: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:51 UTC 2017
ssl.sh: #5754: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5755: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:51 UTC 2017
ssl.sh: #5756: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:51 UTC 2017
ssl.sh: #5757: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:51 UTC 2017
ssl.sh: #5758: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:51 UTC 2017
ssl.sh: #5759: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:52 UTC 2017
ssl.sh: #5760: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:52 UTC 2017
ssl.sh: #5761: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:52 UTC 2017
ssl.sh: #5762: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:52 UTC 2017
ssl.sh: #5763: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:52 UTC 2017
ssl.sh: #5764: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:52 UTC 2017
ssl.sh: #5765: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:52 UTC 2017
ssl.sh: #5766: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:52 UTC 2017
ssl.sh: #5767: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32541 >/dev/null 2>/dev/null
selfserv_9323 with PID 32541 found at Wed May 10 11:56:52 UTC 2017
ssl.sh: #5768: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 32541 at Wed May 10 11:56:52 UTC 2017
kill -USR1 32541
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 32541 killed at Wed May 10 11:56:52 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:52 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:52 UTC 2017
selfserv_9323 with PID 1562 started at Wed May 10 11:56:52 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:53 UTC 2017
ssl.sh: #5769: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:53 UTC 2017
ssl.sh: #5770: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:53 UTC 2017
ssl.sh: #5771: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:53 UTC 2017
ssl.sh: #5772: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:53 UTC 2017
ssl.sh: #5773: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:53 UTC 2017
ssl.sh: #5774: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:53 UTC 2017
ssl.sh: #5775: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:53 UTC 2017
ssl.sh: #5776: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:53 UTC 2017
ssl.sh: #5777: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:53 UTC 2017
ssl.sh: #5778: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:54 UTC 2017
ssl.sh: #5779: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:54 UTC 2017
ssl.sh: #5780: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:54 UTC 2017
ssl.sh: #5781: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5782: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:54 UTC 2017
ssl.sh: #5783: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:54 UTC 2017
ssl.sh: #5784: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:54 UTC 2017
ssl.sh: #5785: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:54 UTC 2017
ssl.sh: #5786: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:54 UTC 2017
ssl.sh: #5787: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:54 UTC 2017
ssl.sh: #5788: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:55 UTC 2017
ssl.sh: #5789: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:55 UTC 2017
ssl.sh: #5790: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:55 UTC 2017
ssl.sh: #5791: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:55 UTC 2017
ssl.sh: #5792: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:55 UTC 2017
ssl.sh: #5793: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:55 UTC 2017
ssl.sh: #5794: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:55 UTC 2017
ssl.sh: #5795: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5796: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:55 UTC 2017
ssl.sh: #5797: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:55 UTC 2017
ssl.sh: #5798: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:56 UTC 2017
ssl.sh: #5799: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:56 UTC 2017
ssl.sh: #5800: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:56 UTC 2017
ssl.sh: #5801: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:56 UTC 2017
ssl.sh: #5802: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:56 UTC 2017
ssl.sh: #5803: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:56 UTC 2017
ssl.sh: #5804: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:56 UTC 2017
ssl.sh: #5805: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:56 UTC 2017
ssl.sh: #5806: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:56 UTC 2017
ssl.sh: #5807: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:56 UTC 2017
ssl.sh: #5808: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1562 >/dev/null 2>/dev/null
selfserv_9323 with PID 1562 found at Wed May 10 11:56:57 UTC 2017
ssl.sh: #5809: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 1562 at Wed May 10 11:56:57 UTC 2017
kill -USR1 1562
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 1562 killed at Wed May 10 11:56:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:56:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:56:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:57 UTC 2017
selfserv_9323 with PID 2990 started at Wed May 10 11:56:57 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:57 UTC 2017
ssl.sh: #5810: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:57 UTC 2017
ssl.sh: #5811: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:57 UTC 2017
ssl.sh: #5812: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:57 UTC 2017
ssl.sh: #5813: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:57 UTC 2017
ssl.sh: #5814: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:57 UTC 2017
ssl.sh: #5815: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:57 UTC 2017
ssl.sh: #5816: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:57 UTC 2017
ssl.sh: #5817: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:57 UTC 2017
ssl.sh: #5818: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:58 UTC 2017
ssl.sh: #5819: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:58 UTC 2017
ssl.sh: #5820: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:58 UTC 2017
ssl.sh: #5821: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:58 UTC 2017
ssl.sh: #5822: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:58 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5823: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:58 UTC 2017
ssl.sh: #5824: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:58 UTC 2017
ssl.sh: #5825: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:58 UTC 2017
ssl.sh: #5826: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:58 UTC 2017
ssl.sh: #5827: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:58 UTC 2017
ssl.sh: #5828: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:58 UTC 2017
ssl.sh: #5829: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:58 UTC 2017
ssl.sh: #5830: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:59 UTC 2017
ssl.sh: #5831: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:59 UTC 2017
ssl.sh: #5832: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:59 UTC 2017
ssl.sh: #5833: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:59 UTC 2017
ssl.sh: #5834: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:59 UTC 2017
ssl.sh: #5835: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:59 UTC 2017
ssl.sh: #5836: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5837: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:59 UTC 2017
ssl.sh: #5838: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:59 UTC 2017
ssl.sh: #5839: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:59 UTC 2017
ssl.sh: #5840: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:56:59 UTC 2017
ssl.sh: #5841: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:57:00 UTC 2017
ssl.sh: #5842: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:57:00 UTC 2017
ssl.sh: #5843: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:57:00 UTC 2017
ssl.sh: #5844: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:57:00 UTC 2017
ssl.sh: #5845: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:57:00 UTC 2017
ssl.sh: #5846: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:57:00 UTC 2017
ssl.sh: #5847: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:57:00 UTC 2017
ssl.sh: #5848: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:57:00 UTC 2017
ssl.sh: #5849: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2990 >/dev/null 2>/dev/null
selfserv_9323 with PID 2990 found at Wed May 10 11:57:00 UTC 2017
ssl.sh: #5850: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 2990 at Wed May 10 11:57:00 UTC 2017
kill -USR1 2990
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 2990 killed at Wed May 10 11:57:00 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 11:57:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:57:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:00 UTC 2017
selfserv_9323 with PID 4412 started at Wed May 10 11:57:00 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:00 UTC 2017
ssl.sh: #5851: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:01 UTC 2017
ssl.sh: #5852: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:01 UTC 2017
ssl.sh: #5853: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:01 UTC 2017
ssl.sh: #5854: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:01 UTC 2017
ssl.sh: #5855: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:01 UTC 2017
ssl.sh: #5856: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:01 UTC 2017
ssl.sh: #5857: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:01 UTC 2017
ssl.sh: #5858: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:01 UTC 2017
ssl.sh: #5859: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:02 UTC 2017
ssl.sh: #5860: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:02 UTC 2017
ssl.sh: #5861: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:02 UTC 2017
ssl.sh: #5862: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:02 UTC 2017
ssl.sh: #5863: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5864: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:02 UTC 2017
ssl.sh: #5865: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:02 UTC 2017
ssl.sh: #5866: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:02 UTC 2017
ssl.sh: #5867: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:02 UTC 2017
ssl.sh: #5868: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:03 UTC 2017
ssl.sh: #5869: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:03 UTC 2017
ssl.sh: #5870: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:03 UTC 2017
ssl.sh: #5871: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:03 UTC 2017
ssl.sh: #5872: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:03 UTC 2017
ssl.sh: #5873: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:03 UTC 2017
ssl.sh: #5874: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:03 UTC 2017
ssl.sh: #5875: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:03 UTC 2017
ssl.sh: #5876: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:04 UTC 2017
ssl.sh: #5877: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5878: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:04 UTC 2017
ssl.sh: #5879: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:04 UTC 2017
ssl.sh: #5880: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:04 UTC 2017
ssl.sh: #5881: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:04 UTC 2017
ssl.sh: #5882: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:04 UTC 2017
ssl.sh: #5883: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:04 UTC 2017
ssl.sh: #5884: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:04 UTC 2017
ssl.sh: #5885: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:04 UTC 2017
ssl.sh: #5886: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:05 UTC 2017
ssl.sh: #5887: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:05 UTC 2017
ssl.sh: #5888: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:05 UTC 2017
ssl.sh: #5889: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:05 UTC 2017
ssl.sh: #5890: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4412 >/dev/null 2>/dev/null
selfserv_9323 with PID 4412 found at Wed May 10 11:57:05 UTC 2017
ssl.sh: #5891: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 4412 at Wed May 10 11:57:05 UTC 2017
kill -USR1 4412
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 4412 killed at Wed May 10 11:57:05 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:57:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:57:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:05 UTC 2017
selfserv_9323 with PID 5834 started at Wed May 10 11:57:05 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:05 UTC 2017
ssl.sh: #5892: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:05 UTC 2017
ssl.sh: #5893: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:05 UTC 2017
ssl.sh: #5894: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:05 UTC 2017
ssl.sh: #5895: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:06 UTC 2017
ssl.sh: #5896: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:06 UTC 2017
ssl.sh: #5897: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:06 UTC 2017
ssl.sh: #5898: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:06 UTC 2017
ssl.sh: #5899: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:06 UTC 2017
ssl.sh: #5900: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:06 UTC 2017
ssl.sh: #5901: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:06 UTC 2017
ssl.sh: #5902: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:06 UTC 2017
ssl.sh: #5903: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:07 UTC 2017
ssl.sh: #5904: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5905: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:07 UTC 2017
ssl.sh: #5906: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:07 UTC 2017
ssl.sh: #5907: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:07 UTC 2017
ssl.sh: #5908: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:07 UTC 2017
ssl.sh: #5909: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:07 UTC 2017
ssl.sh: #5910: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:07 UTC 2017
ssl.sh: #5911: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:07 UTC 2017
ssl.sh: #5912: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:07 UTC 2017
ssl.sh: #5913: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:08 UTC 2017
ssl.sh: #5914: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:08 UTC 2017
ssl.sh: #5915: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:08 UTC 2017
ssl.sh: #5916: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:08 UTC 2017
ssl.sh: #5917: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:08 UTC 2017
ssl.sh: #5918: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5919: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:08 UTC 2017
ssl.sh: #5920: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:08 UTC 2017
ssl.sh: #5921: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:08 UTC 2017
ssl.sh: #5922: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:09 UTC 2017
ssl.sh: #5923: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:09 UTC 2017
ssl.sh: #5924: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:09 UTC 2017
ssl.sh: #5925: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:09 UTC 2017
ssl.sh: #5926: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:09 UTC 2017
ssl.sh: #5927: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:09 UTC 2017
ssl.sh: #5928: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:09 UTC 2017
ssl.sh: #5929: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:09 UTC 2017
ssl.sh: #5930: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:09 UTC 2017
ssl.sh: #5931: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5834 >/dev/null 2>/dev/null
selfserv_9323 with PID 5834 found at Wed May 10 11:57:10 UTC 2017
ssl.sh: #5932: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5834 at Wed May 10 11:57:10 UTC 2017
kill -USR1 5834
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5834 killed at Wed May 10 11:57:10 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:57:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:57:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:10 UTC 2017
selfserv_9323 with PID 7256 started at Wed May 10 11:57:10 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:10 UTC 2017
ssl.sh: #5933: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:10 UTC 2017
ssl.sh: #5934: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:10 UTC 2017
ssl.sh: #5935: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:10 UTC 2017
ssl.sh: #5936: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:10 UTC 2017
ssl.sh: #5937: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:10 UTC 2017
ssl.sh: #5938: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:10 UTC 2017
ssl.sh: #5939: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:10 UTC 2017
ssl.sh: #5940: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:10 UTC 2017
ssl.sh: #5941: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:11 UTC 2017
ssl.sh: #5942: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:11 UTC 2017
ssl.sh: #5943: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:11 UTC 2017
ssl.sh: #5944: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:11 UTC 2017
ssl.sh: #5945: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5946: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:11 UTC 2017
ssl.sh: #5947: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:11 UTC 2017
ssl.sh: #5948: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:11 UTC 2017
ssl.sh: #5949: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:11 UTC 2017
ssl.sh: #5950: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:11 UTC 2017
ssl.sh: #5951: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:11 UTC 2017
ssl.sh: #5952: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:12 UTC 2017
ssl.sh: #5953: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:12 UTC 2017
ssl.sh: #5954: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:12 UTC 2017
ssl.sh: #5955: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:12 UTC 2017
ssl.sh: #5956: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:12 UTC 2017
ssl.sh: #5957: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:12 UTC 2017
ssl.sh: #5958: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:12 UTC 2017
ssl.sh: #5959: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:12 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5960: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:12 UTC 2017
ssl.sh: #5961: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:12 UTC 2017
ssl.sh: #5962: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:13 UTC 2017
ssl.sh: #5963: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:13 UTC 2017
ssl.sh: #5964: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:13 UTC 2017
ssl.sh: #5965: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:13 UTC 2017
ssl.sh: #5966: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:13 UTC 2017
ssl.sh: #5967: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:13 UTC 2017
ssl.sh: #5968: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:13 UTC 2017
ssl.sh: #5969: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:13 UTC 2017
ssl.sh: #5970: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:13 UTC 2017
ssl.sh: #5971: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:13 UTC 2017
ssl.sh: #5972: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7256 >/dev/null 2>/dev/null
selfserv_9323 with PID 7256 found at Wed May 10 11:57:14 UTC 2017
ssl.sh: #5973: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 7256 at Wed May 10 11:57:14 UTC 2017
kill -USR1 7256
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 7256 killed at Wed May 10 11:57:14 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 11:57:14 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 11:57:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8699 >/dev/null 2>/dev/null
selfserv_9323 with PID 8699 found at Wed May 10 11:57:14 UTC 2017
selfserv_9323 with PID 8699 started at Wed May 10 11:57:14 UTC 2017
trying to kill selfserv_9323 with PID 8699 at Wed May 10 11:57:14 UTC 2017
kill -USR1 8699
selfserv: 0 cache hits; 0 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8699 killed at Wed May 10 11:57:14 UTC 2017
TIMESTAMP ssl END: Wed May 10 11:57:14 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Wed May 10 11:57:14 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Wed May 10 11:57:14 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Wed May 10 11:57:14 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Wed May 10 11:57:14 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Wed May 10 11:57:14 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #5974: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115715 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5975: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #5976: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5977: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #5978: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5979: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5980: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5981: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5982: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #5983: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5984: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5985: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5986: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5987: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #5988: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5989: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9334
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5990: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5991: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5992: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #5993: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5994: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5995: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5996: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #5997: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5998: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5999: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6000: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #6001: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6002: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6003: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6004: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #6005: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6006: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6007: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6008: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #6009: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6010: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9334
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6011: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6012: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #6013: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6014: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6015: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6016: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #6017: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6018: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6019: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6020: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #6021: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6022: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9334
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6023: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6024: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #6025: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6026: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6027: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6028: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #6029: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6030: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6031: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6032: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #6033: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6034: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9334
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6035: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6036: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170510115719Z
nextupdate=20180510115719Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed May 10 11:57:19 2017
    Next Update: Thu May 10 11:57:19 2018
    CRL Extensions:
chains.sh: #6037: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170510115720Z
addcert 2 20170510115720Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed May 10 11:57:20 2017
    Next Update: Thu May 10 11:57:19 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 11:57:20 2017
    CRL Extensions:
chains.sh: #6038: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510115720Z
nextupdate=20180510115720Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 11:57:20 2017
    Next Update: Thu May 10 11:57:20 2018
    CRL Extensions:
chains.sh: #6039: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510115721Z
addcert 2 20170510115721Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 11:57:21 2017
    Next Update: Thu May 10 11:57:20 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 11:57:21 2017
    CRL Extensions:
chains.sh: #6040: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510115722Z
addcert 4 20170510115722Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 11:57:22 2017
    Next Update: Thu May 10 11:57:20 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 11:57:21 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Wed May 10 11:57:22 2017
    CRL Extensions:
chains.sh: #6041: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510115722Z
nextupdate=20180510115722Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 11:57:22 2017
    Next Update: Thu May 10 11:57:22 2018
    CRL Extensions:
chains.sh: #6042: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510115723Z
addcert 2 20170510115723Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 11:57:23 2017
    Next Update: Thu May 10 11:57:22 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 11:57:23 2017
    CRL Extensions:
chains.sh: #6043: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510115724Z
addcert 3 20170510115724Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 11:57:24 2017
    Next Update: Thu May 10 11:57:22 2018
    Entry 1 (0x1):
        Serial Number: 3 (0x3)
        Revocation Date: Wed May 10 11:57:24 2017
    Entry 2 (0x2):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 11:57:23 2017
    CRL Extensions:
chains.sh: #6044: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510115724Z
nextupdate=20180510115724Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 11:57:24 2017
    Next Update: Thu May 10 11:57:24 2018
    CRL Extensions:
chains.sh: #6045: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510115725Z
addcert 2 20170510115725Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 11:57:25 2017
    Next Update: Thu May 10 11:57:24 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 11:57:25 2017
    CRL Extensions:
chains.sh: #6046: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510115726Z
addcert 3 20170510115726Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 11:57:26 2017
    Next Update: Thu May 10 11:57:24 2018
    Entry 1 (0x1):
        Serial Number: 3 (0x3)
        Revocation Date: Wed May 10 11:57:26 2017
    Entry 2 (0x2):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 11:57:25 2017
    CRL Extensions:
chains.sh: #6047: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #6048: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #6049: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #6050: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6051: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6052: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6053: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6054: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #6055: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #6056: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #6057: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #6058: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #6059: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #6060: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #6061: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #6062: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #6063: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #6064: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #6065: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #6066: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #6067: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #6068: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #6069: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #6070: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #6071: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Wed May 10 11:57:26 UTC 2017
httpserv -D -p 9333  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/aiahttp/http_pid.24947  &
trying to connect to httpserv at Wed May 10 11:57:26 UTC 2017
tstclnt -p 9333 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9333 (address=::1)
tstclnt: exiting with return code 0
kill -0 10155 >/dev/null 2>/dev/null
httpserv with PID 10155 found at Wed May 10 11:57:26 UTC 2017
httpserv with PID 10155 started at Wed May 10 11:57:26 UTC 2017
tstclnt -h localhost.localdomain -p 9333 -q -t 20
chains.sh: #6072: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115715 (0x1e67bf83)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed May 10 11:57:14 2017
            Not After : Tue May 10 11:57:14 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:6c:b9:9c:09:37:d4:32:f0:1b:92:52:6c:2f:12:07:
                    9a:a6:66:83:a0:99:49:28:5f:46:ad:fa:94:0a:ae:b1:
                    29:02:4d:b2:16:1e:b4:af:64:86:3a:1b:e1:d3:b2:ca:
                    89:6c:18:52:2d:ad:9a:fa:50:f9:5c:0f:24:bf:da:ac:
                    48:da:13:bc:84:87:69:ed:56:52:33:76:cc:d0:d8:92:
                    5d:09:68:46:c9:2e:2e:5f:b2:6c:7c:9c:6d:1e:2e:37:
                    91:88:c6:e2:3d:c7:46:42:a7:11:88:aa:1a:d3:3b:f7:
                    a5:96:9a:91:a7:4b:7a:80:85:46:ce:75:d6:5b:d3:f6:
                    54:bb:c7:fd:b2:56:de:d9:1f:b7:cf:ae:dd:8b:4c:a9:
                    49:e1:cd:f9:3b:a4:79:73:2c:cc:a4:97:d4:c1:17:cb:
                    1f:17:1e:5e:97:fe:1f:1e:08:da:b0:b2:29:32:92:a6:
                    6d:6f:99:e5:5d:ed:3e:88:6d:54:89:02:dc:bf:f0:ef:
                    a3:9f:17:c2:db:f2:a5:53:9c:fd:54:d6:71:ed:ff:6e:
                    8c:ce:4b:1f:55:5f:7c:b5:a7:76:c4:47:a8:31:14:25:
                    9b:4e:40:1e:07:05:d6:65:d3:1a:fe:1c:41:69:49:1b:
                    5e:9d:a8:6f:fd:70:d8:fd:35:47:dc:a5:01:86:0e:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5d:28:84:a0:86:24:5d:59:45:60:10:a1:7f:5a:63:71:
        c1:e0:e0:59:f0:36:f7:fb:9d:13:72:66:2c:81:d8:07:
        46:73:fb:58:71:a5:3c:03:37:7b:fc:a2:71:f8:f3:00:
        9a:3b:30:f8:f8:0c:98:df:1d:f8:87:7e:7e:7f:7a:6d:
        d8:90:69:5e:e0:4d:4f:79:0f:06:c6:00:ea:c7:6f:ac:
        b1:cc:1e:df:89:e8:ad:c4:d2:25:b9:2d:18:63:2c:88:
        16:b1:2c:06:2c:54:38:08:72:ec:c8:16:1c:be:45:8c:
        18:68:af:b3:98:aa:bf:f6:b3:c7:cb:49:c0:dc:a3:a6:
        63:6a:44:a6:e0:83:0c:8c:5d:01:c0:44:32:b4:87:b8:
        c6:8e:de:0c:85:7e:cf:fb:f0:29:8c:e7:63:f5:60:56:
        0b:a2:3a:e6:12:a7:ef:39:70:2c:4c:fd:db:b5:f5:7e:
        e5:9a:2c:27:58:ac:a6:f5:49:5f:f3:57:a8:f3:d4:0b:
        95:34:1e:f8:5e:0d:a6:41:57:86:d6:97:c9:fd:75:de:
        73:3d:b6:43:51:92:36:e9:49:73:0c:f0:39:fa:3f:55:
        90:9d:e5:0a:e5:da:dc:b4:54:66:f1:bc:57:c0:c4:0c:
        2d:96:f1:ed:89:1a:23:7c:1e:36:81:3a:e7:b8:29:6b
    Fingerprint (SHA-256):
        F5:DC:FB:66:2A:4E:43:D9:B8:EE:91:11:BE:8E:F0:70:AE:8C:F5:93:59:B7:30:A8:BC:D3:06:AC:CC:53:13:4B
    Fingerprint (SHA1):
        37:18:D1:DD:6A:48:86:1D:7A:3D:8E:20:FF:0B:42:EE:1A:D7:04:77
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6073: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6074: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6075: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 10155 at Wed May 10 11:57:27 UTC 2017
kill -USR1 10155
httpserv: normal termination
httpserv -b -p 9333 2>/dev/null;
httpserv with PID 10155 killed at Wed May 10 11:57:27 UTC 2017
httpserv starting at Wed May 10 11:57:27 UTC 2017
httpserv -D -p 9333  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/aiahttp/http_pid.24947  &
trying to connect to httpserv at Wed May 10 11:57:27 UTC 2017
tstclnt -p 9333 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9333 (address=::1)
tstclnt: exiting with return code 0
kill -0 10324 >/dev/null 2>/dev/null
httpserv with PID 10324 found at Wed May 10 11:57:27 UTC 2017
httpserv with PID 10324 started at Wed May 10 11:57:27 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6076: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6077: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6078: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9333 -q -t 20
chains.sh: #6079: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115715 (0x1e67bf83)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed May 10 11:57:14 2017
            Not After : Tue May 10 11:57:14 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:6c:b9:9c:09:37:d4:32:f0:1b:92:52:6c:2f:12:07:
                    9a:a6:66:83:a0:99:49:28:5f:46:ad:fa:94:0a:ae:b1:
                    29:02:4d:b2:16:1e:b4:af:64:86:3a:1b:e1:d3:b2:ca:
                    89:6c:18:52:2d:ad:9a:fa:50:f9:5c:0f:24:bf:da:ac:
                    48:da:13:bc:84:87:69:ed:56:52:33:76:cc:d0:d8:92:
                    5d:09:68:46:c9:2e:2e:5f:b2:6c:7c:9c:6d:1e:2e:37:
                    91:88:c6:e2:3d:c7:46:42:a7:11:88:aa:1a:d3:3b:f7:
                    a5:96:9a:91:a7:4b:7a:80:85:46:ce:75:d6:5b:d3:f6:
                    54:bb:c7:fd:b2:56:de:d9:1f:b7:cf:ae:dd:8b:4c:a9:
                    49:e1:cd:f9:3b:a4:79:73:2c:cc:a4:97:d4:c1:17:cb:
                    1f:17:1e:5e:97:fe:1f:1e:08:da:b0:b2:29:32:92:a6:
                    6d:6f:99:e5:5d:ed:3e:88:6d:54:89:02:dc:bf:f0:ef:
                    a3:9f:17:c2:db:f2:a5:53:9c:fd:54:d6:71:ed:ff:6e:
                    8c:ce:4b:1f:55:5f:7c:b5:a7:76:c4:47:a8:31:14:25:
                    9b:4e:40:1e:07:05:d6:65:d3:1a:fe:1c:41:69:49:1b:
                    5e:9d:a8:6f:fd:70:d8:fd:35:47:dc:a5:01:86:0e:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5d:28:84:a0:86:24:5d:59:45:60:10:a1:7f:5a:63:71:
        c1:e0:e0:59:f0:36:f7:fb:9d:13:72:66:2c:81:d8:07:
        46:73:fb:58:71:a5:3c:03:37:7b:fc:a2:71:f8:f3:00:
        9a:3b:30:f8:f8:0c:98:df:1d:f8:87:7e:7e:7f:7a:6d:
        d8:90:69:5e:e0:4d:4f:79:0f:06:c6:00:ea:c7:6f:ac:
        b1:cc:1e:df:89:e8:ad:c4:d2:25:b9:2d:18:63:2c:88:
        16:b1:2c:06:2c:54:38:08:72:ec:c8:16:1c:be:45:8c:
        18:68:af:b3:98:aa:bf:f6:b3:c7:cb:49:c0:dc:a3:a6:
        63:6a:44:a6:e0:83:0c:8c:5d:01:c0:44:32:b4:87:b8:
        c6:8e:de:0c:85:7e:cf:fb:f0:29:8c:e7:63:f5:60:56:
        0b:a2:3a:e6:12:a7:ef:39:70:2c:4c:fd:db:b5:f5:7e:
        e5:9a:2c:27:58:ac:a6:f5:49:5f:f3:57:a8:f3:d4:0b:
        95:34:1e:f8:5e:0d:a6:41:57:86:d6:97:c9:fd:75:de:
        73:3d:b6:43:51:92:36:e9:49:73:0c:f0:39:fa:3f:55:
        90:9d:e5:0a:e5:da:dc:b4:54:66:f1:bc:57:c0:c4:0c:
        2d:96:f1:ed:89:1a:23:7c:1e:36:81:3a:e7:b8:29:6b
    Fingerprint (SHA-256):
        F5:DC:FB:66:2A:4E:43:D9:B8:EE:91:11:BE:8E:F0:70:AE:8C:F5:93:59:B7:30:A8:BC:D3:06:AC:CC:53:13:4B
    Fingerprint (SHA1):
        37:18:D1:DD:6A:48:86:1D:7A:3D:8E:20:FF:0B:42:EE:1A:D7:04:77
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6080: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6081: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6082: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 10324 at Wed May 10 11:57:27 UTC 2017
kill -USR1 10324
httpserv: normal termination
httpserv -b -p 9333 2>/dev/null;
httpserv with PID 10324 killed at Wed May 10 11:57:27 UTC 2017
httpserv starting at Wed May 10 11:57:27 UTC 2017
httpserv -D -p 9333  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/aiahttp/http_pid.24947  &
trying to connect to httpserv at Wed May 10 11:57:27 UTC 2017
tstclnt -p 9333 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9333 (address=::1)
tstclnt: exiting with return code 0
kill -0 10571 >/dev/null 2>/dev/null
httpserv with PID 10571 found at Wed May 10 11:57:27 UTC 2017
httpserv with PID 10571 started at Wed May 10 11:57:27 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6083: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6084: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115716 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6085: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6086: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6087: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115717 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6088: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6089: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6090: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6091: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510115718 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6092: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6093: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510115719 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6094: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6095: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6096: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6097: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6098: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 510115720   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6099: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6100: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6101: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #6102: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #6103: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115717 (0x1e67bf85)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:57:28 2017
            Not After : Tue May 10 11:57:28 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:56:1d:02:55:d2:bf:14:f7:1a:2c:4f:02:01:7b:92:
                    51:ce:f2:f8:c2:e5:da:85:ed:7d:ef:53:9f:18:98:2e:
                    b0:ca:ea:19:c0:10:ec:2f:7f:7a:28:3a:b9:5b:1d:ce:
                    7f:77:b9:71:9a:ee:5d:6f:ff:db:ce:61:b1:35:ff:26:
                    7c:95:b9:e1:f8:e3:26:d9:99:cf:02:aa:72:de:56:38:
                    f4:3f:ae:ce:b1:b0:f0:86:88:c0:32:d1:74:19:9f:bb:
                    5c:d6:78:e4:c5:fb:38:68:30:1e:90:8c:13:e3:63:dd:
                    a3:34:e5:7e:c4:d0:91:05:bd:f0:42:72:7f:b9:48:00:
                    3c:3a:4f:e1:2c:19:b6:34:76:16:7a:20:0a:0e:f1:ec:
                    b9:35:f9:94:b4:e1:2d:e5:70:95:8f:8c:df:fa:7d:ab:
                    fe:76:82:62:47:6b:f2:f4:a9:0e:3f:ae:96:b9:d7:e0:
                    8c:4b:fe:19:12:10:ad:6d:b4:29:24:73:b5:99:0f:a1:
                    03:08:eb:e0:d7:2f:40:11:dc:c9:ae:de:9e:ae:88:20:
                    3f:14:95:ef:af:6e:47:b7:a8:3d:e6:29:45:fd:25:e1:
                    4a:55:71:ff:d2:f9:c9:50:24:7f:c6:ff:89:7e:6b:12:
                    b7:25:6a:25:f3:fe:fc:43:3f:4f:a8:fb:d4:ee:21:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:77:1a:4b:cc:ad:2b:a3:dc:5f:b0:a8:0b:a9:20:21:
        d5:c6:2b:c9:7e:ca:31:e4:cd:f5:c7:39:12:ed:f6:cf:
        77:02:ee:86:c6:1b:f4:c0:aa:71:ee:9c:da:de:1d:81:
        92:f3:dd:a1:23:79:a2:87:2a:e3:b7:90:09:84:01:a6:
        f0:08:b3:42:e0:33:20:72:a8:48:e4:ae:29:3d:b3:f3:
        49:cb:df:cc:99:c5:ea:6d:99:57:7c:e0:8f:6e:af:3c:
        d1:43:33:3a:6c:b2:5b:f1:8d:a6:ee:e0:5f:45:28:8b:
        f6:d7:53:b3:1a:fb:23:6f:6b:1f:92:bb:4a:cb:3a:8b:
        06:e7:6f:25:38:1b:10:9e:34:b3:13:12:d4:45:0b:13:
        eb:d3:ce:91:8a:cf:db:e0:5a:66:97:c8:9e:1c:5d:40:
        72:84:96:64:c8:f0:e8:5c:b5:d1:4e:29:7d:38:1e:9f:
        cf:9c:db:ee:98:a4:9e:e4:c8:8c:1c:97:e8:10:38:10:
        62:f6:2a:8d:96:cc:6c:44:c1:82:f2:36:71:0c:61:87:
        5c:ce:0c:cc:87:d1:d1:fd:f7:d6:eb:b2:33:53:67:af:
        cc:d4:90:28:bd:8a:b8:c7:f3:52:41:45:28:ee:3f:ed:
        8e:29:3e:10:0c:d3:e2:cf:79:f5:bf:99:95:57:e9:fe
    Fingerprint (SHA-256):
        4A:90:19:5F:25:B7:3F:BA:5B:43:87:69:EA:BB:55:1D:6B:0D:31:B7:A9:BC:67:E6:A8:8C:B2:5D:BC:6A:39:BC
    Fingerprint (SHA1):
        37:3E:C3:09:D7:C3:8A:4F:55:FE:69:46:6F:E7:E6:08:1D:F9:89:22
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6104: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115716 (0x1e67bf84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:57:27 2017
            Not After : Tue May 10 11:57:27 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:f9:90:10:e3:6d:88:01:a8:c0:8e:ec:95:53:0c:9f:
                    d7:45:c1:d3:d9:81:f9:8c:a1:57:10:10:e3:a5:73:89:
                    98:98:78:99:5b:c5:05:77:e8:15:d4:8b:0d:0f:44:79:
                    ef:73:21:df:ef:2d:17:09:bd:ce:90:09:62:c2:ed:53:
                    bd:14:87:d1:b3:95:cd:a2:ec:ce:c0:4a:ce:0e:0b:d0:
                    65:01:b4:9c:75:45:4c:a1:46:7f:b7:a2:24:b6:1f:7f:
                    36:db:16:c5:aa:94:16:0e:d7:d6:e9:72:f5:98:ad:32:
                    00:f5:b1:c7:11:65:1d:a5:fe:44:4d:50:43:67:47:71:
                    89:a1:17:6a:2f:f2:db:e4:a9:82:fb:ea:d2:4d:43:48:
                    be:70:52:20:fc:0c:82:e7:ed:6a:d5:8b:0a:10:d6:95:
                    57:7d:00:89:ec:37:9e:4e:ca:ab:2d:b7:5e:b4:b3:00:
                    39:b3:1c:6d:10:d1:f0:65:b7:e3:d2:37:10:f8:a4:b0:
                    d5:44:5b:9c:0e:9f:59:21:e2:33:aa:83:1d:e3:34:38:
                    a4:6e:7e:2b:64:6f:0f:8a:6d:61:a7:52:48:7a:b7:ab:
                    9a:99:94:ad:fe:6f:a1:b2:23:79:0e:7a:17:a8:49:3a:
                    e8:ed:27:6f:1b:0c:6f:93:bc:62:ff:e6:4a:f1:5d:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        21:a2:27:c2:2f:3d:04:53:fb:5b:62:fd:a5:93:26:b6:
        3d:5a:e4:0c:27:df:0a:ed:b9:6e:57:ed:99:58:53:19:
        fb:85:40:e8:d2:38:4a:30:75:2b:98:b0:17:8b:cd:16:
        e8:58:54:77:e5:b9:ae:e1:4e:e0:f5:6b:e3:5b:47:f0:
        d8:32:d0:cb:44:a0:3d:d6:10:fd:7f:9f:9e:06:0e:a8:
        a9:1b:2d:f4:bb:52:51:62:5f:b7:f6:97:f5:cb:bd:e9:
        82:fd:86:de:2a:61:d1:41:75:d7:dd:b9:ca:00:f7:9a:
        29:63:5b:f8:79:a5:54:bd:01:ec:7f:c1:32:2e:21:e0:
        f5:a5:fc:0e:c3:8d:d5:7f:3f:09:d2:43:9d:fe:c3:62:
        dd:38:6f:61:8e:2a:56:8c:c1:eb:14:e6:df:ed:63:47:
        d9:8d:47:8a:ea:5a:bc:8c:44:49:0c:11:22:85:a8:da:
        45:6a:70:c7:13:b3:d0:6f:4e:af:0d:ab:17:a0:e8:79:
        f3:0f:39:77:5f:e0:6b:25:d2:6e:de:e8:51:6b:2c:0d:
        50:ea:43:79:08:ea:11:05:34:de:2c:c1:d8:0e:72:27:
        e5:db:61:5f:9c:bd:4c:10:30:a9:5d:ba:b5:92:a9:9e:
        83:08:04:33:41:52:f4:62:64:9c:49:aa:0e:67:e8:a0
    Fingerprint (SHA-256):
        8E:CD:49:00:F9:20:95:50:EC:0F:93:DC:E8:0B:BF:5F:1E:DE:52:95:D3:57:8D:80:29:F8:85:E3:92:63:F6:8E
    Fingerprint (SHA1):
        A7:51:94:DA:CB:EF:53:F6:5D:3D:77:21:FA:73:A6:88:BC:ED:4B:E3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6105: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6106: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #6107: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #6108: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115716 (0x1e67bf84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:57:27 2017
            Not After : Tue May 10 11:57:27 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:f9:90:10:e3:6d:88:01:a8:c0:8e:ec:95:53:0c:9f:
                    d7:45:c1:d3:d9:81:f9:8c:a1:57:10:10:e3:a5:73:89:
                    98:98:78:99:5b:c5:05:77:e8:15:d4:8b:0d:0f:44:79:
                    ef:73:21:df:ef:2d:17:09:bd:ce:90:09:62:c2:ed:53:
                    bd:14:87:d1:b3:95:cd:a2:ec:ce:c0:4a:ce:0e:0b:d0:
                    65:01:b4:9c:75:45:4c:a1:46:7f:b7:a2:24:b6:1f:7f:
                    36:db:16:c5:aa:94:16:0e:d7:d6:e9:72:f5:98:ad:32:
                    00:f5:b1:c7:11:65:1d:a5:fe:44:4d:50:43:67:47:71:
                    89:a1:17:6a:2f:f2:db:e4:a9:82:fb:ea:d2:4d:43:48:
                    be:70:52:20:fc:0c:82:e7:ed:6a:d5:8b:0a:10:d6:95:
                    57:7d:00:89:ec:37:9e:4e:ca:ab:2d:b7:5e:b4:b3:00:
                    39:b3:1c:6d:10:d1:f0:65:b7:e3:d2:37:10:f8:a4:b0:
                    d5:44:5b:9c:0e:9f:59:21:e2:33:aa:83:1d:e3:34:38:
                    a4:6e:7e:2b:64:6f:0f:8a:6d:61:a7:52:48:7a:b7:ab:
                    9a:99:94:ad:fe:6f:a1:b2:23:79:0e:7a:17:a8:49:3a:
                    e8:ed:27:6f:1b:0c:6f:93:bc:62:ff:e6:4a:f1:5d:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        21:a2:27:c2:2f:3d:04:53:fb:5b:62:fd:a5:93:26:b6:
        3d:5a:e4:0c:27:df:0a:ed:b9:6e:57:ed:99:58:53:19:
        fb:85:40:e8:d2:38:4a:30:75:2b:98:b0:17:8b:cd:16:
        e8:58:54:77:e5:b9:ae:e1:4e:e0:f5:6b:e3:5b:47:f0:
        d8:32:d0:cb:44:a0:3d:d6:10:fd:7f:9f:9e:06:0e:a8:
        a9:1b:2d:f4:bb:52:51:62:5f:b7:f6:97:f5:cb:bd:e9:
        82:fd:86:de:2a:61:d1:41:75:d7:dd:b9:ca:00:f7:9a:
        29:63:5b:f8:79:a5:54:bd:01:ec:7f:c1:32:2e:21:e0:
        f5:a5:fc:0e:c3:8d:d5:7f:3f:09:d2:43:9d:fe:c3:62:
        dd:38:6f:61:8e:2a:56:8c:c1:eb:14:e6:df:ed:63:47:
        d9:8d:47:8a:ea:5a:bc:8c:44:49:0c:11:22:85:a8:da:
        45:6a:70:c7:13:b3:d0:6f:4e:af:0d:ab:17:a0:e8:79:
        f3:0f:39:77:5f:e0:6b:25:d2:6e:de:e8:51:6b:2c:0d:
        50:ea:43:79:08:ea:11:05:34:de:2c:c1:d8:0e:72:27:
        e5:db:61:5f:9c:bd:4c:10:30:a9:5d:ba:b5:92:a9:9e:
        83:08:04:33:41:52:f4:62:64:9c:49:aa:0e:67:e8:a0
    Fingerprint (SHA-256):
        8E:CD:49:00:F9:20:95:50:EC:0F:93:DC:E8:0B:BF:5F:1E:DE:52:95:D3:57:8D:80:29:F8:85:E3:92:63:F6:8E
    Fingerprint (SHA1):
        A7:51:94:DA:CB:EF:53:F6:5D:3D:77:21:FA:73:A6:88:BC:ED:4B:E3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6109: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115717 (0x1e67bf85)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:57:28 2017
            Not After : Tue May 10 11:57:28 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:56:1d:02:55:d2:bf:14:f7:1a:2c:4f:02:01:7b:92:
                    51:ce:f2:f8:c2:e5:da:85:ed:7d:ef:53:9f:18:98:2e:
                    b0:ca:ea:19:c0:10:ec:2f:7f:7a:28:3a:b9:5b:1d:ce:
                    7f:77:b9:71:9a:ee:5d:6f:ff:db:ce:61:b1:35:ff:26:
                    7c:95:b9:e1:f8:e3:26:d9:99:cf:02:aa:72:de:56:38:
                    f4:3f:ae:ce:b1:b0:f0:86:88:c0:32:d1:74:19:9f:bb:
                    5c:d6:78:e4:c5:fb:38:68:30:1e:90:8c:13:e3:63:dd:
                    a3:34:e5:7e:c4:d0:91:05:bd:f0:42:72:7f:b9:48:00:
                    3c:3a:4f:e1:2c:19:b6:34:76:16:7a:20:0a:0e:f1:ec:
                    b9:35:f9:94:b4:e1:2d:e5:70:95:8f:8c:df:fa:7d:ab:
                    fe:76:82:62:47:6b:f2:f4:a9:0e:3f:ae:96:b9:d7:e0:
                    8c:4b:fe:19:12:10:ad:6d:b4:29:24:73:b5:99:0f:a1:
                    03:08:eb:e0:d7:2f:40:11:dc:c9:ae:de:9e:ae:88:20:
                    3f:14:95:ef:af:6e:47:b7:a8:3d:e6:29:45:fd:25:e1:
                    4a:55:71:ff:d2:f9:c9:50:24:7f:c6:ff:89:7e:6b:12:
                    b7:25:6a:25:f3:fe:fc:43:3f:4f:a8:fb:d4:ee:21:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:77:1a:4b:cc:ad:2b:a3:dc:5f:b0:a8:0b:a9:20:21:
        d5:c6:2b:c9:7e:ca:31:e4:cd:f5:c7:39:12:ed:f6:cf:
        77:02:ee:86:c6:1b:f4:c0:aa:71:ee:9c:da:de:1d:81:
        92:f3:dd:a1:23:79:a2:87:2a:e3:b7:90:09:84:01:a6:
        f0:08:b3:42:e0:33:20:72:a8:48:e4:ae:29:3d:b3:f3:
        49:cb:df:cc:99:c5:ea:6d:99:57:7c:e0:8f:6e:af:3c:
        d1:43:33:3a:6c:b2:5b:f1:8d:a6:ee:e0:5f:45:28:8b:
        f6:d7:53:b3:1a:fb:23:6f:6b:1f:92:bb:4a:cb:3a:8b:
        06:e7:6f:25:38:1b:10:9e:34:b3:13:12:d4:45:0b:13:
        eb:d3:ce:91:8a:cf:db:e0:5a:66:97:c8:9e:1c:5d:40:
        72:84:96:64:c8:f0:e8:5c:b5:d1:4e:29:7d:38:1e:9f:
        cf:9c:db:ee:98:a4:9e:e4:c8:8c:1c:97:e8:10:38:10:
        62:f6:2a:8d:96:cc:6c:44:c1:82:f2:36:71:0c:61:87:
        5c:ce:0c:cc:87:d1:d1:fd:f7:d6:eb:b2:33:53:67:af:
        cc:d4:90:28:bd:8a:b8:c7:f3:52:41:45:28:ee:3f:ed:
        8e:29:3e:10:0c:d3:e2:cf:79:f5:bf:99:95:57:e9:fe
    Fingerprint (SHA-256):
        4A:90:19:5F:25:B7:3F:BA:5B:43:87:69:EA:BB:55:1D:6B:0D:31:B7:A9:BC:67:E6:A8:8C:B2:5D:BC:6A:39:BC
    Fingerprint (SHA1):
        37:3E:C3:09:D7:C3:8A:4F:55:FE:69:46:6F:E7:E6:08:1D:F9:89:22
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6110: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #6111: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #6112: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6113: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6114: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6115: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115717 (0x1e67bf85)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:57:28 2017
            Not After : Tue May 10 11:57:28 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:56:1d:02:55:d2:bf:14:f7:1a:2c:4f:02:01:7b:92:
                    51:ce:f2:f8:c2:e5:da:85:ed:7d:ef:53:9f:18:98:2e:
                    b0:ca:ea:19:c0:10:ec:2f:7f:7a:28:3a:b9:5b:1d:ce:
                    7f:77:b9:71:9a:ee:5d:6f:ff:db:ce:61:b1:35:ff:26:
                    7c:95:b9:e1:f8:e3:26:d9:99:cf:02:aa:72:de:56:38:
                    f4:3f:ae:ce:b1:b0:f0:86:88:c0:32:d1:74:19:9f:bb:
                    5c:d6:78:e4:c5:fb:38:68:30:1e:90:8c:13:e3:63:dd:
                    a3:34:e5:7e:c4:d0:91:05:bd:f0:42:72:7f:b9:48:00:
                    3c:3a:4f:e1:2c:19:b6:34:76:16:7a:20:0a:0e:f1:ec:
                    b9:35:f9:94:b4:e1:2d:e5:70:95:8f:8c:df:fa:7d:ab:
                    fe:76:82:62:47:6b:f2:f4:a9:0e:3f:ae:96:b9:d7:e0:
                    8c:4b:fe:19:12:10:ad:6d:b4:29:24:73:b5:99:0f:a1:
                    03:08:eb:e0:d7:2f:40:11:dc:c9:ae:de:9e:ae:88:20:
                    3f:14:95:ef:af:6e:47:b7:a8:3d:e6:29:45:fd:25:e1:
                    4a:55:71:ff:d2:f9:c9:50:24:7f:c6:ff:89:7e:6b:12:
                    b7:25:6a:25:f3:fe:fc:43:3f:4f:a8:fb:d4:ee:21:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:77:1a:4b:cc:ad:2b:a3:dc:5f:b0:a8:0b:a9:20:21:
        d5:c6:2b:c9:7e:ca:31:e4:cd:f5:c7:39:12:ed:f6:cf:
        77:02:ee:86:c6:1b:f4:c0:aa:71:ee:9c:da:de:1d:81:
        92:f3:dd:a1:23:79:a2:87:2a:e3:b7:90:09:84:01:a6:
        f0:08:b3:42:e0:33:20:72:a8:48:e4:ae:29:3d:b3:f3:
        49:cb:df:cc:99:c5:ea:6d:99:57:7c:e0:8f:6e:af:3c:
        d1:43:33:3a:6c:b2:5b:f1:8d:a6:ee:e0:5f:45:28:8b:
        f6:d7:53:b3:1a:fb:23:6f:6b:1f:92:bb:4a:cb:3a:8b:
        06:e7:6f:25:38:1b:10:9e:34:b3:13:12:d4:45:0b:13:
        eb:d3:ce:91:8a:cf:db:e0:5a:66:97:c8:9e:1c:5d:40:
        72:84:96:64:c8:f0:e8:5c:b5:d1:4e:29:7d:38:1e:9f:
        cf:9c:db:ee:98:a4:9e:e4:c8:8c:1c:97:e8:10:38:10:
        62:f6:2a:8d:96:cc:6c:44:c1:82:f2:36:71:0c:61:87:
        5c:ce:0c:cc:87:d1:d1:fd:f7:d6:eb:b2:33:53:67:af:
        cc:d4:90:28:bd:8a:b8:c7:f3:52:41:45:28:ee:3f:ed:
        8e:29:3e:10:0c:d3:e2:cf:79:f5:bf:99:95:57:e9:fe
    Fingerprint (SHA-256):
        4A:90:19:5F:25:B7:3F:BA:5B:43:87:69:EA:BB:55:1D:6B:0D:31:B7:A9:BC:67:E6:A8:8C:B2:5D:BC:6A:39:BC
    Fingerprint (SHA1):
        37:3E:C3:09:D7:C3:8A:4F:55:FE:69:46:6F:E7:E6:08:1D:F9:89:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6116: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115717 (0x1e67bf85)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:57:28 2017
            Not After : Tue May 10 11:57:28 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:56:1d:02:55:d2:bf:14:f7:1a:2c:4f:02:01:7b:92:
                    51:ce:f2:f8:c2:e5:da:85:ed:7d:ef:53:9f:18:98:2e:
                    b0:ca:ea:19:c0:10:ec:2f:7f:7a:28:3a:b9:5b:1d:ce:
                    7f:77:b9:71:9a:ee:5d:6f:ff:db:ce:61:b1:35:ff:26:
                    7c:95:b9:e1:f8:e3:26:d9:99:cf:02:aa:72:de:56:38:
                    f4:3f:ae:ce:b1:b0:f0:86:88:c0:32:d1:74:19:9f:bb:
                    5c:d6:78:e4:c5:fb:38:68:30:1e:90:8c:13:e3:63:dd:
                    a3:34:e5:7e:c4:d0:91:05:bd:f0:42:72:7f:b9:48:00:
                    3c:3a:4f:e1:2c:19:b6:34:76:16:7a:20:0a:0e:f1:ec:
                    b9:35:f9:94:b4:e1:2d:e5:70:95:8f:8c:df:fa:7d:ab:
                    fe:76:82:62:47:6b:f2:f4:a9:0e:3f:ae:96:b9:d7:e0:
                    8c:4b:fe:19:12:10:ad:6d:b4:29:24:73:b5:99:0f:a1:
                    03:08:eb:e0:d7:2f:40:11:dc:c9:ae:de:9e:ae:88:20:
                    3f:14:95:ef:af:6e:47:b7:a8:3d:e6:29:45:fd:25:e1:
                    4a:55:71:ff:d2:f9:c9:50:24:7f:c6:ff:89:7e:6b:12:
                    b7:25:6a:25:f3:fe:fc:43:3f:4f:a8:fb:d4:ee:21:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:77:1a:4b:cc:ad:2b:a3:dc:5f:b0:a8:0b:a9:20:21:
        d5:c6:2b:c9:7e:ca:31:e4:cd:f5:c7:39:12:ed:f6:cf:
        77:02:ee:86:c6:1b:f4:c0:aa:71:ee:9c:da:de:1d:81:
        92:f3:dd:a1:23:79:a2:87:2a:e3:b7:90:09:84:01:a6:
        f0:08:b3:42:e0:33:20:72:a8:48:e4:ae:29:3d:b3:f3:
        49:cb:df:cc:99:c5:ea:6d:99:57:7c:e0:8f:6e:af:3c:
        d1:43:33:3a:6c:b2:5b:f1:8d:a6:ee:e0:5f:45:28:8b:
        f6:d7:53:b3:1a:fb:23:6f:6b:1f:92:bb:4a:cb:3a:8b:
        06:e7:6f:25:38:1b:10:9e:34:b3:13:12:d4:45:0b:13:
        eb:d3:ce:91:8a:cf:db:e0:5a:66:97:c8:9e:1c:5d:40:
        72:84:96:64:c8:f0:e8:5c:b5:d1:4e:29:7d:38:1e:9f:
        cf:9c:db:ee:98:a4:9e:e4:c8:8c:1c:97:e8:10:38:10:
        62:f6:2a:8d:96:cc:6c:44:c1:82:f2:36:71:0c:61:87:
        5c:ce:0c:cc:87:d1:d1:fd:f7:d6:eb:b2:33:53:67:af:
        cc:d4:90:28:bd:8a:b8:c7:f3:52:41:45:28:ee:3f:ed:
        8e:29:3e:10:0c:d3:e2:cf:79:f5:bf:99:95:57:e9:fe
    Fingerprint (SHA-256):
        4A:90:19:5F:25:B7:3F:BA:5B:43:87:69:EA:BB:55:1D:6B:0D:31:B7:A9:BC:67:E6:A8:8C:B2:5D:BC:6A:39:BC
    Fingerprint (SHA1):
        37:3E:C3:09:D7:C3:8A:4F:55:FE:69:46:6F:E7:E6:08:1D:F9:89:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6117: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #6118: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #6119: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6120: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6121: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6122: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115716 (0x1e67bf84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:57:27 2017
            Not After : Tue May 10 11:57:27 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:f9:90:10:e3:6d:88:01:a8:c0:8e:ec:95:53:0c:9f:
                    d7:45:c1:d3:d9:81:f9:8c:a1:57:10:10:e3:a5:73:89:
                    98:98:78:99:5b:c5:05:77:e8:15:d4:8b:0d:0f:44:79:
                    ef:73:21:df:ef:2d:17:09:bd:ce:90:09:62:c2:ed:53:
                    bd:14:87:d1:b3:95:cd:a2:ec:ce:c0:4a:ce:0e:0b:d0:
                    65:01:b4:9c:75:45:4c:a1:46:7f:b7:a2:24:b6:1f:7f:
                    36:db:16:c5:aa:94:16:0e:d7:d6:e9:72:f5:98:ad:32:
                    00:f5:b1:c7:11:65:1d:a5:fe:44:4d:50:43:67:47:71:
                    89:a1:17:6a:2f:f2:db:e4:a9:82:fb:ea:d2:4d:43:48:
                    be:70:52:20:fc:0c:82:e7:ed:6a:d5:8b:0a:10:d6:95:
                    57:7d:00:89:ec:37:9e:4e:ca:ab:2d:b7:5e:b4:b3:00:
                    39:b3:1c:6d:10:d1:f0:65:b7:e3:d2:37:10:f8:a4:b0:
                    d5:44:5b:9c:0e:9f:59:21:e2:33:aa:83:1d:e3:34:38:
                    a4:6e:7e:2b:64:6f:0f:8a:6d:61:a7:52:48:7a:b7:ab:
                    9a:99:94:ad:fe:6f:a1:b2:23:79:0e:7a:17:a8:49:3a:
                    e8:ed:27:6f:1b:0c:6f:93:bc:62:ff:e6:4a:f1:5d:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        21:a2:27:c2:2f:3d:04:53:fb:5b:62:fd:a5:93:26:b6:
        3d:5a:e4:0c:27:df:0a:ed:b9:6e:57:ed:99:58:53:19:
        fb:85:40:e8:d2:38:4a:30:75:2b:98:b0:17:8b:cd:16:
        e8:58:54:77:e5:b9:ae:e1:4e:e0:f5:6b:e3:5b:47:f0:
        d8:32:d0:cb:44:a0:3d:d6:10:fd:7f:9f:9e:06:0e:a8:
        a9:1b:2d:f4:bb:52:51:62:5f:b7:f6:97:f5:cb:bd:e9:
        82:fd:86:de:2a:61:d1:41:75:d7:dd:b9:ca:00:f7:9a:
        29:63:5b:f8:79:a5:54:bd:01:ec:7f:c1:32:2e:21:e0:
        f5:a5:fc:0e:c3:8d:d5:7f:3f:09:d2:43:9d:fe:c3:62:
        dd:38:6f:61:8e:2a:56:8c:c1:eb:14:e6:df:ed:63:47:
        d9:8d:47:8a:ea:5a:bc:8c:44:49:0c:11:22:85:a8:da:
        45:6a:70:c7:13:b3:d0:6f:4e:af:0d:ab:17:a0:e8:79:
        f3:0f:39:77:5f:e0:6b:25:d2:6e:de:e8:51:6b:2c:0d:
        50:ea:43:79:08:ea:11:05:34:de:2c:c1:d8:0e:72:27:
        e5:db:61:5f:9c:bd:4c:10:30:a9:5d:ba:b5:92:a9:9e:
        83:08:04:33:41:52:f4:62:64:9c:49:aa:0e:67:e8:a0
    Fingerprint (SHA-256):
        8E:CD:49:00:F9:20:95:50:EC:0F:93:DC:E8:0B:BF:5F:1E:DE:52:95:D3:57:8D:80:29:F8:85:E3:92:63:F6:8E
    Fingerprint (SHA1):
        A7:51:94:DA:CB:EF:53:F6:5D:3D:77:21:FA:73:A6:88:BC:ED:4B:E3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6123: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115716 (0x1e67bf84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:57:27 2017
            Not After : Tue May 10 11:57:27 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:f9:90:10:e3:6d:88:01:a8:c0:8e:ec:95:53:0c:9f:
                    d7:45:c1:d3:d9:81:f9:8c:a1:57:10:10:e3:a5:73:89:
                    98:98:78:99:5b:c5:05:77:e8:15:d4:8b:0d:0f:44:79:
                    ef:73:21:df:ef:2d:17:09:bd:ce:90:09:62:c2:ed:53:
                    bd:14:87:d1:b3:95:cd:a2:ec:ce:c0:4a:ce:0e:0b:d0:
                    65:01:b4:9c:75:45:4c:a1:46:7f:b7:a2:24:b6:1f:7f:
                    36:db:16:c5:aa:94:16:0e:d7:d6:e9:72:f5:98:ad:32:
                    00:f5:b1:c7:11:65:1d:a5:fe:44:4d:50:43:67:47:71:
                    89:a1:17:6a:2f:f2:db:e4:a9:82:fb:ea:d2:4d:43:48:
                    be:70:52:20:fc:0c:82:e7:ed:6a:d5:8b:0a:10:d6:95:
                    57:7d:00:89:ec:37:9e:4e:ca:ab:2d:b7:5e:b4:b3:00:
                    39:b3:1c:6d:10:d1:f0:65:b7:e3:d2:37:10:f8:a4:b0:
                    d5:44:5b:9c:0e:9f:59:21:e2:33:aa:83:1d:e3:34:38:
                    a4:6e:7e:2b:64:6f:0f:8a:6d:61:a7:52:48:7a:b7:ab:
                    9a:99:94:ad:fe:6f:a1:b2:23:79:0e:7a:17:a8:49:3a:
                    e8:ed:27:6f:1b:0c:6f:93:bc:62:ff:e6:4a:f1:5d:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        21:a2:27:c2:2f:3d:04:53:fb:5b:62:fd:a5:93:26:b6:
        3d:5a:e4:0c:27:df:0a:ed:b9:6e:57:ed:99:58:53:19:
        fb:85:40:e8:d2:38:4a:30:75:2b:98:b0:17:8b:cd:16:
        e8:58:54:77:e5:b9:ae:e1:4e:e0:f5:6b:e3:5b:47:f0:
        d8:32:d0:cb:44:a0:3d:d6:10:fd:7f:9f:9e:06:0e:a8:
        a9:1b:2d:f4:bb:52:51:62:5f:b7:f6:97:f5:cb:bd:e9:
        82:fd:86:de:2a:61:d1:41:75:d7:dd:b9:ca:00:f7:9a:
        29:63:5b:f8:79:a5:54:bd:01:ec:7f:c1:32:2e:21:e0:
        f5:a5:fc:0e:c3:8d:d5:7f:3f:09:d2:43:9d:fe:c3:62:
        dd:38:6f:61:8e:2a:56:8c:c1:eb:14:e6:df:ed:63:47:
        d9:8d:47:8a:ea:5a:bc:8c:44:49:0c:11:22:85:a8:da:
        45:6a:70:c7:13:b3:d0:6f:4e:af:0d:ab:17:a0:e8:79:
        f3:0f:39:77:5f:e0:6b:25:d2:6e:de:e8:51:6b:2c:0d:
        50:ea:43:79:08:ea:11:05:34:de:2c:c1:d8:0e:72:27:
        e5:db:61:5f:9c:bd:4c:10:30:a9:5d:ba:b5:92:a9:9e:
        83:08:04:33:41:52:f4:62:64:9c:49:aa:0e:67:e8:a0
    Fingerprint (SHA-256):
        8E:CD:49:00:F9:20:95:50:EC:0F:93:DC:E8:0B:BF:5F:1E:DE:52:95:D3:57:8D:80:29:F8:85:E3:92:63:F6:8E
    Fingerprint (SHA1):
        A7:51:94:DA:CB:EF:53:F6:5D:3D:77:21:FA:73:A6:88:BC:ED:4B:E3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6124: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #6125: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115721 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6126: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #6127: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #6128: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115722 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6129: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #6130: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #6131: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115723 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6132: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #6133: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #6134: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115724 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6135: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #6136: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #6137: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115725 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6138: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #6139: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #6140: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115726 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6141: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #6142: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #6143: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115727 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6144: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #6145: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #6146: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115728 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6147: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #6148: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #6149: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115729 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6150: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #6151: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #6152: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6153: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 510115730 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6154: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6155: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 510115731 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6156: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6157: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 510115732 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6158: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6159: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #6160: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #6161: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6162: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 510115733 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6163: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6164: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 510115734 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6165: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6166: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 510115735 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6167: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6168: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #6169: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #6170: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6171: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 510115736 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6172: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6173: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 510115737 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6174: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6175: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 510115738 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6176: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6177: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #6178: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #6179: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6180: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 510115739 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6181: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6182: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 510115740 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6183: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6184: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 510115741 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6185: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6186: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #6187: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6188: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6189: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 510115742   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6190: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6191: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6192: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6193: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115743   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6194: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6195: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115721 (0x1e67bf89)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed May 10 11:57:30 2017
            Not After : Tue May 10 11:57:30 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:3f:e2:f5:9e:52:10:4f:aa:eb:3f:39:fa:bf:0e:5a:
                    6e:64:cf:35:43:d0:d0:1b:8d:1c:81:ce:b3:06:5a:80:
                    a1:d3:53:1b:44:0a:75:1c:b6:20:68:04:d1:33:a6:e6:
                    f2:7a:84:c9:ce:bd:2b:ab:bb:fe:9a:25:e2:a9:4d:97:
                    8e:10:ea:59:16:6d:6e:4d:49:fa:f6:4d:76:76:e7:4c:
                    f7:67:9c:d0:5c:a8:52:2a:d2:a1:d0:75:1a:c5:1c:b3:
                    db:2d:9c:e3:ee:c9:d6:50:56:f8:3b:9c:44:4e:fb:56:
                    10:77:de:a2:41:c0:da:d1:8e:96:a6:35:5a:01:a4:85:
                    09:c1:10:56:ef:17:9c:32:b7:02:1f:bd:2e:36:ca:aa:
                    7d:22:eb:ca:70:98:cf:55:7b:11:cf:ff:d6:0c:76:71:
                    7a:43:3f:f5:c4:f7:75:21:d3:09:3b:ba:79:96:5b:1a:
                    36:46:1a:2b:dd:7c:78:f6:54:db:56:4d:3c:9b:d4:b3:
                    af:35:f8:83:84:85:32:e8:62:e9:4d:2d:49:6c:2a:36:
                    2a:5d:08:e3:63:52:02:79:6a:2c:3d:a9:10:1f:16:e2:
                    d2:fb:3a:eb:39:7a:34:51:ca:8b:7a:86:0e:1d:5b:e4:
                    72:41:3a:b1:33:3d:f3:e1:b4:29:75:f8:ea:bc:1a:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:20:ed:db:b3:27:a5:7f:50:cd:1a:e5:f3:7c:b6:38:
        42:09:91:e8:0f:1d:12:fa:4e:4b:3b:0d:91:bf:fd:72:
        0e:ae:9d:6f:52:92:a2:d7:20:5b:73:97:75:fa:03:5e:
        aa:a7:72:b1:63:8a:d3:a7:e9:8e:24:a9:91:cb:6f:a7:
        14:cc:99:ee:a7:17:e8:fd:31:d7:37:45:e4:27:95:aa:
        7d:e6:46:c8:17:47:13:29:f5:9b:fa:6f:b4:e8:56:b8:
        a4:df:24:f1:eb:7b:d0:2d:b7:b9:85:d2:c7:16:2b:b0:
        63:38:9d:e0:e1:30:97:4a:0d:19:5f:e6:61:c0:aa:83:
        ca:d7:f1:75:68:72:76:0d:84:45:30:01:1c:2d:53:f4:
        7e:2a:69:f2:dd:43:6d:8d:8c:d4:d1:b5:e8:d8:82:bd:
        b9:50:60:8d:c1:c9:1d:97:85:1c:4d:21:d5:a0:2d:95:
        57:95:e0:bd:ad:1a:e2:d9:f0:a3:89:fd:7c:67:1c:6d:
        08:ca:37:d0:87:78:2e:8b:d7:c9:2b:88:30:f3:44:04:
        98:09:d9:6b:f0:45:f5:9c:1c:29:d8:f0:5e:19:ee:5f:
        6d:e0:3c:ae:3a:b9:f2:9c:83:18:05:90:6d:7b:d3:93:
        69:1f:54:e3:08:72:76:96:9d:76:58:82:68:78:a4:2c
    Fingerprint (SHA-256):
        D6:11:7F:23:9D:A6:C3:3D:4D:33:3A:C5:43:EC:1C:A8:55:E6:35:2F:8B:81:95:6C:9F:28:78:D6:71:95:34:DC
    Fingerprint (SHA1):
        A5:FF:74:FE:8C:00:84:AF:AE:0A:D7:62:C3:17:8F:81:FB:E9:D1:3C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6196: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115722 (0x1e67bf8a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed May 10 11:57:31 2017
            Not After : Tue May 10 11:57:31 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:bc:ab:13:71:6e:72:c5:fb:db:fe:f4:ab:fa:2a:14:
                    44:6e:8d:3b:23:73:37:be:71:99:c3:bc:01:af:07:2d:
                    54:4d:a5:26:8d:a5:e7:34:68:05:48:ff:d2:51:1f:69:
                    d5:04:4c:dc:59:c4:f0:b7:b4:ec:2c:3b:81:53:4b:56:
                    e1:d0:de:82:cc:e4:3b:80:22:61:31:17:43:ca:87:af:
                    74:f2:45:16:c2:ba:84:ff:81:71:9e:0e:97:2d:24:a9:
                    b7:19:15:1c:b9:de:ab:dc:f5:44:34:2a:6d:95:07:04:
                    d9:48:e6:45:ad:69:99:b5:56:84:3b:16:c1:fc:59:5d:
                    c1:ba:a7:80:e2:cb:8d:ff:d6:05:59:98:ab:35:e6:43:
                    8f:ac:50:cc:27:e8:43:b4:ea:28:11:10:d7:09:22:ef:
                    d7:8e:7d:66:b9:5c:3c:88:1e:75:76:03:2e:8f:32:94:
                    2b:c7:ca:d4:12:51:b2:95:0e:ef:d8:6e:15:e9:d7:2b:
                    88:a4:c3:da:d6:ce:7d:73:f8:cd:17:93:18:65:0f:5a:
                    e7:74:60:79:7b:97:29:4c:85:14:a3:ca:a9:e4:0e:d4:
                    0e:33:8f:ff:d8:87:fe:99:a6:6f:db:89:83:45:1b:d1:
                    47:e3:95:95:5e:2e:0f:e2:a7:3e:02:ae:e4:90:c8:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ae:eb:86:88:c1:52:a1:6c:9c:7d:86:38:c1:8b:b1:77:
        eb:35:03:3c:4f:fb:7f:af:1d:01:2a:a9:7a:7b:12:ca:
        f2:8c:7a:2f:d7:f7:8c:59:89:64:c1:a2:6c:94:90:33:
        70:1f:3b:af:2a:96:eb:1a:4f:7d:90:1f:58:a4:94:4d:
        33:4f:bd:37:7c:60:2c:ca:b3:b1:93:a4:db:02:19:66:
        7f:43:ee:6e:73:36:d6:49:23:19:89:86:9d:51:a0:22:
        67:f5:45:aa:00:04:a6:5a:b4:b3:c8:8d:c9:f6:fd:80:
        1d:d8:52:84:4b:c7:63:b3:d9:c3:1b:4f:b4:7b:8b:95:
        94:3e:6d:bc:cd:6b:58:22:4a:4f:d6:3c:46:69:91:e7:
        46:46:f6:c8:21:b7:08:5c:6c:c4:97:19:c1:34:23:ce:
        1c:a4:89:9c:b0:55:b6:69:17:2e:93:94:ec:c4:c3:43:
        4c:c7:91:43:29:e0:78:0a:8d:da:b7:ca:df:3d:ee:aa:
        34:f7:91:60:25:5d:b2:b3:f5:f9:36:fc:10:c6:ba:06:
        7f:a1:5d:8e:25:54:55:92:fe:b5:3c:79:a7:af:57:6f:
        6c:45:ed:c9:64:55:c4:35:d1:0d:be:6d:a2:8c:62:0c:
        89:43:4b:76:a6:3f:b4:f9:36:aa:3d:29:77:83:85:c8
    Fingerprint (SHA-256):
        5E:41:8D:66:14:E9:04:49:8A:E9:4A:5B:21:B3:4F:77:08:4D:7C:43:4D:EB:C7:CD:06:A7:78:BB:65:73:F3:93
    Fingerprint (SHA1):
        BC:70:B7:99:87:E7:39:3F:B9:84:0B:BF:AE:86:6F:54:A6:52:8D:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6197: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115723 (0x1e67bf8b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed May 10 11:57:31 2017
            Not After : Tue May 10 11:57:31 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:53:c5:fa:27:08:c7:22:14:f7:97:3d:cb:4a:d5:52:
                    11:ef:29:57:f7:e5:e8:75:27:82:74:f6:20:43:6a:2c:
                    d8:7e:df:85:98:12:97:59:56:3e:0c:ef:c3:10:d2:04:
                    17:bd:d8:40:2b:56:4e:b2:e5:ec:8f:c3:5b:aa:a1:a2:
                    aa:83:8b:13:5e:93:17:f8:bf:56:af:f3:5a:78:ee:55:
                    52:34:59:d8:3f:36:1b:c8:4b:97:04:5b:2c:95:da:2c:
                    df:42:dc:3a:13:49:d3:2f:46:69:a3:9c:a2:9f:ac:9a:
                    91:16:c6:d3:4e:bf:17:89:7e:b3:7d:f7:50:13:96:f0:
                    3f:83:66:74:d0:e1:14:89:29:4b:09:99:2e:cf:fe:08:
                    5b:e5:e8:16:9e:71:9a:a4:09:64:2b:80:f8:ef:3f:bf:
                    98:2c:b3:b8:4a:44:43:af:14:b0:fe:4d:38:83:69:9e:
                    a4:17:5f:16:fe:1a:d3:76:95:f9:f9:7f:f3:31:04:20:
                    5b:fe:67:58:7e:47:c6:5e:50:eb:dc:b4:91:00:32:60:
                    21:6a:ec:31:0f:e4:d8:94:7e:93:46:f6:b2:cb:d8:c9:
                    f2:e0:8f:1b:8f:39:52:54:0e:5c:f8:93:83:56:c4:40:
                    ed:10:7d:6a:7a:a7:dc:f3:97:d5:5e:4f:27:f8:84:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:33:91:a9:42:7d:9a:4a:72:95:4c:af:e3:74:04:51:
        8a:be:28:6e:42:e9:0e:80:07:84:cb:2e:06:16:ed:e1:
        37:92:b0:f1:a4:89:21:58:0e:f0:f3:6e:f1:75:75:b6:
        0f:69:61:eb:d9:57:de:42:ae:5a:23:9d:a0:c1:1a:81:
        d2:cf:cf:84:46:46:c1:78:41:5c:fe:00:31:06:25:7a:
        4f:21:cc:b3:80:c1:4c:be:7a:54:37:86:2a:78:bc:f9:
        5e:21:ec:bf:2d:67:f0:a8:ed:34:98:10:92:a1:dd:fe:
        c1:c7:f3:8b:85:c5:26:8f:e3:e8:7a:a9:39:89:09:17:
        74:2f:8b:5b:59:94:81:83:cd:e4:dd:74:9d:51:45:6e:
        bf:15:b0:b8:95:4b:5b:b1:9c:73:fd:c6:8c:a8:13:09:
        6a:2b:6b:be:7a:66:b1:eb:20:5c:6c:69:00:19:28:7c:
        f7:9b:69:18:eb:b7:71:7f:8f:59:6f:43:8e:50:37:96:
        4b:87:b0:cc:00:02:bd:97:77:0a:e6:03:ba:b1:94:d8:
        7b:e5:54:f8:ed:95:ae:7d:16:10:64:19:1b:53:8a:ec:
        f2:36:81:66:4c:74:af:90:52:55:fe:88:4b:c7:2f:a7:
        47:41:b8:b9:04:f8:1c:ac:0b:d2:25:66:e0:28:1c:6e
    Fingerprint (SHA-256):
        B5:CF:FF:EF:D0:20:C3:A6:9E:1B:DE:83:FA:02:95:0C:82:ED:76:37:E2:EE:CB:C4:18:93:3A:B6:F3:D4:F5:95
    Fingerprint (SHA1):
        C9:44:EA:DB:0C:A8:09:94:26:EB:AA:C2:19:55:BB:12:85:CC:43:55
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6198: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115724 (0x1e67bf8c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed May 10 11:57:31 2017
            Not After : Tue May 10 11:57:31 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:e1:4f:48:4a:12:50:51:95:56:be:b4:81:41:a0:e1:
                    8f:b1:af:27:4e:c2:fd:3e:c2:3c:bd:f4:ed:5e:bd:cf:
                    9e:04:ce:81:50:54:6b:60:cc:d5:8a:16:bb:70:f0:aa:
                    9e:22:3c:db:f3:56:7d:1d:9f:c5:92:38:59:3f:61:34:
                    38:68:e7:24:1f:74:ba:be:b6:53:42:72:a4:5d:af:4e:
                    f8:93:2d:8c:9a:c6:ef:e9:d9:b3:ae:0d:81:74:6d:5f:
                    68:45:21:98:b1:f1:ad:cf:7c:22:73:90:55:0e:f0:57:
                    b3:59:58:21:dc:fe:4f:6a:ce:45:44:f2:f7:f8:ae:f5:
                    fa:cf:96:2a:3d:5a:ef:35:2f:c8:df:b7:01:b7:b3:38:
                    2f:4c:b9:6e:80:d7:4e:60:ea:9f:04:49:47:9c:3c:1e:
                    5b:0b:62:df:92:98:7a:98:17:03:09:ab:b5:84:ae:f5:
                    13:bc:b1:7f:a4:3d:4e:a0:21:f5:f6:1c:a4:93:72:cb:
                    82:ba:46:15:d8:94:fa:42:8d:fa:dc:15:72:2d:fc:de:
                    59:83:b9:ff:6c:4e:de:2d:27:40:01:b0:85:0e:74:ed:
                    e9:05:ae:2e:c9:ac:e0:a0:29:2e:67:95:bb:cc:bc:e0:
                    bb:66:3d:9c:0a:af:a3:24:e0:3a:e7:27:c8:e4:0e:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:8e:17:fb:de:ed:1c:fb:d0:9c:9e:e9:49:26:24:88:
        bf:89:1f:e3:e0:a9:ae:38:00:ac:6f:29:71:18:d1:82:
        c5:ab:a9:77:21:e7:bd:63:17:4f:4f:54:dd:2c:ca:55:
        08:5a:05:2b:4a:37:e9:ae:f1:62:d5:3b:ff:f8:16:d0:
        f4:78:e0:df:8d:82:e5:09:01:60:da:cf:3b:ff:bf:57:
        31:11:75:11:b1:54:46:03:34:4e:da:df:36:97:d4:93:
        e3:b8:76:86:6e:9a:52:4f:e2:19:48:5f:a1:91:b7:93:
        a7:72:a9:62:4f:e2:7d:72:d4:e5:b8:ca:11:a2:6a:d6:
        a9:e6:5c:68:90:d1:a0:1e:5c:b9:4c:d9:5e:13:ce:b5:
        de:69:a4:bc:0a:23:80:19:f8:eb:3d:fe:08:6e:8c:42:
        46:79:6b:5a:10:52:8f:3d:94:4a:b3:71:17:1e:ed:44:
        ca:24:33:ff:1f:f6:f6:cf:70:87:47:4e:25:cc:46:de:
        78:01:73:42:96:79:6c:68:0b:87:de:b3:0a:2c:ae:50:
        86:08:29:7d:21:59:d7:0a:7c:52:f9:81:8a:ba:85:9d:
        ca:cf:5c:f6:69:da:01:08:bf:eb:a7:ad:d9:b5:ee:a3:
        7c:53:f2:98:71:67:66:c7:02:45:e0:08:59:27:c7:1e
    Fingerprint (SHA-256):
        C5:9E:87:55:EB:26:52:D0:A4:BA:B8:48:DB:2F:43:71:06:89:E9:8A:C3:B0:E1:7F:0A:06:06:74:A0:DD:58:E6
    Fingerprint (SHA1):
        CA:1E:35:8F:A6:FA:97:17:AF:52:F3:81:D6:F5:C6:72:02:4F:9A:FD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6199: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115725 (0x1e67bf8d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed May 10 11:57:32 2017
            Not After : Tue May 10 11:57:32 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:46:3b:c8:d4:07:33:22:ff:f0:03:27:e8:fc:84:cb:
                    fc:12:f1:a8:c7:cc:8f:37:bc:be:65:d9:23:7c:63:7f:
                    bd:fa:f6:77:9f:c5:36:03:73:d2:df:d6:49:28:43:76:
                    d7:3e:01:a8:f1:70:ab:bd:e5:b7:ec:ad:8e:f4:4c:d5:
                    80:4a:b6:d6:64:6c:df:e5:d3:f4:9e:e2:1b:6d:85:bb:
                    cf:59:91:ca:36:9a:a4:f3:b4:cd:d3:e1:5b:00:e1:ec:
                    9a:6b:4c:b8:16:05:44:bc:c7:fd:11:09:59:ec:c1:55:
                    32:6d:b1:3b:e1:1f:9a:a9:c2:da:1f:85:2c:7f:10:a6:
                    18:e9:42:13:64:f0:25:c6:51:d0:82:d5:ed:27:f4:1e:
                    68:ad:c7:a7:0e:1f:52:84:fc:63:68:b0:b3:88:7c:6d:
                    99:2d:70:c3:df:46:b3:a1:be:9e:8f:9e:89:e1:53:c1:
                    0a:09:5e:e8:ef:c6:29:9d:4c:87:37:73:97:3b:7b:24:
                    83:42:65:5b:e8:9a:7c:d9:96:c9:51:02:13:c6:66:83:
                    90:55:33:18:5b:3f:16:c0:71:ef:b7:ef:11:6f:4f:5d:
                    ed:bc:44:94:15:26:72:88:7f:15:fd:70:7d:37:8c:76:
                    81:05:01:0d:41:56:73:ad:94:71:59:6a:f3:ab:bd:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:2c:4a:53:61:58:8e:d5:d0:c3:5b:2f:54:26:47:6d:
        85:05:51:c1:6b:4d:6e:07:63:28:12:09:7f:84:bc:d1:
        55:4a:d7:0a:53:e5:a0:56:a7:3c:cc:cd:02:14:7b:3a:
        18:2d:ff:14:ed:a9:fa:d5:5f:2e:cb:df:c5:15:c4:04:
        42:98:1b:f3:0b:08:a5:80:42:fd:0a:0b:74:ce:07:65:
        79:bc:97:31:6c:55:f8:8c:2a:40:db:8e:c2:7d:2b:73:
        7e:16:f1:da:28:f7:4b:ab:ae:56:c0:4f:23:39:29:1d:
        be:72:11:00:a6:fb:b9:30:1e:64:66:a0:7c:1d:97:cf:
        16:16:61:49:f7:61:05:f4:c0:be:43:71:f0:6f:93:90:
        55:a5:b4:4b:27:cc:40:f8:15:f5:e9:a4:85:9e:ea:44:
        c4:50:1e:1d:18:79:02:09:de:1c:89:27:55:d3:61:87:
        75:b0:a9:94:1d:10:94:71:5f:e4:cf:f1:f5:68:9d:1e:
        48:43:b0:67:49:82:18:29:c9:24:e9:6a:aa:2c:bf:65:
        02:ac:2d:87:1d:f0:72:bd:8c:3d:19:90:28:d5:23:fa:
        92:8a:e6:c1:aa:87:e6:f3:47:d7:42:b7:b8:07:d5:0c:
        6a:e4:ea:41:28:27:7b:24:0c:5c:c0:b3:be:d4:6b:5e
    Fingerprint (SHA-256):
        67:35:34:46:7E:66:94:A3:7F:A8:08:C3:B1:28:6F:9E:54:63:67:8A:8C:0F:54:36:C7:09:C9:C8:8F:87:61:77
    Fingerprint (SHA1):
        50:7B:57:13:1B:61:37:EF:16:27:F2:DA:85:7F:83:F8:9F:04:DB:DC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6200: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115726 (0x1e67bf8e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed May 10 11:57:32 2017
            Not After : Tue May 10 11:57:32 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:4f:63:89:ab:b2:57:d0:c1:df:7e:69:f1:03:71:60:
                    8c:ca:75:ac:63:4c:a1:0e:bb:e8:7d:fd:76:ea:58:08:
                    8c:de:6d:5a:a4:bd:89:cd:fd:97:a6:9a:b3:30:55:16:
                    57:32:52:cd:0f:c0:d5:9c:01:09:4f:df:1f:1d:b8:63:
                    d2:73:74:ed:95:5e:be:0a:53:fa:cf:b9:60:99:e4:be:
                    ed:3e:2c:63:e5:db:ef:10:70:14:36:33:23:03:7b:dc:
                    26:47:2f:08:43:83:42:8d:ab:c7:24:07:c8:81:11:41:
                    52:04:22:80:1a:22:df:5a:92:cd:44:85:88:77:bb:53:
                    53:d5:c6:8a:a6:94:15:c5:eb:ca:ef:f2:3f:41:00:ee:
                    4d:34:8c:3b:cf:18:67:9c:d2:d4:06:1b:43:d0:de:69:
                    3e:01:ad:e2:00:31:41:10:b6:a8:4b:37:fb:04:8e:67:
                    af:6c:6c:0a:52:f4:7e:73:90:11:9d:17:3a:63:cf:2c:
                    74:81:cf:4f:e7:80:ae:91:2f:5b:f6:28:80:25:25:2c:
                    89:f8:b9:b0:1b:48:54:5c:be:20:8b:a3:35:fa:3c:fc:
                    df:3d:35:8a:98:62:0c:bd:2e:05:65:7b:df:2a:67:7d:
                    38:5a:5d:1e:24:80:39:a9:9c:1e:85:0b:d0:87:7a:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5b:00:94:07:cd:92:7b:69:50:43:34:d3:41:c8:f3:c4:
        91:17:fc:01:da:7b:9e:02:f0:03:6e:62:92:63:de:fd:
        e8:47:09:df:c7:13:21:da:55:53:b2:7d:a7:21:ad:3c:
        82:01:ef:27:eb:d6:a4:7f:97:bc:c5:db:f0:3b:32:b6:
        c0:16:20:b6:c8:bb:0c:2f:19:35:4e:07:a3:ba:67:ea:
        38:dd:7b:e3:0f:77:2d:17:12:4d:9c:70:f0:16:6e:fd:
        10:71:29:f2:9f:1b:53:61:15:0a:bd:94:e2:80:89:8a:
        af:f0:4c:84:9f:9e:ad:54:a9:a2:b7:98:21:fe:5b:f2:
        d5:20:6d:dc:18:d9:a4:a3:6b:99:2d:a6:50:1f:9d:68:
        91:06:98:32:cc:8e:09:33:e7:78:54:e3:d3:74:14:99:
        2f:ee:79:ed:42:b9:85:c8:be:af:1a:7c:95:70:57:d6:
        0c:4d:99:1c:b0:5d:c5:a8:b1:76:48:a0:d5:e5:f8:25:
        88:d0:f0:ac:94:08:93:1f:4a:b7:7c:21:8a:da:c9:92:
        45:dc:43:64:b4:ac:10:28:15:69:3f:d6:9f:39:51:fd:
        95:eb:31:71:15:d6:b7:d8:0c:72:55:78:10:3f:4c:5c:
        6a:50:52:0d:c0:48:a6:71:55:ad:bd:ab:3e:99:a1:22
    Fingerprint (SHA-256):
        CB:F8:00:AE:D9:B8:E0:67:56:F3:1D:19:16:98:53:24:00:F0:B2:49:36:0C:AA:DA:17:47:EB:0B:23:E6:3A:CC
    Fingerprint (SHA1):
        31:93:64:53:93:17:F1:D4:9C:78:5C:A8:4F:E2:75:57:3B:D5:FC:DB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6201: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115727 (0x1e67bf8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed May 10 11:57:33 2017
            Not After : Tue May 10 11:57:33 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:9c:f5:29:fe:75:9e:24:a4:95:3b:22:02:51:21:f1:
                    94:b5:35:1e:29:1c:b3:e2:67:ab:03:5c:8a:d9:6a:36:
                    4a:c6:9c:3d:9e:83:49:89:ab:1c:03:0c:a2:09:fd:2f:
                    66:b2:16:25:d0:84:97:3f:4a:a6:36:4d:08:12:9f:c0:
                    06:7f:d4:f5:f1:51:75:53:ba:ed:64:62:a2:03:5c:a9:
                    ff:6a:2d:5e:2a:2c:71:8f:eb:1a:2e:4f:bd:25:b1:19:
                    5a:d6:62:84:56:fc:f4:b2:99:39:4b:ed:70:c0:15:d8:
                    70:c6:e7:84:bf:1a:03:f0:b6:03:17:53:69:67:02:be:
                    c4:f1:c4:06:80:b7:e3:65:27:ae:87:c0:63:b0:4d:77:
                    8e:fc:2d:0e:1c:6a:f1:09:4e:2b:80:5c:55:97:6a:b2:
                    42:b4:66:dc:46:d1:81:d0:be:e7:c3:0f:7a:00:aa:85:
                    dc:3d:a3:27:68:fc:eb:32:9b:19:08:2c:0e:50:aa:83:
                    90:ae:49:17:c8:aa:3d:46:08:52:35:26:53:06:e5:0e:
                    28:ad:b3:1b:4b:12:44:32:e1:51:c5:3f:03:af:91:13:
                    a3:ec:fb:43:b2:5e:76:b9:53:71:56:1a:10:88:15:ed:
                    2d:70:9b:4a:dd:c1:f7:09:15:c8:9c:e4:b0:e7:71:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:9d:18:78:5d:b5:4c:e2:77:d3:0a:cc:08:17:d1:3a:
        82:75:4d:ad:94:3e:9a:70:37:a0:08:6f:43:9d:94:ea:
        1d:83:6b:ea:f3:38:b1:e7:4d:56:5f:f7:b1:93:94:64:
        5b:29:b7:5f:09:39:21:48:c1:44:9d:1c:32:d1:82:95:
        55:81:1c:7f:9a:80:5d:be:a6:e6:6f:99:99:a0:54:bd:
        07:d3:95:b6:3d:ed:aa:21:fa:dd:96:f7:50:42:b2:07:
        c5:34:0e:1e:1c:d1:0f:88:67:e0:3f:e6:14:b8:6d:04:
        06:72:0e:11:77:9d:6a:0f:7b:c7:a6:3e:18:bb:70:d7:
        aa:0b:4e:7a:63:44:63:0b:c1:4e:05:1f:22:64:46:33:
        3c:e2:91:8e:e5:20:b5:77:40:c8:ea:38:8b:ef:6f:a1:
        6e:cc:55:51:70:91:c5:5d:1d:bf:cb:10:c5:e9:6b:60:
        3e:61:19:48:fb:7b:c6:41:d4:ce:97:86:2e:b6:c5:89:
        2b:fd:ce:7f:e0:f8:4e:82:cf:7c:fe:df:34:fd:ba:31:
        d2:f9:6d:ee:3c:d9:c9:1c:55:f2:ae:3b:08:10:31:8e:
        e2:9c:3d:9c:5a:42:03:83:d1:6e:82:a4:87:2c:db:02:
        e7:3e:4e:26:c7:4f:71:6e:1c:68:ab:9a:3e:ee:00:6f
    Fingerprint (SHA-256):
        DF:CB:5A:A9:27:0B:13:3B:A9:09:8A:54:0F:FD:05:17:E9:B5:43:43:F7:43:5B:00:C0:8D:43:94:8D:01:30:09
    Fingerprint (SHA1):
        BC:85:FD:F9:AC:BB:AB:99:29:94:31:2B:37:DB:8C:96:C2:EC:DF:CB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6202: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115728 (0x1e67bf90)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed May 10 11:57:33 2017
            Not After : Tue May 10 11:57:33 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:e8:4d:96:66:ce:d1:d8:6a:2b:1a:7c:b9:5d:67:bc:
                    43:ed:ff:3e:ff:4e:71:b4:c3:85:e7:e5:f1:c6:b9:29:
                    4a:89:5a:b4:4a:22:1f:9a:22:fe:82:49:a7:38:4e:f4:
                    eb:69:64:be:a5:ba:c8:fb:2c:91:fb:06:ec:3e:b9:63:
                    19:7f:9c:90:37:8e:f9:34:d6:65:5d:3b:30:81:5f:b8:
                    8a:af:69:7d:76:4c:42:11:31:4d:45:bc:77:36:57:e7:
                    a7:e5:70:7c:15:fb:9e:1b:a5:3d:14:4e:bb:83:df:60:
                    b5:6f:d4:36:fe:4c:d4:17:72:c9:48:f0:79:43:19:40:
                    63:5d:c4:9a:1a:7a:f6:0d:47:01:1d:57:2a:fb:db:bc:
                    f6:73:db:60:dd:b1:17:01:4e:c5:e5:4a:0f:19:27:64:
                    55:7f:dc:46:65:72:f6:1f:20:e2:87:d4:97:91:05:67:
                    e6:2c:41:c0:f1:65:70:3f:c9:9e:02:47:8c:10:7f:96:
                    48:39:cb:4a:26:bf:90:90:f3:08:1a:d6:3f:d1:5f:ad:
                    fa:a3:27:b0:36:15:cd:ae:54:00:01:c3:ba:c8:06:4b:
                    c7:b1:f9:b6:41:0b:9a:26:6d:b4:9c:a6:e7:31:ce:d0:
                    89:45:11:a5:07:3b:0d:c0:04:64:3d:32:8e:b5:2e:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:0d:dd:a2:00:10:4b:76:7b:68:1a:af:98:7b:0e:6b:
        ef:e2:16:26:c2:ac:d6:c8:a6:04:6f:ef:c3:c6:e7:b9:
        51:d4:4f:2b:03:0c:12:5d:0f:d4:aa:f8:1a:bb:00:4e:
        5a:b0:06:61:6c:51:a6:54:6d:6d:00:24:c9:7b:79:0e:
        0d:59:cb:70:d6:50:6d:67:5a:c3:a6:80:8c:c2:07:89:
        43:5b:a1:1d:ee:8b:11:01:59:1d:e6:be:48:b1:37:1c:
        fb:07:66:ec:2f:b1:9b:fc:c8:a9:33:1e:06:99:ec:a4:
        86:e2:6b:c7:39:0b:79:74:56:7b:81:e9:6b:de:11:f1:
        f7:2b:72:fc:48:32:3e:c5:4e:c8:3b:d6:79:9a:80:11:
        08:69:29:4d:fe:0a:09:7b:ca:42:1d:36:80:6e:80:42:
        7e:01:7f:42:e2:5c:32:3a:c7:a2:82:68:58:2b:5c:51:
        e4:8d:b3:22:91:23:9a:5e:42:f8:73:e4:86:1a:ca:39:
        7f:61:42:b4:5f:33:be:77:b6:4d:3d:4d:c6:1e:10:d5:
        eb:02:3c:0a:36:fe:4b:91:6d:d7:c8:4f:36:3a:75:28:
        99:34:d5:b4:42:6f:41:23:1a:51:8e:85:b3:48:e4:2b:
        4d:90:96:65:37:d4:97:77:9b:f1:e1:a0:84:78:f8:dd
    Fingerprint (SHA-256):
        07:6E:A2:5D:6E:3C:AA:0E:64:79:89:A7:FB:9A:03:23:17:B2:A4:4D:17:56:18:39:AD:76:7E:DB:47:7B:90:85
    Fingerprint (SHA1):
        E1:31:EE:E0:71:FA:3A:F9:4A:8B:32:1A:05:49:2C:6D:43:BC:5A:DE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6203: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115729 (0x1e67bf91)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed May 10 11:57:33 2017
            Not After : Tue May 10 11:57:33 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:65:28:22:8d:b9:b9:4e:fc:38:d9:8b:fd:5f:f1:60:
                    f8:37:cc:2f:83:9a:6a:af:10:10:d7:db:0b:8b:0b:f2:
                    79:95:1b:d4:e0:d3:bc:18:71:7c:42:04:22:66:4e:c9:
                    2e:95:56:58:3d:59:36:6f:b7:f8:e6:dd:23:4e:3b:a9:
                    de:06:45:aa:24:bf:57:64:f0:d2:2e:a8:61:a0:8c:ae:
                    e6:80:a4:b2:fc:fd:b6:2f:d1:93:35:77:ac:94:7a:c7:
                    43:f7:65:da:e3:3c:9f:e5:03:2f:75:01:07:a5:fe:08:
                    d9:50:57:f4:ed:bf:73:ee:a4:f3:d0:02:56:b8:b9:c3:
                    f3:67:b0:ad:6b:8e:67:f5:e5:c1:ae:ec:00:c9:66:2f:
                    dc:9e:ac:81:09:1b:c4:74:81:be:6c:a8:ac:3f:a7:93:
                    75:ab:4a:93:d2:f7:57:87:61:1f:ee:f6:f0:ef:88:14:
                    81:9d:31:de:cc:d8:71:11:71:a4:de:a7:ab:5e:c8:e4:
                    f2:f2:eb:a0:8f:0f:07:04:39:46:1a:a9:9c:f2:e6:ce:
                    5b:61:f0:25:88:e2:c1:06:42:62:70:ac:33:73:ad:4e:
                    b3:a7:00:d7:81:ff:64:b7:02:9b:d5:d9:ac:30:42:e4:
                    9e:fb:8a:77:69:cf:43:d6:cf:ed:90:62:48:86:6a:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:e1:5f:56:33:cf:0a:45:e8:75:95:a9:ec:ef:9e:8f:
        c8:7f:36:25:01:b2:3f:a2:13:a6:d9:9f:ca:22:8c:c4:
        47:b7:37:ca:04:e8:2c:5d:90:f4:e9:78:ed:35:60:ed:
        96:0f:79:bf:76:25:9d:08:dd:64:9b:5a:04:94:3c:82:
        4d:3d:e6:6f:02:73:56:56:34:5e:bc:f5:fe:11:6c:6c:
        0b:83:75:67:55:a5:55:b6:3e:46:f9:84:e7:75:45:73:
        fa:af:77:20:4a:c0:20:4e:d4:08:f6:29:50:a8:4c:02:
        35:14:e0:83:cc:a7:47:e8:bc:f6:80:66:c3:c3:21:ff:
        1e:26:3f:ed:3b:15:19:d7:1d:b9:a4:0f:67:a0:33:43:
        4d:68:58:a5:dd:a1:77:f1:3a:2f:d6:ab:4a:69:77:3c:
        95:f0:d6:90:2d:e8:a7:fe:ea:19:73:cf:57:75:12:f0:
        16:f5:f3:8a:fd:49:47:a6:1e:6f:98:b6:83:61:50:37:
        7f:e1:7d:7a:d3:50:fe:36:b1:34:a3:f3:0b:86:14:6c:
        ff:9d:0f:65:b6:dc:b1:cf:25:d8:5c:a5:cb:95:6f:57:
        92:f7:6f:40:b6:a7:82:4e:55:97:80:12:3b:5a:c5:11:
        42:3b:81:e8:5e:16:57:26:20:c7:65:79:1f:ac:c0:d1
    Fingerprint (SHA-256):
        B4:D8:30:70:78:CE:17:39:7C:39:3A:84:70:E0:39:48:27:32:37:2E:C8:6A:A3:EF:19:EC:31:3E:07:61:A1:07
    Fingerprint (SHA1):
        53:16:1C:78:A7:FC:EF:B3:A9:8C:A0:86:C6:E0:CD:EA:50:AF:4C:46
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6204: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6205: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115744 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6206: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6207: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6208: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6209: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115745   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6210: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6211: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6212: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6213: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115746   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6214: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6215: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6216: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6217: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510115747   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6218: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6219: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6220: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115744 (0x1e67bfa0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:36 2017
            Not After : Tue May 10 11:57:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:31:cd:78:43:2e:80:64:d3:64:de:23:68:d9:b1:b7:
                    44:66:8d:e7:36:ca:28:dc:3f:99:1b:49:88:33:21:69:
                    e9:f0:8e:e8:4c:aa:a7:ab:7c:38:ec:be:bd:ab:0c:a6:
                    ad:f4:5f:89:29:d9:4c:73:7b:a0:09:f8:60:4e:ac:66:
                    bc:f9:f2:17:a8:d1:57:c2:8e:8a:d2:d4:4b:39:ec:8b:
                    bb:e3:5c:64:fb:6d:44:63:65:23:e7:c6:5c:de:85:56:
                    d0:6c:8d:cd:cb:42:3f:38:07:b2:84:69:9d:bf:d1:49:
                    0f:f7:0a:7e:f2:5d:dd:91:0b:a8:8f:6d:2b:a0:ab:66:
                    68:56:85:8e:15:98:ec:35:38:68:fc:c8:82:41:bf:eb:
                    f7:e5:54:24:05:3a:bb:c1:f9:4e:f8:a0:0b:fb:5f:91:
                    b0:3d:c6:23:4a:b8:02:78:31:04:cc:3d:ce:0e:89:74:
                    08:73:16:cf:b7:06:d2:89:a2:e2:d7:83:2b:b0:29:bd:
                    d6:84:c9:03:76:7c:38:e5:73:18:1a:31:04:f1:bf:fd:
                    f0:83:96:bf:2d:04:30:48:9c:3c:19:d7:5c:ea:b3:a1:
                    10:98:8e:6d:0d:0b:b5:7b:71:0c:32:68:a6:ba:97:81:
                    1a:60:53:5b:26:0e:f1:d5:25:39:e9:8d:7a:0e:1b:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        29:4f:af:b3:34:24:2a:22:77:7b:b5:94:42:b7:be:22:
        11:6b:fe:af:82:56:87:da:9b:ca:3d:71:b8:2b:cb:a8:
        f6:78:7c:6c:38:4d:f2:e1:72:2b:c7:be:c8:90:1c:ba:
        4a:a7:16:4f:b8:2a:92:76:b4:18:94:f2:69:d0:78:a8:
        b0:d3:3f:e1:d9:62:e3:2a:12:50:77:05:aa:6d:a2:ff:
        24:06:3e:f7:be:da:aa:b0:16:8f:bd:e2:c6:d8:1c:e8:
        22:46:be:30:81:ab:9b:61:8a:94:33:d5:41:3d:59:3d:
        d6:24:56:c4:ab:30:05:e3:08:41:d4:6d:24:cf:4d:5a:
        80:62:1d:99:0e:ef:df:23:1c:83:4e:50:10:63:36:0f:
        f7:2d:07:60:f4:7b:50:08:6e:ff:f9:0b:f4:19:cf:04:
        a0:b7:d4:d4:03:3f:1f:d0:09:3d:4c:5d:ba:02:1b:a6:
        d9:95:9d:ca:cf:f2:db:f2:5c:d2:1d:17:7a:45:ac:d0:
        7f:d0:80:7a:ee:28:4f:1c:98:48:52:93:e2:b9:f0:e4:
        b6:51:33:cb:a7:d6:b7:b1:a4:51:97:ff:28:09:2f:da:
        72:fa:93:7f:9b:18:a6:e2:fa:5b:46:6b:81:29:7b:cb:
        ec:5b:b5:5f:82:52:0b:09:4f:61:6b:5e:97:c0:ae:70
    Fingerprint (SHA-256):
        60:4E:A9:6F:E8:3B:3E:1A:25:46:D1:6B:E3:90:EE:D7:E5:BB:76:3C:E4:A0:21:99:50:08:D0:54:52:BB:97:EA
    Fingerprint (SHA1):
        E4:93:CC:CA:63:91:97:A5:4F:6E:38:5D:8D:43:6A:ED:EE:10:3B:8E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6221: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6222: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115745 (0x1e67bfa1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:37 2017
            Not After : Tue May 10 11:57:37 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:0e:e8:1f:09:92:71:ce:0b:38:76:02:e7:b0:fb:13:
                    91:19:06:a1:78:5f:d3:85:b9:62:1e:96:38:13:28:06:
                    c9:8a:cb:df:8d:61:a2:c0:ff:d3:39:cf:a5:a7:58:5a:
                    dd:64:72:2c:9f:f1:37:a3:ca:f0:b4:6f:37:29:c8:77:
                    22:7d:0b:88:a7:30:6b:84:0c:68:3d:28:8d:44:6c:67:
                    e1:04:9b:f8:e9:5d:0f:d5:25:c3:b8:c4:00:6d:23:cf:
                    99:17:af:60:27:77:42:88:28:f7:05:3d:83:ba:60:a1:
                    48:91:5b:92:92:4b:10:1b:a2:c1:ef:93:72:c7:8c:9d:
                    ef:a0:8c:44:a8:f7:8a:a9:84:65:72:a3:62:33:a1:3e:
                    19:fd:25:e9:47:8e:f9:15:5e:25:89:e3:b8:ee:5c:e3:
                    03:0b:ca:7f:73:e2:25:2f:dc:1b:9d:f0:cc:69:a0:87:
                    70:a5:c9:39:bb:01:d6:44:83:09:19:aa:f9:71:39:01:
                    7e:81:18:b2:01:c2:82:ac:fa:94:f2:b9:5a:da:a3:38:
                    7e:70:f9:d5:a0:a9:86:48:cf:22:b4:52:f4:a7:d3:f4:
                    92:af:47:5e:98:81:e9:d1:cc:82:c6:8f:a5:6d:03:d6:
                    3d:2a:42:07:40:5d:0e:03:22:5c:55:ba:28:42:3a:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:43:38:85:11:20:20:ff:8f:53:24:ac:92:8b:e7:d1:
        77:09:66:03:94:e0:36:3b:62:80:8e:a8:00:af:af:54:
        83:4d:68:a5:a8:7d:33:78:e0:ac:c6:55:4d:1c:d9:a6:
        a4:95:80:1e:de:95:24:f5:8f:c8:0e:1c:9b:01:7a:35:
        40:26:e2:6b:23:f0:f0:c9:ef:de:86:52:78:e4:3b:37:
        82:1f:1d:b8:fc:a9:84:ca:33:e8:06:09:16:18:2d:f8:
        5d:69:12:f7:06:0b:65:68:48:54:8d:08:43:40:82:cd:
        26:c7:2f:4b:26:2a:0d:65:f7:38:3c:3d:c4:9b:73:63:
        e4:a4:99:1c:65:21:01:15:28:2e:83:ab:57:0e:bd:41:
        0e:41:14:8a:5f:2e:65:59:3e:24:27:6d:6a:48:5c:fa:
        cb:72:93:66:d2:83:16:f5:a3:55:51:1d:da:79:87:15:
        6c:3a:4f:53:e3:ab:09:90:d6:bd:8f:de:9d:64:3a:3c:
        72:bf:bb:59:f0:b1:25:b7:86:3d:f2:78:40:80:62:52:
        64:a6:05:d4:3d:35:b7:c8:cb:c3:ac:b7:c4:ff:b4:92:
        39:29:f6:c0:e4:d4:34:26:ca:3e:bd:ca:fa:f0:0d:88:
        c9:e6:bd:95:64:3f:28:e1:30:1d:10:a8:a6:26:0e:96
    Fingerprint (SHA-256):
        FD:AF:0C:F7:15:4E:69:51:72:C8:74:C5:8E:F2:63:FD:E0:A7:02:B6:44:B9:A1:CD:60:0D:4A:1B:D5:3F:50:7F
    Fingerprint (SHA1):
        41:28:2C:08:01:06:65:16:C7:0D:B5:E8:79:62:EE:EA:AE:47:24:0D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6223: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6224: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115746 (0x1e67bfa2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:57:37 2017
            Not After : Tue May 10 11:57:37 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:83:d0:e3:96:50:bb:26:7a:42:07:94:24:0d:62:82:
                    61:a1:00:c7:d5:c1:b8:e3:5e:b9:3f:8f:65:4c:27:f7:
                    64:44:90:fa:dc:32:8e:f0:4e:0b:7e:57:5e:a8:7e:f5:
                    4b:8a:02:b4:68:1f:8c:91:e9:d3:ad:82:20:5e:0a:13:
                    1b:c2:e8:96:7f:d9:2a:3a:95:01:81:ca:f9:c9:ec:7a:
                    35:92:ed:f3:36:32:f7:78:3e:91:e2:80:ff:ea:67:5d:
                    d2:6e:88:f0:41:3a:6c:92:4a:83:84:8e:e4:09:30:86:
                    f7:87:61:40:f6:d2:82:8c:43:69:b5:43:52:f0:95:cd:
                    77:31:c0:b7:f2:26:61:01:60:ea:95:1b:14:21:af:ee:
                    f4:af:21:3e:ef:2d:20:56:50:0b:fc:ad:7f:e6:fa:f7:
                    e6:b0:b9:5c:d1:23:eb:6a:af:65:90:c4:6b:c2:26:d3:
                    6d:bf:85:02:b5:96:e4:17:bd:f4:de:95:ed:44:ca:8c:
                    34:cd:24:5c:69:8c:1b:99:1c:09:90:cb:89:7a:45:3d:
                    25:91:8f:72:6f:48:60:0e:3d:3a:d2:59:4e:5f:43:6c:
                    f9:66:05:c8:28:97:4a:54:9a:5d:6a:2f:8d:df:64:9b:
                    6f:6d:b4:df:80:95:f0:ef:7e:bc:33:d7:ba:52:23:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:b2:20:85:2c:e4:1e:68:91:e0:d2:b1:e4:5a:14:98:
        1d:7f:0a:13:5c:49:c4:10:0f:c9:4f:b5:50:cf:ee:55:
        82:2b:02:84:49:f8:b8:b6:83:be:bb:ac:dd:ba:43:76:
        76:33:4a:96:a2:c1:27:7e:c2:41:46:2f:43:ed:8e:69:
        21:75:53:e9:f4:71:8c:41:16:16:be:cb:8c:1a:27:8d:
        dd:ee:eb:ec:01:20:d0:0d:7a:ec:12:cd:ce:f5:a2:4a:
        83:78:5f:27:c5:5d:20:95:a9:bd:82:1e:36:05:9e:a6:
        6b:70:a4:9b:26:3c:5d:17:fb:65:85:71:b7:bf:25:65:
        e7:92:7b:ff:a5:a5:35:4b:06:36:8e:5b:c8:19:a5:ed:
        08:d5:9d:5d:7e:69:06:0e:20:e1:9b:7f:40:41:4d:94:
        98:78:a6:16:fd:2b:ed:3c:91:62:a9:81:fd:80:fc:44:
        fc:e2:eb:ba:db:cd:0c:fc:cb:a0:99:6e:09:85:11:b2:
        de:c2:46:b9:52:c6:38:f5:c3:b6:03:f6:f8:a7:78:4b:
        05:10:94:35:93:ed:56:36:33:9d:6c:e7:ac:b2:9c:5e:
        d8:3b:d5:72:8c:de:1d:28:22:18:70:28:52:fe:ae:4e:
        92:92:95:16:07:f8:4b:78:cd:af:36:63:73:bb:b7:3c
    Fingerprint (SHA-256):
        2B:99:F3:44:5A:58:A7:83:C5:12:50:6E:84:85:4C:91:A8:C3:A7:6E:3B:66:04:45:73:1E:3E:0C:4C:F1:41:08
    Fingerprint (SHA1):
        6E:5F:30:B8:0D:49:BB:C4:FD:FE:A4:3A:B6:20:D0:55:4C:CA:27:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6225: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6226: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6227: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6228: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6229: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115744 (0x1e67bfa0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:36 2017
            Not After : Tue May 10 11:57:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:31:cd:78:43:2e:80:64:d3:64:de:23:68:d9:b1:b7:
                    44:66:8d:e7:36:ca:28:dc:3f:99:1b:49:88:33:21:69:
                    e9:f0:8e:e8:4c:aa:a7:ab:7c:38:ec:be:bd:ab:0c:a6:
                    ad:f4:5f:89:29:d9:4c:73:7b:a0:09:f8:60:4e:ac:66:
                    bc:f9:f2:17:a8:d1:57:c2:8e:8a:d2:d4:4b:39:ec:8b:
                    bb:e3:5c:64:fb:6d:44:63:65:23:e7:c6:5c:de:85:56:
                    d0:6c:8d:cd:cb:42:3f:38:07:b2:84:69:9d:bf:d1:49:
                    0f:f7:0a:7e:f2:5d:dd:91:0b:a8:8f:6d:2b:a0:ab:66:
                    68:56:85:8e:15:98:ec:35:38:68:fc:c8:82:41:bf:eb:
                    f7:e5:54:24:05:3a:bb:c1:f9:4e:f8:a0:0b:fb:5f:91:
                    b0:3d:c6:23:4a:b8:02:78:31:04:cc:3d:ce:0e:89:74:
                    08:73:16:cf:b7:06:d2:89:a2:e2:d7:83:2b:b0:29:bd:
                    d6:84:c9:03:76:7c:38:e5:73:18:1a:31:04:f1:bf:fd:
                    f0:83:96:bf:2d:04:30:48:9c:3c:19:d7:5c:ea:b3:a1:
                    10:98:8e:6d:0d:0b:b5:7b:71:0c:32:68:a6:ba:97:81:
                    1a:60:53:5b:26:0e:f1:d5:25:39:e9:8d:7a:0e:1b:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        29:4f:af:b3:34:24:2a:22:77:7b:b5:94:42:b7:be:22:
        11:6b:fe:af:82:56:87:da:9b:ca:3d:71:b8:2b:cb:a8:
        f6:78:7c:6c:38:4d:f2:e1:72:2b:c7:be:c8:90:1c:ba:
        4a:a7:16:4f:b8:2a:92:76:b4:18:94:f2:69:d0:78:a8:
        b0:d3:3f:e1:d9:62:e3:2a:12:50:77:05:aa:6d:a2:ff:
        24:06:3e:f7:be:da:aa:b0:16:8f:bd:e2:c6:d8:1c:e8:
        22:46:be:30:81:ab:9b:61:8a:94:33:d5:41:3d:59:3d:
        d6:24:56:c4:ab:30:05:e3:08:41:d4:6d:24:cf:4d:5a:
        80:62:1d:99:0e:ef:df:23:1c:83:4e:50:10:63:36:0f:
        f7:2d:07:60:f4:7b:50:08:6e:ff:f9:0b:f4:19:cf:04:
        a0:b7:d4:d4:03:3f:1f:d0:09:3d:4c:5d:ba:02:1b:a6:
        d9:95:9d:ca:cf:f2:db:f2:5c:d2:1d:17:7a:45:ac:d0:
        7f:d0:80:7a:ee:28:4f:1c:98:48:52:93:e2:b9:f0:e4:
        b6:51:33:cb:a7:d6:b7:b1:a4:51:97:ff:28:09:2f:da:
        72:fa:93:7f:9b:18:a6:e2:fa:5b:46:6b:81:29:7b:cb:
        ec:5b:b5:5f:82:52:0b:09:4f:61:6b:5e:97:c0:ae:70
    Fingerprint (SHA-256):
        60:4E:A9:6F:E8:3B:3E:1A:25:46:D1:6B:E3:90:EE:D7:E5:BB:76:3C:E4:A0:21:99:50:08:D0:54:52:BB:97:EA
    Fingerprint (SHA1):
        E4:93:CC:CA:63:91:97:A5:4F:6E:38:5D:8D:43:6A:ED:EE:10:3B:8E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6230: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6231: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115745 (0x1e67bfa1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:37 2017
            Not After : Tue May 10 11:57:37 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:0e:e8:1f:09:92:71:ce:0b:38:76:02:e7:b0:fb:13:
                    91:19:06:a1:78:5f:d3:85:b9:62:1e:96:38:13:28:06:
                    c9:8a:cb:df:8d:61:a2:c0:ff:d3:39:cf:a5:a7:58:5a:
                    dd:64:72:2c:9f:f1:37:a3:ca:f0:b4:6f:37:29:c8:77:
                    22:7d:0b:88:a7:30:6b:84:0c:68:3d:28:8d:44:6c:67:
                    e1:04:9b:f8:e9:5d:0f:d5:25:c3:b8:c4:00:6d:23:cf:
                    99:17:af:60:27:77:42:88:28:f7:05:3d:83:ba:60:a1:
                    48:91:5b:92:92:4b:10:1b:a2:c1:ef:93:72:c7:8c:9d:
                    ef:a0:8c:44:a8:f7:8a:a9:84:65:72:a3:62:33:a1:3e:
                    19:fd:25:e9:47:8e:f9:15:5e:25:89:e3:b8:ee:5c:e3:
                    03:0b:ca:7f:73:e2:25:2f:dc:1b:9d:f0:cc:69:a0:87:
                    70:a5:c9:39:bb:01:d6:44:83:09:19:aa:f9:71:39:01:
                    7e:81:18:b2:01:c2:82:ac:fa:94:f2:b9:5a:da:a3:38:
                    7e:70:f9:d5:a0:a9:86:48:cf:22:b4:52:f4:a7:d3:f4:
                    92:af:47:5e:98:81:e9:d1:cc:82:c6:8f:a5:6d:03:d6:
                    3d:2a:42:07:40:5d:0e:03:22:5c:55:ba:28:42:3a:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:43:38:85:11:20:20:ff:8f:53:24:ac:92:8b:e7:d1:
        77:09:66:03:94:e0:36:3b:62:80:8e:a8:00:af:af:54:
        83:4d:68:a5:a8:7d:33:78:e0:ac:c6:55:4d:1c:d9:a6:
        a4:95:80:1e:de:95:24:f5:8f:c8:0e:1c:9b:01:7a:35:
        40:26:e2:6b:23:f0:f0:c9:ef:de:86:52:78:e4:3b:37:
        82:1f:1d:b8:fc:a9:84:ca:33:e8:06:09:16:18:2d:f8:
        5d:69:12:f7:06:0b:65:68:48:54:8d:08:43:40:82:cd:
        26:c7:2f:4b:26:2a:0d:65:f7:38:3c:3d:c4:9b:73:63:
        e4:a4:99:1c:65:21:01:15:28:2e:83:ab:57:0e:bd:41:
        0e:41:14:8a:5f:2e:65:59:3e:24:27:6d:6a:48:5c:fa:
        cb:72:93:66:d2:83:16:f5:a3:55:51:1d:da:79:87:15:
        6c:3a:4f:53:e3:ab:09:90:d6:bd:8f:de:9d:64:3a:3c:
        72:bf:bb:59:f0:b1:25:b7:86:3d:f2:78:40:80:62:52:
        64:a6:05:d4:3d:35:b7:c8:cb:c3:ac:b7:c4:ff:b4:92:
        39:29:f6:c0:e4:d4:34:26:ca:3e:bd:ca:fa:f0:0d:88:
        c9:e6:bd:95:64:3f:28:e1:30:1d:10:a8:a6:26:0e:96
    Fingerprint (SHA-256):
        FD:AF:0C:F7:15:4E:69:51:72:C8:74:C5:8E:F2:63:FD:E0:A7:02:B6:44:B9:A1:CD:60:0D:4A:1B:D5:3F:50:7F
    Fingerprint (SHA1):
        41:28:2C:08:01:06:65:16:C7:0D:B5:E8:79:62:EE:EA:AE:47:24:0D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6232: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6233: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115746 (0x1e67bfa2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:57:37 2017
            Not After : Tue May 10 11:57:37 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:83:d0:e3:96:50:bb:26:7a:42:07:94:24:0d:62:82:
                    61:a1:00:c7:d5:c1:b8:e3:5e:b9:3f:8f:65:4c:27:f7:
                    64:44:90:fa:dc:32:8e:f0:4e:0b:7e:57:5e:a8:7e:f5:
                    4b:8a:02:b4:68:1f:8c:91:e9:d3:ad:82:20:5e:0a:13:
                    1b:c2:e8:96:7f:d9:2a:3a:95:01:81:ca:f9:c9:ec:7a:
                    35:92:ed:f3:36:32:f7:78:3e:91:e2:80:ff:ea:67:5d:
                    d2:6e:88:f0:41:3a:6c:92:4a:83:84:8e:e4:09:30:86:
                    f7:87:61:40:f6:d2:82:8c:43:69:b5:43:52:f0:95:cd:
                    77:31:c0:b7:f2:26:61:01:60:ea:95:1b:14:21:af:ee:
                    f4:af:21:3e:ef:2d:20:56:50:0b:fc:ad:7f:e6:fa:f7:
                    e6:b0:b9:5c:d1:23:eb:6a:af:65:90:c4:6b:c2:26:d3:
                    6d:bf:85:02:b5:96:e4:17:bd:f4:de:95:ed:44:ca:8c:
                    34:cd:24:5c:69:8c:1b:99:1c:09:90:cb:89:7a:45:3d:
                    25:91:8f:72:6f:48:60:0e:3d:3a:d2:59:4e:5f:43:6c:
                    f9:66:05:c8:28:97:4a:54:9a:5d:6a:2f:8d:df:64:9b:
                    6f:6d:b4:df:80:95:f0:ef:7e:bc:33:d7:ba:52:23:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:b2:20:85:2c:e4:1e:68:91:e0:d2:b1:e4:5a:14:98:
        1d:7f:0a:13:5c:49:c4:10:0f:c9:4f:b5:50:cf:ee:55:
        82:2b:02:84:49:f8:b8:b6:83:be:bb:ac:dd:ba:43:76:
        76:33:4a:96:a2:c1:27:7e:c2:41:46:2f:43:ed:8e:69:
        21:75:53:e9:f4:71:8c:41:16:16:be:cb:8c:1a:27:8d:
        dd:ee:eb:ec:01:20:d0:0d:7a:ec:12:cd:ce:f5:a2:4a:
        83:78:5f:27:c5:5d:20:95:a9:bd:82:1e:36:05:9e:a6:
        6b:70:a4:9b:26:3c:5d:17:fb:65:85:71:b7:bf:25:65:
        e7:92:7b:ff:a5:a5:35:4b:06:36:8e:5b:c8:19:a5:ed:
        08:d5:9d:5d:7e:69:06:0e:20:e1:9b:7f:40:41:4d:94:
        98:78:a6:16:fd:2b:ed:3c:91:62:a9:81:fd:80:fc:44:
        fc:e2:eb:ba:db:cd:0c:fc:cb:a0:99:6e:09:85:11:b2:
        de:c2:46:b9:52:c6:38:f5:c3:b6:03:f6:f8:a7:78:4b:
        05:10:94:35:93:ed:56:36:33:9d:6c:e7:ac:b2:9c:5e:
        d8:3b:d5:72:8c:de:1d:28:22:18:70:28:52:fe:ae:4e:
        92:92:95:16:07:f8:4b:78:cd:af:36:63:73:bb:b7:3c
    Fingerprint (SHA-256):
        2B:99:F3:44:5A:58:A7:83:C5:12:50:6E:84:85:4C:91:A8:C3:A7:6E:3B:66:04:45:73:1E:3E:0C:4C:F1:41:08
    Fingerprint (SHA1):
        6E:5F:30:B8:0D:49:BB:C4:FD:FE:A4:3A:B6:20:D0:55:4C:CA:27:B7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6234: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6235: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6236: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115748 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6237: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6238: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6239: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6240: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115749   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6241: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6242: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6243: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6244: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115750   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6245: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6246: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6247: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6248: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510115751   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6249: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6250: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6251: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6252: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510115752   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6253: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6254: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6255: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115748 (0x1e67bfa4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:38 2017
            Not After : Tue May 10 11:57:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:2f:ac:c9:a3:dc:60:ca:ee:24:36:bc:82:59:e7:7d:
                    bf:5f:3a:d1:b4:2a:20:85:8a:04:08:eb:4e:09:9d:99:
                    a1:ce:ac:33:53:36:ca:b2:9b:71:67:72:8f:28:87:f0:
                    92:1a:1d:3c:80:1b:6b:ae:aa:41:a4:5e:c9:8e:15:9e:
                    e7:65:2c:07:85:af:04:da:af:b3:7a:0f:ad:8f:9c:59:
                    ed:a4:81:35:53:53:47:0c:94:b0:44:21:7e:93:4e:36:
                    db:79:57:48:23:44:9f:fc:7a:29:18:92:dc:75:7b:51:
                    b5:09:70:9a:0f:27:8f:9a:2e:23:81:58:86:0a:9a:70:
                    99:9a:61:c3:b5:b3:84:8f:b1:c8:b5:07:7f:1b:a2:2e:
                    fa:a1:47:7d:54:93:15:a7:c5:4c:6c:be:de:ed:cc:15:
                    f0:3b:f3:ee:13:98:21:9b:0c:97:8e:fa:ab:2c:3b:d8:
                    4b:41:83:a4:7c:0f:bf:27:6c:94:48:ac:7a:26:b4:2d:
                    81:65:95:e8:6f:07:78:4f:8a:13:94:eb:a6:0c:fa:27:
                    5b:b0:9b:2c:b0:d9:bf:e7:7c:c2:4f:f1:3a:c1:58:6c:
                    b9:5e:34:35:c9:65:54:d3:ab:12:f6:2a:cf:01:bd:4f:
                    d2:9a:7f:56:3f:68:31:04:d8:82:13:54:1f:a7:12:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:b4:41:b0:9b:c2:f1:41:04:c7:62:06:93:12:c2:71:
        fb:1b:fa:86:3f:2d:da:af:be:94:00:cf:2f:ff:a9:0d:
        01:c2:34:08:50:f1:8a:62:8a:c8:95:86:4c:09:1a:cb:
        d2:ff:f9:a0:fc:03:28:74:04:50:b3:f8:6f:7a:60:99:
        01:f6:b9:5b:20:c4:f9:09:1a:2d:26:92:4d:61:40:35:
        1c:24:c7:e6:09:b3:91:6f:0a:dc:57:d4:65:14:7b:6e:
        c4:f2:77:09:a1:b9:53:ab:17:08:93:a5:10:7a:e4:6e:
        cc:96:98:04:8a:09:36:c6:37:6c:fc:1b:bf:48:0f:86:
        f6:e3:8d:63:5b:60:d6:40:a3:9a:28:b3:c7:5b:05:28:
        dd:cb:6f:eb:e1:0c:b5:f0:f6:e8:37:e9:73:64:9c:c0:
        d0:b2:50:5f:22:3d:d6:c1:46:b8:7f:72:f3:4c:8d:5b:
        8a:6b:f7:07:6b:6d:b7:a4:b2:02:95:f6:ae:7a:dc:a8:
        0e:2f:69:b3:eb:61:e8:e0:e3:ae:80:f5:65:ff:79:a7:
        c4:63:10:7b:b5:6e:78:33:4d:68:e8:21:76:d3:f6:74:
        4c:2b:05:78:04:db:e8:43:02:d4:75:14:6a:7e:2f:95:
        d0:d0:1e:39:d8:aa:de:42:b2:f2:b0:ac:b1:b9:1b:93
    Fingerprint (SHA-256):
        88:8A:FA:77:86:E3:DC:56:AD:48:DA:07:A9:04:5A:14:22:8D:14:B2:0B:9A:94:88:E1:7D:48:07:C5:05:CF:A1
    Fingerprint (SHA1):
        87:EB:3A:0B:AB:D9:F1:1A:1C:D7:24:95:73:4E:CA:64:B6:D5:3A:C9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6256: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6257: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115749 (0x1e67bfa5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:38 2017
            Not After : Tue May 10 11:57:38 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b5:81:3f:9c:10:ec:37:41:8a:7a:d8:1f:76:49:90:
                    df:76:15:3c:66:20:90:3d:ae:ce:fe:63:7a:b2:7a:7a:
                    37:1d:a0:43:a9:d7:3b:af:a9:2c:09:1d:da:a5:0e:8a:
                    fe:54:2c:1b:6a:72:49:f8:ea:bc:3d:d6:91:68:2f:a7:
                    67:80:7e:26:bc:1b:26:00:5f:b9:44:b9:df:68:76:49:
                    7e:9d:1c:cb:62:31:13:b9:40:86:de:a8:0c:7b:3e:8d:
                    c7:24:37:3b:18:40:a8:e8:33:43:b6:6f:16:00:d7:9c:
                    be:2b:a5:f7:8f:97:1b:42:0e:a8:10:fc:3b:7b:8f:a4:
                    10:a3:20:aa:45:7c:dd:f1:9b:09:05:6f:7e:38:e4:91:
                    6e:73:1b:2d:41:c5:90:58:a2:2d:77:22:90:34:3b:a8:
                    cd:dc:dc:91:70:ad:28:6d:1a:cf:03:83:21:bb:d0:18:
                    0d:e9:00:e4:5a:a1:ca:29:c6:8d:f4:94:81:73:37:5e:
                    b8:c2:d2:d4:df:1c:04:31:90:76:28:80:cf:dc:e2:2c:
                    9a:c7:29:5a:ae:32:0f:40:8b:74:7d:de:d4:c4:ac:15:
                    fb:32:ca:7e:f9:fe:72:0f:2e:39:bd:81:8b:45:37:f0:
                    f7:00:ec:0d:c4:6d:10:fe:6c:5e:20:cb:a3:2f:3b:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:7b:85:85:12:f6:3e:27:bb:3b:1f:e0:9f:54:08:e2:
        df:a8:cf:13:21:8f:de:62:4a:d4:dd:8a:4c:51:09:79:
        ad:88:5e:30:b8:74:27:1d:3c:56:27:cb:da:28:f4:1d:
        6e:a1:f3:84:ff:02:cc:f8:6c:b7:9d:ed:15:ab:96:93:
        4a:06:5f:ec:04:6d:b6:5d:9e:65:3b:b9:69:80:62:c3:
        29:82:90:a3:54:04:30:48:a2:4b:cb:90:e6:b8:9a:88:
        cf:82:c4:5c:04:a7:fb:ca:d3:9b:1d:b4:e0:9a:e2:9f:
        f6:04:d0:c2:6f:08:f6:24:71:eb:cb:1f:25:32:e6:06:
        11:61:38:c3:be:6f:a0:b0:51:cb:57:b8:c3:eb:b6:93:
        93:4c:1f:3e:7e:53:1d:68:dd:ae:ed:9a:9a:91:ad:f6:
        a1:13:54:67:93:56:58:b5:a1:e6:d4:52:71:13:fb:5a:
        aa:fa:c0:11:c1:e9:7d:26:44:61:ba:53:13:42:c4:ab:
        51:43:cc:f0:e9:bc:f3:73:f6:3d:56:e9:48:54:d6:50:
        5f:ea:8f:27:0e:0b:01:13:75:08:65:65:84:b1:99:d4:
        97:ae:7d:8f:4b:96:e8:97:ba:c6:71:be:1e:cd:8c:e0:
        1d:15:d2:74:15:d7:a5:52:0e:c6:9c:f1:00:fb:60:41
    Fingerprint (SHA-256):
        74:01:C6:FA:2A:C3:ED:4D:0F:38:45:43:31:4A:E7:8C:ED:2E:DA:E5:70:02:DF:C0:15:03:F5:E3:08:36:5F:0A
    Fingerprint (SHA1):
        D3:53:FC:48:52:85:5F:FA:A8:90:B2:6F:28:39:77:6E:47:5A:22:B5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6258: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6259: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115750 (0x1e67bfa6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:57:39 2017
            Not After : Tue May 10 11:57:39 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:ab:d2:67:0a:be:75:a6:e2:88:e5:07:75:38:fa:49:
                    88:c3:aa:3f:d8:59:b3:c6:23:27:df:70:45:b7:7f:3b:
                    48:8e:11:c3:b5:bc:9c:19:9b:c4:dd:6e:67:af:35:d4:
                    d2:3c:81:05:a3:4f:bf:b8:d5:b5:db:65:d5:56:a5:bd:
                    91:12:b5:41:83:74:47:45:0f:75:11:c3:85:78:7a:c5:
                    ce:ee:21:63:47:30:1c:0a:ac:fd:33:35:20:1d:47:9e:
                    6b:05:23:cf:66:58:be:b5:f6:24:81:48:b6:80:b4:f1:
                    44:04:45:24:4a:15:4c:aa:34:33:bb:ce:34:ba:9c:38:
                    c9:0e:0e:fd:d9:fb:19:a5:1a:20:31:f9:f9:92:ad:b2:
                    25:2d:2f:7b:8d:be:15:8f:c4:8e:18:75:ba:c5:d9:54:
                    0d:9a:07:23:5b:0b:91:b0:e6:85:10:a3:0e:cb:31:92:
                    79:37:26:d4:77:ff:5c:80:3c:ff:9c:1e:46:af:cc:db:
                    1f:b8:b7:3a:1a:11:d0:c3:73:d9:a8:ae:d9:39:07:7b:
                    5e:53:46:19:8e:75:d2:de:ea:ef:43:cc:8e:bf:61:62:
                    b4:07:f7:37:ad:e0:be:93:2c:a6:f6:d2:3a:35:43:1d:
                    59:05:bb:5a:51:ef:ec:2c:09:17:75:af:ad:d2:cd:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:71:b0:6b:6c:db:ea:21:1c:eb:42:c1:c6:74:ba:72:
        32:b4:be:9c:8d:a4:98:43:c6:b1:65:8c:87:aa:d5:5d:
        d6:55:47:93:18:2d:a9:c5:27:8c:8e:55:34:df:1a:73:
        72:73:e7:fd:9e:3d:52:7d:58:2a:af:cb:5e:90:96:11:
        21:e0:c8:48:a9:67:9e:b6:8b:6b:5b:0c:b1:18:16:11:
        de:5c:e3:bc:31:1c:e1:72:8d:04:78:84:0c:e8:45:64:
        95:3c:75:35:2e:c7:0d:c2:f2:3a:b2:ac:27:11:c1:5a:
        5d:4d:42:25:b9:eb:8c:13:87:a1:56:94:14:b3:76:1f:
        47:19:a3:0e:a3:35:1d:7a:2c:55:f8:51:7a:f9:d4:62:
        11:f9:58:98:28:6d:54:54:02:5a:de:4c:19:cc:8c:ae:
        12:dc:e0:e2:39:ab:08:df:bd:4b:e3:bf:5d:b8:bd:1d:
        bf:07:39:dc:cc:92:61:fb:3c:30:e9:8d:27:33:06:48:
        48:e8:bd:48:d1:ee:4f:40:76:44:6d:65:ec:f3:09:52:
        5e:65:a0:2a:55:07:b6:e6:30:62:be:a3:61:5a:9b:29:
        ce:46:41:27:ee:bb:fc:fe:8d:39:71:7c:cc:f2:d2:51:
        9e:dd:d6:f1:bc:ca:e3:a4:ea:2f:9c:c7:50:15:c4:6b
    Fingerprint (SHA-256):
        59:B7:19:5F:83:37:1C:85:63:48:ED:46:77:62:C8:A7:76:B7:37:B2:4A:42:97:00:68:8B:C2:62:46:F5:7C:7D
    Fingerprint (SHA1):
        A0:BD:A7:15:5F:40:43:B2:B1:44:59:F0:4F:F6:F4:3A:0D:18:2E:84
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6260: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6261: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6262: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6263: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6264: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115748 (0x1e67bfa4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:38 2017
            Not After : Tue May 10 11:57:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:2f:ac:c9:a3:dc:60:ca:ee:24:36:bc:82:59:e7:7d:
                    bf:5f:3a:d1:b4:2a:20:85:8a:04:08:eb:4e:09:9d:99:
                    a1:ce:ac:33:53:36:ca:b2:9b:71:67:72:8f:28:87:f0:
                    92:1a:1d:3c:80:1b:6b:ae:aa:41:a4:5e:c9:8e:15:9e:
                    e7:65:2c:07:85:af:04:da:af:b3:7a:0f:ad:8f:9c:59:
                    ed:a4:81:35:53:53:47:0c:94:b0:44:21:7e:93:4e:36:
                    db:79:57:48:23:44:9f:fc:7a:29:18:92:dc:75:7b:51:
                    b5:09:70:9a:0f:27:8f:9a:2e:23:81:58:86:0a:9a:70:
                    99:9a:61:c3:b5:b3:84:8f:b1:c8:b5:07:7f:1b:a2:2e:
                    fa:a1:47:7d:54:93:15:a7:c5:4c:6c:be:de:ed:cc:15:
                    f0:3b:f3:ee:13:98:21:9b:0c:97:8e:fa:ab:2c:3b:d8:
                    4b:41:83:a4:7c:0f:bf:27:6c:94:48:ac:7a:26:b4:2d:
                    81:65:95:e8:6f:07:78:4f:8a:13:94:eb:a6:0c:fa:27:
                    5b:b0:9b:2c:b0:d9:bf:e7:7c:c2:4f:f1:3a:c1:58:6c:
                    b9:5e:34:35:c9:65:54:d3:ab:12:f6:2a:cf:01:bd:4f:
                    d2:9a:7f:56:3f:68:31:04:d8:82:13:54:1f:a7:12:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:b4:41:b0:9b:c2:f1:41:04:c7:62:06:93:12:c2:71:
        fb:1b:fa:86:3f:2d:da:af:be:94:00:cf:2f:ff:a9:0d:
        01:c2:34:08:50:f1:8a:62:8a:c8:95:86:4c:09:1a:cb:
        d2:ff:f9:a0:fc:03:28:74:04:50:b3:f8:6f:7a:60:99:
        01:f6:b9:5b:20:c4:f9:09:1a:2d:26:92:4d:61:40:35:
        1c:24:c7:e6:09:b3:91:6f:0a:dc:57:d4:65:14:7b:6e:
        c4:f2:77:09:a1:b9:53:ab:17:08:93:a5:10:7a:e4:6e:
        cc:96:98:04:8a:09:36:c6:37:6c:fc:1b:bf:48:0f:86:
        f6:e3:8d:63:5b:60:d6:40:a3:9a:28:b3:c7:5b:05:28:
        dd:cb:6f:eb:e1:0c:b5:f0:f6:e8:37:e9:73:64:9c:c0:
        d0:b2:50:5f:22:3d:d6:c1:46:b8:7f:72:f3:4c:8d:5b:
        8a:6b:f7:07:6b:6d:b7:a4:b2:02:95:f6:ae:7a:dc:a8:
        0e:2f:69:b3:eb:61:e8:e0:e3:ae:80:f5:65:ff:79:a7:
        c4:63:10:7b:b5:6e:78:33:4d:68:e8:21:76:d3:f6:74:
        4c:2b:05:78:04:db:e8:43:02:d4:75:14:6a:7e:2f:95:
        d0:d0:1e:39:d8:aa:de:42:b2:f2:b0:ac:b1:b9:1b:93
    Fingerprint (SHA-256):
        88:8A:FA:77:86:E3:DC:56:AD:48:DA:07:A9:04:5A:14:22:8D:14:B2:0B:9A:94:88:E1:7D:48:07:C5:05:CF:A1
    Fingerprint (SHA1):
        87:EB:3A:0B:AB:D9:F1:1A:1C:D7:24:95:73:4E:CA:64:B6:D5:3A:C9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6265: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6266: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115749 (0x1e67bfa5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:38 2017
            Not After : Tue May 10 11:57:38 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b5:81:3f:9c:10:ec:37:41:8a:7a:d8:1f:76:49:90:
                    df:76:15:3c:66:20:90:3d:ae:ce:fe:63:7a:b2:7a:7a:
                    37:1d:a0:43:a9:d7:3b:af:a9:2c:09:1d:da:a5:0e:8a:
                    fe:54:2c:1b:6a:72:49:f8:ea:bc:3d:d6:91:68:2f:a7:
                    67:80:7e:26:bc:1b:26:00:5f:b9:44:b9:df:68:76:49:
                    7e:9d:1c:cb:62:31:13:b9:40:86:de:a8:0c:7b:3e:8d:
                    c7:24:37:3b:18:40:a8:e8:33:43:b6:6f:16:00:d7:9c:
                    be:2b:a5:f7:8f:97:1b:42:0e:a8:10:fc:3b:7b:8f:a4:
                    10:a3:20:aa:45:7c:dd:f1:9b:09:05:6f:7e:38:e4:91:
                    6e:73:1b:2d:41:c5:90:58:a2:2d:77:22:90:34:3b:a8:
                    cd:dc:dc:91:70:ad:28:6d:1a:cf:03:83:21:bb:d0:18:
                    0d:e9:00:e4:5a:a1:ca:29:c6:8d:f4:94:81:73:37:5e:
                    b8:c2:d2:d4:df:1c:04:31:90:76:28:80:cf:dc:e2:2c:
                    9a:c7:29:5a:ae:32:0f:40:8b:74:7d:de:d4:c4:ac:15:
                    fb:32:ca:7e:f9:fe:72:0f:2e:39:bd:81:8b:45:37:f0:
                    f7:00:ec:0d:c4:6d:10:fe:6c:5e:20:cb:a3:2f:3b:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:7b:85:85:12:f6:3e:27:bb:3b:1f:e0:9f:54:08:e2:
        df:a8:cf:13:21:8f:de:62:4a:d4:dd:8a:4c:51:09:79:
        ad:88:5e:30:b8:74:27:1d:3c:56:27:cb:da:28:f4:1d:
        6e:a1:f3:84:ff:02:cc:f8:6c:b7:9d:ed:15:ab:96:93:
        4a:06:5f:ec:04:6d:b6:5d:9e:65:3b:b9:69:80:62:c3:
        29:82:90:a3:54:04:30:48:a2:4b:cb:90:e6:b8:9a:88:
        cf:82:c4:5c:04:a7:fb:ca:d3:9b:1d:b4:e0:9a:e2:9f:
        f6:04:d0:c2:6f:08:f6:24:71:eb:cb:1f:25:32:e6:06:
        11:61:38:c3:be:6f:a0:b0:51:cb:57:b8:c3:eb:b6:93:
        93:4c:1f:3e:7e:53:1d:68:dd:ae:ed:9a:9a:91:ad:f6:
        a1:13:54:67:93:56:58:b5:a1:e6:d4:52:71:13:fb:5a:
        aa:fa:c0:11:c1:e9:7d:26:44:61:ba:53:13:42:c4:ab:
        51:43:cc:f0:e9:bc:f3:73:f6:3d:56:e9:48:54:d6:50:
        5f:ea:8f:27:0e:0b:01:13:75:08:65:65:84:b1:99:d4:
        97:ae:7d:8f:4b:96:e8:97:ba:c6:71:be:1e:cd:8c:e0:
        1d:15:d2:74:15:d7:a5:52:0e:c6:9c:f1:00:fb:60:41
    Fingerprint (SHA-256):
        74:01:C6:FA:2A:C3:ED:4D:0F:38:45:43:31:4A:E7:8C:ED:2E:DA:E5:70:02:DF:C0:15:03:F5:E3:08:36:5F:0A
    Fingerprint (SHA1):
        D3:53:FC:48:52:85:5F:FA:A8:90:B2:6F:28:39:77:6E:47:5A:22:B5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6267: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6268: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115750 (0x1e67bfa6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:57:39 2017
            Not After : Tue May 10 11:57:39 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:ab:d2:67:0a:be:75:a6:e2:88:e5:07:75:38:fa:49:
                    88:c3:aa:3f:d8:59:b3:c6:23:27:df:70:45:b7:7f:3b:
                    48:8e:11:c3:b5:bc:9c:19:9b:c4:dd:6e:67:af:35:d4:
                    d2:3c:81:05:a3:4f:bf:b8:d5:b5:db:65:d5:56:a5:bd:
                    91:12:b5:41:83:74:47:45:0f:75:11:c3:85:78:7a:c5:
                    ce:ee:21:63:47:30:1c:0a:ac:fd:33:35:20:1d:47:9e:
                    6b:05:23:cf:66:58:be:b5:f6:24:81:48:b6:80:b4:f1:
                    44:04:45:24:4a:15:4c:aa:34:33:bb:ce:34:ba:9c:38:
                    c9:0e:0e:fd:d9:fb:19:a5:1a:20:31:f9:f9:92:ad:b2:
                    25:2d:2f:7b:8d:be:15:8f:c4:8e:18:75:ba:c5:d9:54:
                    0d:9a:07:23:5b:0b:91:b0:e6:85:10:a3:0e:cb:31:92:
                    79:37:26:d4:77:ff:5c:80:3c:ff:9c:1e:46:af:cc:db:
                    1f:b8:b7:3a:1a:11:d0:c3:73:d9:a8:ae:d9:39:07:7b:
                    5e:53:46:19:8e:75:d2:de:ea:ef:43:cc:8e:bf:61:62:
                    b4:07:f7:37:ad:e0:be:93:2c:a6:f6:d2:3a:35:43:1d:
                    59:05:bb:5a:51:ef:ec:2c:09:17:75:af:ad:d2:cd:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:71:b0:6b:6c:db:ea:21:1c:eb:42:c1:c6:74:ba:72:
        32:b4:be:9c:8d:a4:98:43:c6:b1:65:8c:87:aa:d5:5d:
        d6:55:47:93:18:2d:a9:c5:27:8c:8e:55:34:df:1a:73:
        72:73:e7:fd:9e:3d:52:7d:58:2a:af:cb:5e:90:96:11:
        21:e0:c8:48:a9:67:9e:b6:8b:6b:5b:0c:b1:18:16:11:
        de:5c:e3:bc:31:1c:e1:72:8d:04:78:84:0c:e8:45:64:
        95:3c:75:35:2e:c7:0d:c2:f2:3a:b2:ac:27:11:c1:5a:
        5d:4d:42:25:b9:eb:8c:13:87:a1:56:94:14:b3:76:1f:
        47:19:a3:0e:a3:35:1d:7a:2c:55:f8:51:7a:f9:d4:62:
        11:f9:58:98:28:6d:54:54:02:5a:de:4c:19:cc:8c:ae:
        12:dc:e0:e2:39:ab:08:df:bd:4b:e3:bf:5d:b8:bd:1d:
        bf:07:39:dc:cc:92:61:fb:3c:30:e9:8d:27:33:06:48:
        48:e8:bd:48:d1:ee:4f:40:76:44:6d:65:ec:f3:09:52:
        5e:65:a0:2a:55:07:b6:e6:30:62:be:a3:61:5a:9b:29:
        ce:46:41:27:ee:bb:fc:fe:8d:39:71:7c:cc:f2:d2:51:
        9e:dd:d6:f1:bc:ca:e3:a4:ea:2f:9c:c7:50:15:c4:6b
    Fingerprint (SHA-256):
        59:B7:19:5F:83:37:1C:85:63:48:ED:46:77:62:C8:A7:76:B7:37:B2:4A:42:97:00:68:8B:C2:62:46:F5:7C:7D
    Fingerprint (SHA1):
        A0:BD:A7:15:5F:40:43:B2:B1:44:59:F0:4F:F6:F4:3A:0D:18:2E:84
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6269: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6270: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115748 (0x1e67bfa4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:38 2017
            Not After : Tue May 10 11:57:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:2f:ac:c9:a3:dc:60:ca:ee:24:36:bc:82:59:e7:7d:
                    bf:5f:3a:d1:b4:2a:20:85:8a:04:08:eb:4e:09:9d:99:
                    a1:ce:ac:33:53:36:ca:b2:9b:71:67:72:8f:28:87:f0:
                    92:1a:1d:3c:80:1b:6b:ae:aa:41:a4:5e:c9:8e:15:9e:
                    e7:65:2c:07:85:af:04:da:af:b3:7a:0f:ad:8f:9c:59:
                    ed:a4:81:35:53:53:47:0c:94:b0:44:21:7e:93:4e:36:
                    db:79:57:48:23:44:9f:fc:7a:29:18:92:dc:75:7b:51:
                    b5:09:70:9a:0f:27:8f:9a:2e:23:81:58:86:0a:9a:70:
                    99:9a:61:c3:b5:b3:84:8f:b1:c8:b5:07:7f:1b:a2:2e:
                    fa:a1:47:7d:54:93:15:a7:c5:4c:6c:be:de:ed:cc:15:
                    f0:3b:f3:ee:13:98:21:9b:0c:97:8e:fa:ab:2c:3b:d8:
                    4b:41:83:a4:7c:0f:bf:27:6c:94:48:ac:7a:26:b4:2d:
                    81:65:95:e8:6f:07:78:4f:8a:13:94:eb:a6:0c:fa:27:
                    5b:b0:9b:2c:b0:d9:bf:e7:7c:c2:4f:f1:3a:c1:58:6c:
                    b9:5e:34:35:c9:65:54:d3:ab:12:f6:2a:cf:01:bd:4f:
                    d2:9a:7f:56:3f:68:31:04:d8:82:13:54:1f:a7:12:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:b4:41:b0:9b:c2:f1:41:04:c7:62:06:93:12:c2:71:
        fb:1b:fa:86:3f:2d:da:af:be:94:00:cf:2f:ff:a9:0d:
        01:c2:34:08:50:f1:8a:62:8a:c8:95:86:4c:09:1a:cb:
        d2:ff:f9:a0:fc:03:28:74:04:50:b3:f8:6f:7a:60:99:
        01:f6:b9:5b:20:c4:f9:09:1a:2d:26:92:4d:61:40:35:
        1c:24:c7:e6:09:b3:91:6f:0a:dc:57:d4:65:14:7b:6e:
        c4:f2:77:09:a1:b9:53:ab:17:08:93:a5:10:7a:e4:6e:
        cc:96:98:04:8a:09:36:c6:37:6c:fc:1b:bf:48:0f:86:
        f6:e3:8d:63:5b:60:d6:40:a3:9a:28:b3:c7:5b:05:28:
        dd:cb:6f:eb:e1:0c:b5:f0:f6:e8:37:e9:73:64:9c:c0:
        d0:b2:50:5f:22:3d:d6:c1:46:b8:7f:72:f3:4c:8d:5b:
        8a:6b:f7:07:6b:6d:b7:a4:b2:02:95:f6:ae:7a:dc:a8:
        0e:2f:69:b3:eb:61:e8:e0:e3:ae:80:f5:65:ff:79:a7:
        c4:63:10:7b:b5:6e:78:33:4d:68:e8:21:76:d3:f6:74:
        4c:2b:05:78:04:db:e8:43:02:d4:75:14:6a:7e:2f:95:
        d0:d0:1e:39:d8:aa:de:42:b2:f2:b0:ac:b1:b9:1b:93
    Fingerprint (SHA-256):
        88:8A:FA:77:86:E3:DC:56:AD:48:DA:07:A9:04:5A:14:22:8D:14:B2:0B:9A:94:88:E1:7D:48:07:C5:05:CF:A1
    Fingerprint (SHA1):
        87:EB:3A:0B:AB:D9:F1:1A:1C:D7:24:95:73:4E:CA:64:B6:D5:3A:C9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6271: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115748 (0x1e67bfa4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:38 2017
            Not After : Tue May 10 11:57:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:2f:ac:c9:a3:dc:60:ca:ee:24:36:bc:82:59:e7:7d:
                    bf:5f:3a:d1:b4:2a:20:85:8a:04:08:eb:4e:09:9d:99:
                    a1:ce:ac:33:53:36:ca:b2:9b:71:67:72:8f:28:87:f0:
                    92:1a:1d:3c:80:1b:6b:ae:aa:41:a4:5e:c9:8e:15:9e:
                    e7:65:2c:07:85:af:04:da:af:b3:7a:0f:ad:8f:9c:59:
                    ed:a4:81:35:53:53:47:0c:94:b0:44:21:7e:93:4e:36:
                    db:79:57:48:23:44:9f:fc:7a:29:18:92:dc:75:7b:51:
                    b5:09:70:9a:0f:27:8f:9a:2e:23:81:58:86:0a:9a:70:
                    99:9a:61:c3:b5:b3:84:8f:b1:c8:b5:07:7f:1b:a2:2e:
                    fa:a1:47:7d:54:93:15:a7:c5:4c:6c:be:de:ed:cc:15:
                    f0:3b:f3:ee:13:98:21:9b:0c:97:8e:fa:ab:2c:3b:d8:
                    4b:41:83:a4:7c:0f:bf:27:6c:94:48:ac:7a:26:b4:2d:
                    81:65:95:e8:6f:07:78:4f:8a:13:94:eb:a6:0c:fa:27:
                    5b:b0:9b:2c:b0:d9:bf:e7:7c:c2:4f:f1:3a:c1:58:6c:
                    b9:5e:34:35:c9:65:54:d3:ab:12:f6:2a:cf:01:bd:4f:
                    d2:9a:7f:56:3f:68:31:04:d8:82:13:54:1f:a7:12:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:b4:41:b0:9b:c2:f1:41:04:c7:62:06:93:12:c2:71:
        fb:1b:fa:86:3f:2d:da:af:be:94:00:cf:2f:ff:a9:0d:
        01:c2:34:08:50:f1:8a:62:8a:c8:95:86:4c:09:1a:cb:
        d2:ff:f9:a0:fc:03:28:74:04:50:b3:f8:6f:7a:60:99:
        01:f6:b9:5b:20:c4:f9:09:1a:2d:26:92:4d:61:40:35:
        1c:24:c7:e6:09:b3:91:6f:0a:dc:57:d4:65:14:7b:6e:
        c4:f2:77:09:a1:b9:53:ab:17:08:93:a5:10:7a:e4:6e:
        cc:96:98:04:8a:09:36:c6:37:6c:fc:1b:bf:48:0f:86:
        f6:e3:8d:63:5b:60:d6:40:a3:9a:28:b3:c7:5b:05:28:
        dd:cb:6f:eb:e1:0c:b5:f0:f6:e8:37:e9:73:64:9c:c0:
        d0:b2:50:5f:22:3d:d6:c1:46:b8:7f:72:f3:4c:8d:5b:
        8a:6b:f7:07:6b:6d:b7:a4:b2:02:95:f6:ae:7a:dc:a8:
        0e:2f:69:b3:eb:61:e8:e0:e3:ae:80:f5:65:ff:79:a7:
        c4:63:10:7b:b5:6e:78:33:4d:68:e8:21:76:d3:f6:74:
        4c:2b:05:78:04:db:e8:43:02:d4:75:14:6a:7e:2f:95:
        d0:d0:1e:39:d8:aa:de:42:b2:f2:b0:ac:b1:b9:1b:93
    Fingerprint (SHA-256):
        88:8A:FA:77:86:E3:DC:56:AD:48:DA:07:A9:04:5A:14:22:8D:14:B2:0B:9A:94:88:E1:7D:48:07:C5:05:CF:A1
    Fingerprint (SHA1):
        87:EB:3A:0B:AB:D9:F1:1A:1C:D7:24:95:73:4E:CA:64:B6:D5:3A:C9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6272: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115749 (0x1e67bfa5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:38 2017
            Not After : Tue May 10 11:57:38 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b5:81:3f:9c:10:ec:37:41:8a:7a:d8:1f:76:49:90:
                    df:76:15:3c:66:20:90:3d:ae:ce:fe:63:7a:b2:7a:7a:
                    37:1d:a0:43:a9:d7:3b:af:a9:2c:09:1d:da:a5:0e:8a:
                    fe:54:2c:1b:6a:72:49:f8:ea:bc:3d:d6:91:68:2f:a7:
                    67:80:7e:26:bc:1b:26:00:5f:b9:44:b9:df:68:76:49:
                    7e:9d:1c:cb:62:31:13:b9:40:86:de:a8:0c:7b:3e:8d:
                    c7:24:37:3b:18:40:a8:e8:33:43:b6:6f:16:00:d7:9c:
                    be:2b:a5:f7:8f:97:1b:42:0e:a8:10:fc:3b:7b:8f:a4:
                    10:a3:20:aa:45:7c:dd:f1:9b:09:05:6f:7e:38:e4:91:
                    6e:73:1b:2d:41:c5:90:58:a2:2d:77:22:90:34:3b:a8:
                    cd:dc:dc:91:70:ad:28:6d:1a:cf:03:83:21:bb:d0:18:
                    0d:e9:00:e4:5a:a1:ca:29:c6:8d:f4:94:81:73:37:5e:
                    b8:c2:d2:d4:df:1c:04:31:90:76:28:80:cf:dc:e2:2c:
                    9a:c7:29:5a:ae:32:0f:40:8b:74:7d:de:d4:c4:ac:15:
                    fb:32:ca:7e:f9:fe:72:0f:2e:39:bd:81:8b:45:37:f0:
                    f7:00:ec:0d:c4:6d:10:fe:6c:5e:20:cb:a3:2f:3b:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:7b:85:85:12:f6:3e:27:bb:3b:1f:e0:9f:54:08:e2:
        df:a8:cf:13:21:8f:de:62:4a:d4:dd:8a:4c:51:09:79:
        ad:88:5e:30:b8:74:27:1d:3c:56:27:cb:da:28:f4:1d:
        6e:a1:f3:84:ff:02:cc:f8:6c:b7:9d:ed:15:ab:96:93:
        4a:06:5f:ec:04:6d:b6:5d:9e:65:3b:b9:69:80:62:c3:
        29:82:90:a3:54:04:30:48:a2:4b:cb:90:e6:b8:9a:88:
        cf:82:c4:5c:04:a7:fb:ca:d3:9b:1d:b4:e0:9a:e2:9f:
        f6:04:d0:c2:6f:08:f6:24:71:eb:cb:1f:25:32:e6:06:
        11:61:38:c3:be:6f:a0:b0:51:cb:57:b8:c3:eb:b6:93:
        93:4c:1f:3e:7e:53:1d:68:dd:ae:ed:9a:9a:91:ad:f6:
        a1:13:54:67:93:56:58:b5:a1:e6:d4:52:71:13:fb:5a:
        aa:fa:c0:11:c1:e9:7d:26:44:61:ba:53:13:42:c4:ab:
        51:43:cc:f0:e9:bc:f3:73:f6:3d:56:e9:48:54:d6:50:
        5f:ea:8f:27:0e:0b:01:13:75:08:65:65:84:b1:99:d4:
        97:ae:7d:8f:4b:96:e8:97:ba:c6:71:be:1e:cd:8c:e0:
        1d:15:d2:74:15:d7:a5:52:0e:c6:9c:f1:00:fb:60:41
    Fingerprint (SHA-256):
        74:01:C6:FA:2A:C3:ED:4D:0F:38:45:43:31:4A:E7:8C:ED:2E:DA:E5:70:02:DF:C0:15:03:F5:E3:08:36:5F:0A
    Fingerprint (SHA1):
        D3:53:FC:48:52:85:5F:FA:A8:90:B2:6F:28:39:77:6E:47:5A:22:B5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6273: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115749 (0x1e67bfa5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:38 2017
            Not After : Tue May 10 11:57:38 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b5:81:3f:9c:10:ec:37:41:8a:7a:d8:1f:76:49:90:
                    df:76:15:3c:66:20:90:3d:ae:ce:fe:63:7a:b2:7a:7a:
                    37:1d:a0:43:a9:d7:3b:af:a9:2c:09:1d:da:a5:0e:8a:
                    fe:54:2c:1b:6a:72:49:f8:ea:bc:3d:d6:91:68:2f:a7:
                    67:80:7e:26:bc:1b:26:00:5f:b9:44:b9:df:68:76:49:
                    7e:9d:1c:cb:62:31:13:b9:40:86:de:a8:0c:7b:3e:8d:
                    c7:24:37:3b:18:40:a8:e8:33:43:b6:6f:16:00:d7:9c:
                    be:2b:a5:f7:8f:97:1b:42:0e:a8:10:fc:3b:7b:8f:a4:
                    10:a3:20:aa:45:7c:dd:f1:9b:09:05:6f:7e:38:e4:91:
                    6e:73:1b:2d:41:c5:90:58:a2:2d:77:22:90:34:3b:a8:
                    cd:dc:dc:91:70:ad:28:6d:1a:cf:03:83:21:bb:d0:18:
                    0d:e9:00:e4:5a:a1:ca:29:c6:8d:f4:94:81:73:37:5e:
                    b8:c2:d2:d4:df:1c:04:31:90:76:28:80:cf:dc:e2:2c:
                    9a:c7:29:5a:ae:32:0f:40:8b:74:7d:de:d4:c4:ac:15:
                    fb:32:ca:7e:f9:fe:72:0f:2e:39:bd:81:8b:45:37:f0:
                    f7:00:ec:0d:c4:6d:10:fe:6c:5e:20:cb:a3:2f:3b:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:7b:85:85:12:f6:3e:27:bb:3b:1f:e0:9f:54:08:e2:
        df:a8:cf:13:21:8f:de:62:4a:d4:dd:8a:4c:51:09:79:
        ad:88:5e:30:b8:74:27:1d:3c:56:27:cb:da:28:f4:1d:
        6e:a1:f3:84:ff:02:cc:f8:6c:b7:9d:ed:15:ab:96:93:
        4a:06:5f:ec:04:6d:b6:5d:9e:65:3b:b9:69:80:62:c3:
        29:82:90:a3:54:04:30:48:a2:4b:cb:90:e6:b8:9a:88:
        cf:82:c4:5c:04:a7:fb:ca:d3:9b:1d:b4:e0:9a:e2:9f:
        f6:04:d0:c2:6f:08:f6:24:71:eb:cb:1f:25:32:e6:06:
        11:61:38:c3:be:6f:a0:b0:51:cb:57:b8:c3:eb:b6:93:
        93:4c:1f:3e:7e:53:1d:68:dd:ae:ed:9a:9a:91:ad:f6:
        a1:13:54:67:93:56:58:b5:a1:e6:d4:52:71:13:fb:5a:
        aa:fa:c0:11:c1:e9:7d:26:44:61:ba:53:13:42:c4:ab:
        51:43:cc:f0:e9:bc:f3:73:f6:3d:56:e9:48:54:d6:50:
        5f:ea:8f:27:0e:0b:01:13:75:08:65:65:84:b1:99:d4:
        97:ae:7d:8f:4b:96:e8:97:ba:c6:71:be:1e:cd:8c:e0:
        1d:15:d2:74:15:d7:a5:52:0e:c6:9c:f1:00:fb:60:41
    Fingerprint (SHA-256):
        74:01:C6:FA:2A:C3:ED:4D:0F:38:45:43:31:4A:E7:8C:ED:2E:DA:E5:70:02:DF:C0:15:03:F5:E3:08:36:5F:0A
    Fingerprint (SHA1):
        D3:53:FC:48:52:85:5F:FA:A8:90:B2:6F:28:39:77:6E:47:5A:22:B5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6274: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115750 (0x1e67bfa6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:57:39 2017
            Not After : Tue May 10 11:57:39 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:ab:d2:67:0a:be:75:a6:e2:88:e5:07:75:38:fa:49:
                    88:c3:aa:3f:d8:59:b3:c6:23:27:df:70:45:b7:7f:3b:
                    48:8e:11:c3:b5:bc:9c:19:9b:c4:dd:6e:67:af:35:d4:
                    d2:3c:81:05:a3:4f:bf:b8:d5:b5:db:65:d5:56:a5:bd:
                    91:12:b5:41:83:74:47:45:0f:75:11:c3:85:78:7a:c5:
                    ce:ee:21:63:47:30:1c:0a:ac:fd:33:35:20:1d:47:9e:
                    6b:05:23:cf:66:58:be:b5:f6:24:81:48:b6:80:b4:f1:
                    44:04:45:24:4a:15:4c:aa:34:33:bb:ce:34:ba:9c:38:
                    c9:0e:0e:fd:d9:fb:19:a5:1a:20:31:f9:f9:92:ad:b2:
                    25:2d:2f:7b:8d:be:15:8f:c4:8e:18:75:ba:c5:d9:54:
                    0d:9a:07:23:5b:0b:91:b0:e6:85:10:a3:0e:cb:31:92:
                    79:37:26:d4:77:ff:5c:80:3c:ff:9c:1e:46:af:cc:db:
                    1f:b8:b7:3a:1a:11:d0:c3:73:d9:a8:ae:d9:39:07:7b:
                    5e:53:46:19:8e:75:d2:de:ea:ef:43:cc:8e:bf:61:62:
                    b4:07:f7:37:ad:e0:be:93:2c:a6:f6:d2:3a:35:43:1d:
                    59:05:bb:5a:51:ef:ec:2c:09:17:75:af:ad:d2:cd:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:71:b0:6b:6c:db:ea:21:1c:eb:42:c1:c6:74:ba:72:
        32:b4:be:9c:8d:a4:98:43:c6:b1:65:8c:87:aa:d5:5d:
        d6:55:47:93:18:2d:a9:c5:27:8c:8e:55:34:df:1a:73:
        72:73:e7:fd:9e:3d:52:7d:58:2a:af:cb:5e:90:96:11:
        21:e0:c8:48:a9:67:9e:b6:8b:6b:5b:0c:b1:18:16:11:
        de:5c:e3:bc:31:1c:e1:72:8d:04:78:84:0c:e8:45:64:
        95:3c:75:35:2e:c7:0d:c2:f2:3a:b2:ac:27:11:c1:5a:
        5d:4d:42:25:b9:eb:8c:13:87:a1:56:94:14:b3:76:1f:
        47:19:a3:0e:a3:35:1d:7a:2c:55:f8:51:7a:f9:d4:62:
        11:f9:58:98:28:6d:54:54:02:5a:de:4c:19:cc:8c:ae:
        12:dc:e0:e2:39:ab:08:df:bd:4b:e3:bf:5d:b8:bd:1d:
        bf:07:39:dc:cc:92:61:fb:3c:30:e9:8d:27:33:06:48:
        48:e8:bd:48:d1:ee:4f:40:76:44:6d:65:ec:f3:09:52:
        5e:65:a0:2a:55:07:b6:e6:30:62:be:a3:61:5a:9b:29:
        ce:46:41:27:ee:bb:fc:fe:8d:39:71:7c:cc:f2:d2:51:
        9e:dd:d6:f1:bc:ca:e3:a4:ea:2f:9c:c7:50:15:c4:6b
    Fingerprint (SHA-256):
        59:B7:19:5F:83:37:1C:85:63:48:ED:46:77:62:C8:A7:76:B7:37:B2:4A:42:97:00:68:8B:C2:62:46:F5:7C:7D
    Fingerprint (SHA1):
        A0:BD:A7:15:5F:40:43:B2:B1:44:59:F0:4F:F6:F4:3A:0D:18:2E:84
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6275: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115750 (0x1e67bfa6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:57:39 2017
            Not After : Tue May 10 11:57:39 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:ab:d2:67:0a:be:75:a6:e2:88:e5:07:75:38:fa:49:
                    88:c3:aa:3f:d8:59:b3:c6:23:27:df:70:45:b7:7f:3b:
                    48:8e:11:c3:b5:bc:9c:19:9b:c4:dd:6e:67:af:35:d4:
                    d2:3c:81:05:a3:4f:bf:b8:d5:b5:db:65:d5:56:a5:bd:
                    91:12:b5:41:83:74:47:45:0f:75:11:c3:85:78:7a:c5:
                    ce:ee:21:63:47:30:1c:0a:ac:fd:33:35:20:1d:47:9e:
                    6b:05:23:cf:66:58:be:b5:f6:24:81:48:b6:80:b4:f1:
                    44:04:45:24:4a:15:4c:aa:34:33:bb:ce:34:ba:9c:38:
                    c9:0e:0e:fd:d9:fb:19:a5:1a:20:31:f9:f9:92:ad:b2:
                    25:2d:2f:7b:8d:be:15:8f:c4:8e:18:75:ba:c5:d9:54:
                    0d:9a:07:23:5b:0b:91:b0:e6:85:10:a3:0e:cb:31:92:
                    79:37:26:d4:77:ff:5c:80:3c:ff:9c:1e:46:af:cc:db:
                    1f:b8:b7:3a:1a:11:d0:c3:73:d9:a8:ae:d9:39:07:7b:
                    5e:53:46:19:8e:75:d2:de:ea:ef:43:cc:8e:bf:61:62:
                    b4:07:f7:37:ad:e0:be:93:2c:a6:f6:d2:3a:35:43:1d:
                    59:05:bb:5a:51:ef:ec:2c:09:17:75:af:ad:d2:cd:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:71:b0:6b:6c:db:ea:21:1c:eb:42:c1:c6:74:ba:72:
        32:b4:be:9c:8d:a4:98:43:c6:b1:65:8c:87:aa:d5:5d:
        d6:55:47:93:18:2d:a9:c5:27:8c:8e:55:34:df:1a:73:
        72:73:e7:fd:9e:3d:52:7d:58:2a:af:cb:5e:90:96:11:
        21:e0:c8:48:a9:67:9e:b6:8b:6b:5b:0c:b1:18:16:11:
        de:5c:e3:bc:31:1c:e1:72:8d:04:78:84:0c:e8:45:64:
        95:3c:75:35:2e:c7:0d:c2:f2:3a:b2:ac:27:11:c1:5a:
        5d:4d:42:25:b9:eb:8c:13:87:a1:56:94:14:b3:76:1f:
        47:19:a3:0e:a3:35:1d:7a:2c:55:f8:51:7a:f9:d4:62:
        11:f9:58:98:28:6d:54:54:02:5a:de:4c:19:cc:8c:ae:
        12:dc:e0:e2:39:ab:08:df:bd:4b:e3:bf:5d:b8:bd:1d:
        bf:07:39:dc:cc:92:61:fb:3c:30:e9:8d:27:33:06:48:
        48:e8:bd:48:d1:ee:4f:40:76:44:6d:65:ec:f3:09:52:
        5e:65:a0:2a:55:07:b6:e6:30:62:be:a3:61:5a:9b:29:
        ce:46:41:27:ee:bb:fc:fe:8d:39:71:7c:cc:f2:d2:51:
        9e:dd:d6:f1:bc:ca:e3:a4:ea:2f:9c:c7:50:15:c4:6b
    Fingerprint (SHA-256):
        59:B7:19:5F:83:37:1C:85:63:48:ED:46:77:62:C8:A7:76:B7:37:B2:4A:42:97:00:68:8B:C2:62:46:F5:7C:7D
    Fingerprint (SHA1):
        A0:BD:A7:15:5F:40:43:B2:B1:44:59:F0:4F:F6:F4:3A:0D:18:2E:84
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6276: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6277: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115753 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6278: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6279: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6280: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6281: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510115754   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6282: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6283: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6284: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6285: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115755   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6286: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6287: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6288: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6289: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 510115756   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6290: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6291: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6292: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6293: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510115757   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6294: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6295: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6296: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6297: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510115758   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6298: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6299: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #6300: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6301: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 510115759   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6302: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6303: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6304: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #6305: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #6306: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6307: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #6308: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115753 (0x1e67bfa9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:57:41 2017
            Not After : Tue May 10 11:57:41 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:39:03:f2:1f:89:1b:d1:fc:8c:bb:61:35:ef:57:2a:
                    b8:f7:12:c3:ad:e0:33:98:3e:70:b0:8a:f4:66:a2:34:
                    5d:d8:99:f3:2b:3f:ee:09:e3:52:d4:41:dc:f3:df:87:
                    e4:43:c5:c4:91:c1:42:d4:88:5f:9f:3a:20:ef:f0:84:
                    fa:6e:ea:b9:af:a1:22:6e:8f:03:76:f6:a7:d7:b2:85:
                    0f:10:bb:c3:00:74:9c:72:27:2b:0b:62:69:67:e8:96:
                    a0:83:19:c6:e5:4e:e5:80:d0:b9:ae:07:91:1b:30:05:
                    aa:b3:cb:bc:52:d9:d6:14:e5:a3:e2:fc:c1:f3:67:fa:
                    ba:a4:45:f4:37:94:65:84:c4:87:76:05:88:2a:f4:01:
                    0f:e8:33:bc:b4:9c:eb:72:4c:8e:47:c0:b3:1c:88:5c:
                    53:ce:93:6e:8c:fb:6a:1c:39:8b:99:7d:76:fb:0f:f5:
                    fd:cb:90:65:60:5c:f0:98:ef:06:3e:a9:0e:2f:74:c2:
                    2f:29:e6:cb:0c:09:ce:75:58:75:af:b3:79:dc:be:1b:
                    25:78:40:dc:25:b7:11:77:56:c9:b6:0d:ec:71:a9:b4:
                    ff:ae:14:aa:61:a2:cb:1a:1d:5b:ff:08:c7:86:fc:02:
                    a5:53:bc:fb:19:b8:02:90:a1:27:c1:70:66:75:81:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:b3:06:36:f1:40:5f:bc:1b:11:08:e2:6b:40:8f:55:
        c0:0a:50:51:5e:98:0f:57:3d:39:1a:98:5a:29:00:e8:
        b4:36:9b:89:5c:26:65:cf:db:35:dd:c3:7f:30:0b:99:
        ca:8a:70:e4:34:95:67:15:cc:10:5a:af:95:7d:f4:70:
        61:0e:7f:fc:29:6d:ae:53:cb:f9:6f:3d:8e:12:c5:33:
        31:76:c0:1b:3b:c5:d9:f4:e3:50:9d:17:d8:f2:e9:be:
        9b:7e:a9:d2:b8:5b:d4:b6:69:08:23:1f:7e:30:b3:44:
        57:8d:c9:c7:e4:92:90:3d:f4:69:85:d6:56:14:f4:ca:
        c9:be:f9:91:7c:f0:4a:6a:fc:1f:d2:6a:d6:1a:80:7b:
        b4:8c:9a:d8:01:2b:3e:4d:06:bc:72:75:a8:38:42:83:
        7d:7c:09:1b:f7:90:25:07:1d:17:15:9e:3e:49:ef:4f:
        20:16:8e:38:27:c4:47:5d:43:8c:42:8b:7a:fc:d1:89:
        26:68:3f:e9:37:b4:08:be:dd:7b:fd:cb:03:77:38:5d:
        f4:8a:a0:21:4e:88:ff:9c:72:9a:f3:8d:04:f9:0f:97:
        51:90:cf:99:16:a7:89:a4:a3:6f:b1:e9:b6:f9:13:a7:
        65:76:14:8b:cb:dd:ab:25:91:fe:c5:7c:9f:19:83:73
    Fingerprint (SHA-256):
        69:11:67:64:20:29:14:E2:00:F3:1B:79:2F:17:5C:77:98:84:90:28:C9:E3:A0:3C:6A:13:E2:D3:DF:CB:55:D1
    Fingerprint (SHA1):
        7C:49:1C:75:1A:F8:F6:61:98:39:68:41:A4:0F:C4:5F:3B:D8:E3:16
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6309: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6310: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6311: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6312: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115753 (0x1e67bfa9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:57:41 2017
            Not After : Tue May 10 11:57:41 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:39:03:f2:1f:89:1b:d1:fc:8c:bb:61:35:ef:57:2a:
                    b8:f7:12:c3:ad:e0:33:98:3e:70:b0:8a:f4:66:a2:34:
                    5d:d8:99:f3:2b:3f:ee:09:e3:52:d4:41:dc:f3:df:87:
                    e4:43:c5:c4:91:c1:42:d4:88:5f:9f:3a:20:ef:f0:84:
                    fa:6e:ea:b9:af:a1:22:6e:8f:03:76:f6:a7:d7:b2:85:
                    0f:10:bb:c3:00:74:9c:72:27:2b:0b:62:69:67:e8:96:
                    a0:83:19:c6:e5:4e:e5:80:d0:b9:ae:07:91:1b:30:05:
                    aa:b3:cb:bc:52:d9:d6:14:e5:a3:e2:fc:c1:f3:67:fa:
                    ba:a4:45:f4:37:94:65:84:c4:87:76:05:88:2a:f4:01:
                    0f:e8:33:bc:b4:9c:eb:72:4c:8e:47:c0:b3:1c:88:5c:
                    53:ce:93:6e:8c:fb:6a:1c:39:8b:99:7d:76:fb:0f:f5:
                    fd:cb:90:65:60:5c:f0:98:ef:06:3e:a9:0e:2f:74:c2:
                    2f:29:e6:cb:0c:09:ce:75:58:75:af:b3:79:dc:be:1b:
                    25:78:40:dc:25:b7:11:77:56:c9:b6:0d:ec:71:a9:b4:
                    ff:ae:14:aa:61:a2:cb:1a:1d:5b:ff:08:c7:86:fc:02:
                    a5:53:bc:fb:19:b8:02:90:a1:27:c1:70:66:75:81:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:b3:06:36:f1:40:5f:bc:1b:11:08:e2:6b:40:8f:55:
        c0:0a:50:51:5e:98:0f:57:3d:39:1a:98:5a:29:00:e8:
        b4:36:9b:89:5c:26:65:cf:db:35:dd:c3:7f:30:0b:99:
        ca:8a:70:e4:34:95:67:15:cc:10:5a:af:95:7d:f4:70:
        61:0e:7f:fc:29:6d:ae:53:cb:f9:6f:3d:8e:12:c5:33:
        31:76:c0:1b:3b:c5:d9:f4:e3:50:9d:17:d8:f2:e9:be:
        9b:7e:a9:d2:b8:5b:d4:b6:69:08:23:1f:7e:30:b3:44:
        57:8d:c9:c7:e4:92:90:3d:f4:69:85:d6:56:14:f4:ca:
        c9:be:f9:91:7c:f0:4a:6a:fc:1f:d2:6a:d6:1a:80:7b:
        b4:8c:9a:d8:01:2b:3e:4d:06:bc:72:75:a8:38:42:83:
        7d:7c:09:1b:f7:90:25:07:1d:17:15:9e:3e:49:ef:4f:
        20:16:8e:38:27:c4:47:5d:43:8c:42:8b:7a:fc:d1:89:
        26:68:3f:e9:37:b4:08:be:dd:7b:fd:cb:03:77:38:5d:
        f4:8a:a0:21:4e:88:ff:9c:72:9a:f3:8d:04:f9:0f:97:
        51:90:cf:99:16:a7:89:a4:a3:6f:b1:e9:b6:f9:13:a7:
        65:76:14:8b:cb:dd:ab:25:91:fe:c5:7c:9f:19:83:73
    Fingerprint (SHA-256):
        69:11:67:64:20:29:14:E2:00:F3:1B:79:2F:17:5C:77:98:84:90:28:C9:E3:A0:3C:6A:13:E2:D3:DF:CB:55:D1
    Fingerprint (SHA1):
        7C:49:1C:75:1A:F8:F6:61:98:39:68:41:A4:0F:C4:5F:3B:D8:E3:16
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6313: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6314: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6315: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115760 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6316: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6317: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6318: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6319: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510115761   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6320: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6321: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #6322: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6323: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 510115762   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6324: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6325: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #6326: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6327: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 510115763   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6328: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6329: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6330: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6331: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 510115764   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6332: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6333: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #6334: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6335: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 510115765   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6336: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6337: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #6338: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6339: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 510115766   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6340: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6341: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6342: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6343: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 510115767   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6344: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6345: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #6346: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6347: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 510115768   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6348: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6349: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #6350: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6351: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 510115769   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6352: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6353: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #6354: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6355: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 510115770   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6356: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6357: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #6358: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6359: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 510115771   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6360: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6361: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #6362: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6363: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 510115772   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6364: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6365: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #6366: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6367: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 510115773   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6368: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6369: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #6370: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6371: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 510115774   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6372: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6373: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #6374: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6375: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 510115775   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6376: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6377: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #6378: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6379: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 510115776   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6380: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6381: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #6382: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6383: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 510115777   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6384: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6385: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #6386: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6387: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 510115778   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6388: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6389: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #6390: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6391: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 510115779   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6392: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6393: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #6394: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6395: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 510115780   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6396: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6397: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #6398: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6399: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 510115781   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6400: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6401: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #6402: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6403: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 510115782   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6404: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6405: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #6406: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6407: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 510115783   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6408: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6409: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #6410: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6411: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 510115784   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6412: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6413: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #6414: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6415: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 510115785   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6416: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6417: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #6418: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6419: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 510115786   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6420: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6421: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #6422: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6423: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 510115787   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6424: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6425: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #6426: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6427: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 510115788   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6428: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6429: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #6430: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6431: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 510115789   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6432: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6433: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6434: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115760 (0x1e67bfb0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:57:43 2017
            Not After : Tue May 10 11:57:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:4c:d4:f9:3e:56:64:bc:4a:50:e3:2d:b2:f1:6e:44:
                    45:94:a9:d7:b7:14:5d:2f:6c:85:c5:cb:5c:9c:a6:fc:
                    48:12:3f:c8:8e:17:b8:8c:00:82:d3:ea:3f:67:8b:bf:
                    c6:ff:93:74:b9:b7:9d:21:21:e1:9c:d3:72:f2:8b:65:
                    1a:0b:3d:4f:f6:d3:d2:ea:68:50:94:38:50:00:bb:7c:
                    fb:b2:17:c3:f5:f2:fc:ac:70:a2:b5:8a:29:76:75:04:
                    b7:61:e1:f3:ff:a0:66:b0:06:69:cd:1d:70:b9:00:be:
                    b1:29:7e:61:01:70:64:1a:71:54:32:04:9d:f1:a2:55:
                    62:82:1a:4c:f7:f9:f1:9d:83:45:23:2a:3d:cc:93:0e:
                    f3:f6:6f:a2:0c:97:99:e2:e6:12:1c:b4:3b:ec:46:30:
                    9b:d7:39:60:c3:59:1b:69:84:aa:92:16:1d:92:95:f2:
                    77:a6:63:9f:10:96:9f:7e:56:47:b4:ed:7f:58:96:35:
                    36:80:63:e0:56:d3:5b:5c:82:f7:68:3d:3b:cd:7f:f5:
                    0d:e8:83:b6:d9:89:e1:08:b4:fb:1e:a6:83:65:03:c7:
                    35:3a:d1:68:74:d1:93:00:e0:3f:80:40:1d:8a:75:11:
                    52:f6:de:87:a6:41:ac:54:03:dd:e4:b6:0d:82:01:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:eb:b1:2a:00:78:16:79:36:6c:94:4d:6b:82:ac:50:
        5d:e9:e4:84:8d:17:4a:fd:88:1a:90:e8:9f:a9:1d:6d:
        26:c0:71:7a:a4:f4:15:a4:d4:ec:74:b5:b6:e6:3c:5b:
        19:29:b0:27:a0:63:16:b1:25:3d:62:ed:a3:26:97:89:
        9a:6a:e7:33:7d:73:00:d0:85:e5:58:ba:b9:9b:08:b5:
        dd:9b:dc:15:3f:4a:07:cb:78:3b:ac:c1:20:ef:80:cc:
        c5:13:dd:9a:3d:19:e5:56:3f:13:1e:ef:b5:ed:58:01:
        97:af:50:e3:e1:ff:fa:5a:dc:02:fa:c7:1c:68:cb:73:
        3f:0b:16:73:73:cb:e4:99:78:2f:fa:e7:65:b4:b7:63:
        f5:8a:5f:95:71:80:53:f6:0d:ce:e5:51:ed:d1:2b:88:
        16:bc:3f:cb:2d:f2:63:f1:c5:d8:36:bd:2f:88:c1:a0:
        18:f0:a4:65:d7:0b:e8:ae:34:2c:4b:29:8b:7a:c9:84:
        32:29:a6:f2:53:4e:7b:f5:d9:ed:85:3d:5b:d4:22:26:
        57:82:8c:49:c8:f3:d0:74:6e:06:64:02:95:46:e3:19:
        b1:dd:5d:d5:7e:d3:07:9f:f2:65:1b:9e:1f:81:f4:83:
        54:db:f2:4d:60:db:7e:1b:a5:26:2d:53:bf:40:f3:64
    Fingerprint (SHA-256):
        C8:DD:F3:A8:53:F4:52:63:60:20:80:6B:A9:F3:ED:23:AE:FE:CA:4F:7A:FE:1B:5C:66:A5:47:DE:63:92:80:8F
    Fingerprint (SHA1):
        28:47:5F:7E:DC:EC:BF:EA:EC:DE:40:48:30:89:70:4D:4F:C4:E9:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6435: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6436: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115760 (0x1e67bfb0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:57:43 2017
            Not After : Tue May 10 11:57:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:4c:d4:f9:3e:56:64:bc:4a:50:e3:2d:b2:f1:6e:44:
                    45:94:a9:d7:b7:14:5d:2f:6c:85:c5:cb:5c:9c:a6:fc:
                    48:12:3f:c8:8e:17:b8:8c:00:82:d3:ea:3f:67:8b:bf:
                    c6:ff:93:74:b9:b7:9d:21:21:e1:9c:d3:72:f2:8b:65:
                    1a:0b:3d:4f:f6:d3:d2:ea:68:50:94:38:50:00:bb:7c:
                    fb:b2:17:c3:f5:f2:fc:ac:70:a2:b5:8a:29:76:75:04:
                    b7:61:e1:f3:ff:a0:66:b0:06:69:cd:1d:70:b9:00:be:
                    b1:29:7e:61:01:70:64:1a:71:54:32:04:9d:f1:a2:55:
                    62:82:1a:4c:f7:f9:f1:9d:83:45:23:2a:3d:cc:93:0e:
                    f3:f6:6f:a2:0c:97:99:e2:e6:12:1c:b4:3b:ec:46:30:
                    9b:d7:39:60:c3:59:1b:69:84:aa:92:16:1d:92:95:f2:
                    77:a6:63:9f:10:96:9f:7e:56:47:b4:ed:7f:58:96:35:
                    36:80:63:e0:56:d3:5b:5c:82:f7:68:3d:3b:cd:7f:f5:
                    0d:e8:83:b6:d9:89:e1:08:b4:fb:1e:a6:83:65:03:c7:
                    35:3a:d1:68:74:d1:93:00:e0:3f:80:40:1d:8a:75:11:
                    52:f6:de:87:a6:41:ac:54:03:dd:e4:b6:0d:82:01:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:eb:b1:2a:00:78:16:79:36:6c:94:4d:6b:82:ac:50:
        5d:e9:e4:84:8d:17:4a:fd:88:1a:90:e8:9f:a9:1d:6d:
        26:c0:71:7a:a4:f4:15:a4:d4:ec:74:b5:b6:e6:3c:5b:
        19:29:b0:27:a0:63:16:b1:25:3d:62:ed:a3:26:97:89:
        9a:6a:e7:33:7d:73:00:d0:85:e5:58:ba:b9:9b:08:b5:
        dd:9b:dc:15:3f:4a:07:cb:78:3b:ac:c1:20:ef:80:cc:
        c5:13:dd:9a:3d:19:e5:56:3f:13:1e:ef:b5:ed:58:01:
        97:af:50:e3:e1:ff:fa:5a:dc:02:fa:c7:1c:68:cb:73:
        3f:0b:16:73:73:cb:e4:99:78:2f:fa:e7:65:b4:b7:63:
        f5:8a:5f:95:71:80:53:f6:0d:ce:e5:51:ed:d1:2b:88:
        16:bc:3f:cb:2d:f2:63:f1:c5:d8:36:bd:2f:88:c1:a0:
        18:f0:a4:65:d7:0b:e8:ae:34:2c:4b:29:8b:7a:c9:84:
        32:29:a6:f2:53:4e:7b:f5:d9:ed:85:3d:5b:d4:22:26:
        57:82:8c:49:c8:f3:d0:74:6e:06:64:02:95:46:e3:19:
        b1:dd:5d:d5:7e:d3:07:9f:f2:65:1b:9e:1f:81:f4:83:
        54:db:f2:4d:60:db:7e:1b:a5:26:2d:53:bf:40:f3:64
    Fingerprint (SHA-256):
        C8:DD:F3:A8:53:F4:52:63:60:20:80:6B:A9:F3:ED:23:AE:FE:CA:4F:7A:FE:1B:5C:66:A5:47:DE:63:92:80:8F
    Fingerprint (SHA1):
        28:47:5F:7E:DC:EC:BF:EA:EC:DE:40:48:30:89:70:4D:4F:C4:E9:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6437: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6438: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6439: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6440: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115760 (0x1e67bfb0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:57:43 2017
            Not After : Tue May 10 11:57:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:4c:d4:f9:3e:56:64:bc:4a:50:e3:2d:b2:f1:6e:44:
                    45:94:a9:d7:b7:14:5d:2f:6c:85:c5:cb:5c:9c:a6:fc:
                    48:12:3f:c8:8e:17:b8:8c:00:82:d3:ea:3f:67:8b:bf:
                    c6:ff:93:74:b9:b7:9d:21:21:e1:9c:d3:72:f2:8b:65:
                    1a:0b:3d:4f:f6:d3:d2:ea:68:50:94:38:50:00:bb:7c:
                    fb:b2:17:c3:f5:f2:fc:ac:70:a2:b5:8a:29:76:75:04:
                    b7:61:e1:f3:ff:a0:66:b0:06:69:cd:1d:70:b9:00:be:
                    b1:29:7e:61:01:70:64:1a:71:54:32:04:9d:f1:a2:55:
                    62:82:1a:4c:f7:f9:f1:9d:83:45:23:2a:3d:cc:93:0e:
                    f3:f6:6f:a2:0c:97:99:e2:e6:12:1c:b4:3b:ec:46:30:
                    9b:d7:39:60:c3:59:1b:69:84:aa:92:16:1d:92:95:f2:
                    77:a6:63:9f:10:96:9f:7e:56:47:b4:ed:7f:58:96:35:
                    36:80:63:e0:56:d3:5b:5c:82:f7:68:3d:3b:cd:7f:f5:
                    0d:e8:83:b6:d9:89:e1:08:b4:fb:1e:a6:83:65:03:c7:
                    35:3a:d1:68:74:d1:93:00:e0:3f:80:40:1d:8a:75:11:
                    52:f6:de:87:a6:41:ac:54:03:dd:e4:b6:0d:82:01:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:eb:b1:2a:00:78:16:79:36:6c:94:4d:6b:82:ac:50:
        5d:e9:e4:84:8d:17:4a:fd:88:1a:90:e8:9f:a9:1d:6d:
        26:c0:71:7a:a4:f4:15:a4:d4:ec:74:b5:b6:e6:3c:5b:
        19:29:b0:27:a0:63:16:b1:25:3d:62:ed:a3:26:97:89:
        9a:6a:e7:33:7d:73:00:d0:85:e5:58:ba:b9:9b:08:b5:
        dd:9b:dc:15:3f:4a:07:cb:78:3b:ac:c1:20:ef:80:cc:
        c5:13:dd:9a:3d:19:e5:56:3f:13:1e:ef:b5:ed:58:01:
        97:af:50:e3:e1:ff:fa:5a:dc:02:fa:c7:1c:68:cb:73:
        3f:0b:16:73:73:cb:e4:99:78:2f:fa:e7:65:b4:b7:63:
        f5:8a:5f:95:71:80:53:f6:0d:ce:e5:51:ed:d1:2b:88:
        16:bc:3f:cb:2d:f2:63:f1:c5:d8:36:bd:2f:88:c1:a0:
        18:f0:a4:65:d7:0b:e8:ae:34:2c:4b:29:8b:7a:c9:84:
        32:29:a6:f2:53:4e:7b:f5:d9:ed:85:3d:5b:d4:22:26:
        57:82:8c:49:c8:f3:d0:74:6e:06:64:02:95:46:e3:19:
        b1:dd:5d:d5:7e:d3:07:9f:f2:65:1b:9e:1f:81:f4:83:
        54:db:f2:4d:60:db:7e:1b:a5:26:2d:53:bf:40:f3:64
    Fingerprint (SHA-256):
        C8:DD:F3:A8:53:F4:52:63:60:20:80:6B:A9:F3:ED:23:AE:FE:CA:4F:7A:FE:1B:5C:66:A5:47:DE:63:92:80:8F
    Fingerprint (SHA1):
        28:47:5F:7E:DC:EC:BF:EA:EC:DE:40:48:30:89:70:4D:4F:C4:E9:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6441: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6442: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6443: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6444: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115760 (0x1e67bfb0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:57:43 2017
            Not After : Tue May 10 11:57:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:4c:d4:f9:3e:56:64:bc:4a:50:e3:2d:b2:f1:6e:44:
                    45:94:a9:d7:b7:14:5d:2f:6c:85:c5:cb:5c:9c:a6:fc:
                    48:12:3f:c8:8e:17:b8:8c:00:82:d3:ea:3f:67:8b:bf:
                    c6:ff:93:74:b9:b7:9d:21:21:e1:9c:d3:72:f2:8b:65:
                    1a:0b:3d:4f:f6:d3:d2:ea:68:50:94:38:50:00:bb:7c:
                    fb:b2:17:c3:f5:f2:fc:ac:70:a2:b5:8a:29:76:75:04:
                    b7:61:e1:f3:ff:a0:66:b0:06:69:cd:1d:70:b9:00:be:
                    b1:29:7e:61:01:70:64:1a:71:54:32:04:9d:f1:a2:55:
                    62:82:1a:4c:f7:f9:f1:9d:83:45:23:2a:3d:cc:93:0e:
                    f3:f6:6f:a2:0c:97:99:e2:e6:12:1c:b4:3b:ec:46:30:
                    9b:d7:39:60:c3:59:1b:69:84:aa:92:16:1d:92:95:f2:
                    77:a6:63:9f:10:96:9f:7e:56:47:b4:ed:7f:58:96:35:
                    36:80:63:e0:56:d3:5b:5c:82:f7:68:3d:3b:cd:7f:f5:
                    0d:e8:83:b6:d9:89:e1:08:b4:fb:1e:a6:83:65:03:c7:
                    35:3a:d1:68:74:d1:93:00:e0:3f:80:40:1d:8a:75:11:
                    52:f6:de:87:a6:41:ac:54:03:dd:e4:b6:0d:82:01:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:eb:b1:2a:00:78:16:79:36:6c:94:4d:6b:82:ac:50:
        5d:e9:e4:84:8d:17:4a:fd:88:1a:90:e8:9f:a9:1d:6d:
        26:c0:71:7a:a4:f4:15:a4:d4:ec:74:b5:b6:e6:3c:5b:
        19:29:b0:27:a0:63:16:b1:25:3d:62:ed:a3:26:97:89:
        9a:6a:e7:33:7d:73:00:d0:85:e5:58:ba:b9:9b:08:b5:
        dd:9b:dc:15:3f:4a:07:cb:78:3b:ac:c1:20:ef:80:cc:
        c5:13:dd:9a:3d:19:e5:56:3f:13:1e:ef:b5:ed:58:01:
        97:af:50:e3:e1:ff:fa:5a:dc:02:fa:c7:1c:68:cb:73:
        3f:0b:16:73:73:cb:e4:99:78:2f:fa:e7:65:b4:b7:63:
        f5:8a:5f:95:71:80:53:f6:0d:ce:e5:51:ed:d1:2b:88:
        16:bc:3f:cb:2d:f2:63:f1:c5:d8:36:bd:2f:88:c1:a0:
        18:f0:a4:65:d7:0b:e8:ae:34:2c:4b:29:8b:7a:c9:84:
        32:29:a6:f2:53:4e:7b:f5:d9:ed:85:3d:5b:d4:22:26:
        57:82:8c:49:c8:f3:d0:74:6e:06:64:02:95:46:e3:19:
        b1:dd:5d:d5:7e:d3:07:9f:f2:65:1b:9e:1f:81:f4:83:
        54:db:f2:4d:60:db:7e:1b:a5:26:2d:53:bf:40:f3:64
    Fingerprint (SHA-256):
        C8:DD:F3:A8:53:F4:52:63:60:20:80:6B:A9:F3:ED:23:AE:FE:CA:4F:7A:FE:1B:5C:66:A5:47:DE:63:92:80:8F
    Fingerprint (SHA1):
        28:47:5F:7E:DC:EC:BF:EA:EC:DE:40:48:30:89:70:4D:4F:C4:E9:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6445: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115760 (0x1e67bfb0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:57:43 2017
            Not After : Tue May 10 11:57:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:4c:d4:f9:3e:56:64:bc:4a:50:e3:2d:b2:f1:6e:44:
                    45:94:a9:d7:b7:14:5d:2f:6c:85:c5:cb:5c:9c:a6:fc:
                    48:12:3f:c8:8e:17:b8:8c:00:82:d3:ea:3f:67:8b:bf:
                    c6:ff:93:74:b9:b7:9d:21:21:e1:9c:d3:72:f2:8b:65:
                    1a:0b:3d:4f:f6:d3:d2:ea:68:50:94:38:50:00:bb:7c:
                    fb:b2:17:c3:f5:f2:fc:ac:70:a2:b5:8a:29:76:75:04:
                    b7:61:e1:f3:ff:a0:66:b0:06:69:cd:1d:70:b9:00:be:
                    b1:29:7e:61:01:70:64:1a:71:54:32:04:9d:f1:a2:55:
                    62:82:1a:4c:f7:f9:f1:9d:83:45:23:2a:3d:cc:93:0e:
                    f3:f6:6f:a2:0c:97:99:e2:e6:12:1c:b4:3b:ec:46:30:
                    9b:d7:39:60:c3:59:1b:69:84:aa:92:16:1d:92:95:f2:
                    77:a6:63:9f:10:96:9f:7e:56:47:b4:ed:7f:58:96:35:
                    36:80:63:e0:56:d3:5b:5c:82:f7:68:3d:3b:cd:7f:f5:
                    0d:e8:83:b6:d9:89:e1:08:b4:fb:1e:a6:83:65:03:c7:
                    35:3a:d1:68:74:d1:93:00:e0:3f:80:40:1d:8a:75:11:
                    52:f6:de:87:a6:41:ac:54:03:dd:e4:b6:0d:82:01:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:eb:b1:2a:00:78:16:79:36:6c:94:4d:6b:82:ac:50:
        5d:e9:e4:84:8d:17:4a:fd:88:1a:90:e8:9f:a9:1d:6d:
        26:c0:71:7a:a4:f4:15:a4:d4:ec:74:b5:b6:e6:3c:5b:
        19:29:b0:27:a0:63:16:b1:25:3d:62:ed:a3:26:97:89:
        9a:6a:e7:33:7d:73:00:d0:85:e5:58:ba:b9:9b:08:b5:
        dd:9b:dc:15:3f:4a:07:cb:78:3b:ac:c1:20:ef:80:cc:
        c5:13:dd:9a:3d:19:e5:56:3f:13:1e:ef:b5:ed:58:01:
        97:af:50:e3:e1:ff:fa:5a:dc:02:fa:c7:1c:68:cb:73:
        3f:0b:16:73:73:cb:e4:99:78:2f:fa:e7:65:b4:b7:63:
        f5:8a:5f:95:71:80:53:f6:0d:ce:e5:51:ed:d1:2b:88:
        16:bc:3f:cb:2d:f2:63:f1:c5:d8:36:bd:2f:88:c1:a0:
        18:f0:a4:65:d7:0b:e8:ae:34:2c:4b:29:8b:7a:c9:84:
        32:29:a6:f2:53:4e:7b:f5:d9:ed:85:3d:5b:d4:22:26:
        57:82:8c:49:c8:f3:d0:74:6e:06:64:02:95:46:e3:19:
        b1:dd:5d:d5:7e:d3:07:9f:f2:65:1b:9e:1f:81:f4:83:
        54:db:f2:4d:60:db:7e:1b:a5:26:2d:53:bf:40:f3:64
    Fingerprint (SHA-256):
        C8:DD:F3:A8:53:F4:52:63:60:20:80:6B:A9:F3:ED:23:AE:FE:CA:4F:7A:FE:1B:5C:66:A5:47:DE:63:92:80:8F
    Fingerprint (SHA1):
        28:47:5F:7E:DC:EC:BF:EA:EC:DE:40:48:30:89:70:4D:4F:C4:E9:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6446: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6447: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115760 (0x1e67bfb0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:57:43 2017
            Not After : Tue May 10 11:57:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:4c:d4:f9:3e:56:64:bc:4a:50:e3:2d:b2:f1:6e:44:
                    45:94:a9:d7:b7:14:5d:2f:6c:85:c5:cb:5c:9c:a6:fc:
                    48:12:3f:c8:8e:17:b8:8c:00:82:d3:ea:3f:67:8b:bf:
                    c6:ff:93:74:b9:b7:9d:21:21:e1:9c:d3:72:f2:8b:65:
                    1a:0b:3d:4f:f6:d3:d2:ea:68:50:94:38:50:00:bb:7c:
                    fb:b2:17:c3:f5:f2:fc:ac:70:a2:b5:8a:29:76:75:04:
                    b7:61:e1:f3:ff:a0:66:b0:06:69:cd:1d:70:b9:00:be:
                    b1:29:7e:61:01:70:64:1a:71:54:32:04:9d:f1:a2:55:
                    62:82:1a:4c:f7:f9:f1:9d:83:45:23:2a:3d:cc:93:0e:
                    f3:f6:6f:a2:0c:97:99:e2:e6:12:1c:b4:3b:ec:46:30:
                    9b:d7:39:60:c3:59:1b:69:84:aa:92:16:1d:92:95:f2:
                    77:a6:63:9f:10:96:9f:7e:56:47:b4:ed:7f:58:96:35:
                    36:80:63:e0:56:d3:5b:5c:82:f7:68:3d:3b:cd:7f:f5:
                    0d:e8:83:b6:d9:89:e1:08:b4:fb:1e:a6:83:65:03:c7:
                    35:3a:d1:68:74:d1:93:00:e0:3f:80:40:1d:8a:75:11:
                    52:f6:de:87:a6:41:ac:54:03:dd:e4:b6:0d:82:01:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:eb:b1:2a:00:78:16:79:36:6c:94:4d:6b:82:ac:50:
        5d:e9:e4:84:8d:17:4a:fd:88:1a:90:e8:9f:a9:1d:6d:
        26:c0:71:7a:a4:f4:15:a4:d4:ec:74:b5:b6:e6:3c:5b:
        19:29:b0:27:a0:63:16:b1:25:3d:62:ed:a3:26:97:89:
        9a:6a:e7:33:7d:73:00:d0:85:e5:58:ba:b9:9b:08:b5:
        dd:9b:dc:15:3f:4a:07:cb:78:3b:ac:c1:20:ef:80:cc:
        c5:13:dd:9a:3d:19:e5:56:3f:13:1e:ef:b5:ed:58:01:
        97:af:50:e3:e1:ff:fa:5a:dc:02:fa:c7:1c:68:cb:73:
        3f:0b:16:73:73:cb:e4:99:78:2f:fa:e7:65:b4:b7:63:
        f5:8a:5f:95:71:80:53:f6:0d:ce:e5:51:ed:d1:2b:88:
        16:bc:3f:cb:2d:f2:63:f1:c5:d8:36:bd:2f:88:c1:a0:
        18:f0:a4:65:d7:0b:e8:ae:34:2c:4b:29:8b:7a:c9:84:
        32:29:a6:f2:53:4e:7b:f5:d9:ed:85:3d:5b:d4:22:26:
        57:82:8c:49:c8:f3:d0:74:6e:06:64:02:95:46:e3:19:
        b1:dd:5d:d5:7e:d3:07:9f:f2:65:1b:9e:1f:81:f4:83:
        54:db:f2:4d:60:db:7e:1b:a5:26:2d:53:bf:40:f3:64
    Fingerprint (SHA-256):
        C8:DD:F3:A8:53:F4:52:63:60:20:80:6B:A9:F3:ED:23:AE:FE:CA:4F:7A:FE:1B:5C:66:A5:47:DE:63:92:80:8F
    Fingerprint (SHA1):
        28:47:5F:7E:DC:EC:BF:EA:EC:DE:40:48:30:89:70:4D:4F:C4:E9:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6448: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6449: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6450: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6451: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115760 (0x1e67bfb0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:57:43 2017
            Not After : Tue May 10 11:57:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:4c:d4:f9:3e:56:64:bc:4a:50:e3:2d:b2:f1:6e:44:
                    45:94:a9:d7:b7:14:5d:2f:6c:85:c5:cb:5c:9c:a6:fc:
                    48:12:3f:c8:8e:17:b8:8c:00:82:d3:ea:3f:67:8b:bf:
                    c6:ff:93:74:b9:b7:9d:21:21:e1:9c:d3:72:f2:8b:65:
                    1a:0b:3d:4f:f6:d3:d2:ea:68:50:94:38:50:00:bb:7c:
                    fb:b2:17:c3:f5:f2:fc:ac:70:a2:b5:8a:29:76:75:04:
                    b7:61:e1:f3:ff:a0:66:b0:06:69:cd:1d:70:b9:00:be:
                    b1:29:7e:61:01:70:64:1a:71:54:32:04:9d:f1:a2:55:
                    62:82:1a:4c:f7:f9:f1:9d:83:45:23:2a:3d:cc:93:0e:
                    f3:f6:6f:a2:0c:97:99:e2:e6:12:1c:b4:3b:ec:46:30:
                    9b:d7:39:60:c3:59:1b:69:84:aa:92:16:1d:92:95:f2:
                    77:a6:63:9f:10:96:9f:7e:56:47:b4:ed:7f:58:96:35:
                    36:80:63:e0:56:d3:5b:5c:82:f7:68:3d:3b:cd:7f:f5:
                    0d:e8:83:b6:d9:89:e1:08:b4:fb:1e:a6:83:65:03:c7:
                    35:3a:d1:68:74:d1:93:00:e0:3f:80:40:1d:8a:75:11:
                    52:f6:de:87:a6:41:ac:54:03:dd:e4:b6:0d:82:01:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:eb:b1:2a:00:78:16:79:36:6c:94:4d:6b:82:ac:50:
        5d:e9:e4:84:8d:17:4a:fd:88:1a:90:e8:9f:a9:1d:6d:
        26:c0:71:7a:a4:f4:15:a4:d4:ec:74:b5:b6:e6:3c:5b:
        19:29:b0:27:a0:63:16:b1:25:3d:62:ed:a3:26:97:89:
        9a:6a:e7:33:7d:73:00:d0:85:e5:58:ba:b9:9b:08:b5:
        dd:9b:dc:15:3f:4a:07:cb:78:3b:ac:c1:20:ef:80:cc:
        c5:13:dd:9a:3d:19:e5:56:3f:13:1e:ef:b5:ed:58:01:
        97:af:50:e3:e1:ff:fa:5a:dc:02:fa:c7:1c:68:cb:73:
        3f:0b:16:73:73:cb:e4:99:78:2f:fa:e7:65:b4:b7:63:
        f5:8a:5f:95:71:80:53:f6:0d:ce:e5:51:ed:d1:2b:88:
        16:bc:3f:cb:2d:f2:63:f1:c5:d8:36:bd:2f:88:c1:a0:
        18:f0:a4:65:d7:0b:e8:ae:34:2c:4b:29:8b:7a:c9:84:
        32:29:a6:f2:53:4e:7b:f5:d9:ed:85:3d:5b:d4:22:26:
        57:82:8c:49:c8:f3:d0:74:6e:06:64:02:95:46:e3:19:
        b1:dd:5d:d5:7e:d3:07:9f:f2:65:1b:9e:1f:81:f4:83:
        54:db:f2:4d:60:db:7e:1b:a5:26:2d:53:bf:40:f3:64
    Fingerprint (SHA-256):
        C8:DD:F3:A8:53:F4:52:63:60:20:80:6B:A9:F3:ED:23:AE:FE:CA:4F:7A:FE:1B:5C:66:A5:47:DE:63:92:80:8F
    Fingerprint (SHA1):
        28:47:5F:7E:DC:EC:BF:EA:EC:DE:40:48:30:89:70:4D:4F:C4:E9:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6452: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115760 (0x1e67bfb0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:57:43 2017
            Not After : Tue May 10 11:57:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:4c:d4:f9:3e:56:64:bc:4a:50:e3:2d:b2:f1:6e:44:
                    45:94:a9:d7:b7:14:5d:2f:6c:85:c5:cb:5c:9c:a6:fc:
                    48:12:3f:c8:8e:17:b8:8c:00:82:d3:ea:3f:67:8b:bf:
                    c6:ff:93:74:b9:b7:9d:21:21:e1:9c:d3:72:f2:8b:65:
                    1a:0b:3d:4f:f6:d3:d2:ea:68:50:94:38:50:00:bb:7c:
                    fb:b2:17:c3:f5:f2:fc:ac:70:a2:b5:8a:29:76:75:04:
                    b7:61:e1:f3:ff:a0:66:b0:06:69:cd:1d:70:b9:00:be:
                    b1:29:7e:61:01:70:64:1a:71:54:32:04:9d:f1:a2:55:
                    62:82:1a:4c:f7:f9:f1:9d:83:45:23:2a:3d:cc:93:0e:
                    f3:f6:6f:a2:0c:97:99:e2:e6:12:1c:b4:3b:ec:46:30:
                    9b:d7:39:60:c3:59:1b:69:84:aa:92:16:1d:92:95:f2:
                    77:a6:63:9f:10:96:9f:7e:56:47:b4:ed:7f:58:96:35:
                    36:80:63:e0:56:d3:5b:5c:82:f7:68:3d:3b:cd:7f:f5:
                    0d:e8:83:b6:d9:89:e1:08:b4:fb:1e:a6:83:65:03:c7:
                    35:3a:d1:68:74:d1:93:00:e0:3f:80:40:1d:8a:75:11:
                    52:f6:de:87:a6:41:ac:54:03:dd:e4:b6:0d:82:01:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:eb:b1:2a:00:78:16:79:36:6c:94:4d:6b:82:ac:50:
        5d:e9:e4:84:8d:17:4a:fd:88:1a:90:e8:9f:a9:1d:6d:
        26:c0:71:7a:a4:f4:15:a4:d4:ec:74:b5:b6:e6:3c:5b:
        19:29:b0:27:a0:63:16:b1:25:3d:62:ed:a3:26:97:89:
        9a:6a:e7:33:7d:73:00:d0:85:e5:58:ba:b9:9b:08:b5:
        dd:9b:dc:15:3f:4a:07:cb:78:3b:ac:c1:20:ef:80:cc:
        c5:13:dd:9a:3d:19:e5:56:3f:13:1e:ef:b5:ed:58:01:
        97:af:50:e3:e1:ff:fa:5a:dc:02:fa:c7:1c:68:cb:73:
        3f:0b:16:73:73:cb:e4:99:78:2f:fa:e7:65:b4:b7:63:
        f5:8a:5f:95:71:80:53:f6:0d:ce:e5:51:ed:d1:2b:88:
        16:bc:3f:cb:2d:f2:63:f1:c5:d8:36:bd:2f:88:c1:a0:
        18:f0:a4:65:d7:0b:e8:ae:34:2c:4b:29:8b:7a:c9:84:
        32:29:a6:f2:53:4e:7b:f5:d9:ed:85:3d:5b:d4:22:26:
        57:82:8c:49:c8:f3:d0:74:6e:06:64:02:95:46:e3:19:
        b1:dd:5d:d5:7e:d3:07:9f:f2:65:1b:9e:1f:81:f4:83:
        54:db:f2:4d:60:db:7e:1b:a5:26:2d:53:bf:40:f3:64
    Fingerprint (SHA-256):
        C8:DD:F3:A8:53:F4:52:63:60:20:80:6B:A9:F3:ED:23:AE:FE:CA:4F:7A:FE:1B:5C:66:A5:47:DE:63:92:80:8F
    Fingerprint (SHA1):
        28:47:5F:7E:DC:EC:BF:EA:EC:DE:40:48:30:89:70:4D:4F:C4:E9:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6453: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115760 (0x1e67bfb0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:57:43 2017
            Not After : Tue May 10 11:57:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:4c:d4:f9:3e:56:64:bc:4a:50:e3:2d:b2:f1:6e:44:
                    45:94:a9:d7:b7:14:5d:2f:6c:85:c5:cb:5c:9c:a6:fc:
                    48:12:3f:c8:8e:17:b8:8c:00:82:d3:ea:3f:67:8b:bf:
                    c6:ff:93:74:b9:b7:9d:21:21:e1:9c:d3:72:f2:8b:65:
                    1a:0b:3d:4f:f6:d3:d2:ea:68:50:94:38:50:00:bb:7c:
                    fb:b2:17:c3:f5:f2:fc:ac:70:a2:b5:8a:29:76:75:04:
                    b7:61:e1:f3:ff:a0:66:b0:06:69:cd:1d:70:b9:00:be:
                    b1:29:7e:61:01:70:64:1a:71:54:32:04:9d:f1:a2:55:
                    62:82:1a:4c:f7:f9:f1:9d:83:45:23:2a:3d:cc:93:0e:
                    f3:f6:6f:a2:0c:97:99:e2:e6:12:1c:b4:3b:ec:46:30:
                    9b:d7:39:60:c3:59:1b:69:84:aa:92:16:1d:92:95:f2:
                    77:a6:63:9f:10:96:9f:7e:56:47:b4:ed:7f:58:96:35:
                    36:80:63:e0:56:d3:5b:5c:82:f7:68:3d:3b:cd:7f:f5:
                    0d:e8:83:b6:d9:89:e1:08:b4:fb:1e:a6:83:65:03:c7:
                    35:3a:d1:68:74:d1:93:00:e0:3f:80:40:1d:8a:75:11:
                    52:f6:de:87:a6:41:ac:54:03:dd:e4:b6:0d:82:01:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:eb:b1:2a:00:78:16:79:36:6c:94:4d:6b:82:ac:50:
        5d:e9:e4:84:8d:17:4a:fd:88:1a:90:e8:9f:a9:1d:6d:
        26:c0:71:7a:a4:f4:15:a4:d4:ec:74:b5:b6:e6:3c:5b:
        19:29:b0:27:a0:63:16:b1:25:3d:62:ed:a3:26:97:89:
        9a:6a:e7:33:7d:73:00:d0:85:e5:58:ba:b9:9b:08:b5:
        dd:9b:dc:15:3f:4a:07:cb:78:3b:ac:c1:20:ef:80:cc:
        c5:13:dd:9a:3d:19:e5:56:3f:13:1e:ef:b5:ed:58:01:
        97:af:50:e3:e1:ff:fa:5a:dc:02:fa:c7:1c:68:cb:73:
        3f:0b:16:73:73:cb:e4:99:78:2f:fa:e7:65:b4:b7:63:
        f5:8a:5f:95:71:80:53:f6:0d:ce:e5:51:ed:d1:2b:88:
        16:bc:3f:cb:2d:f2:63:f1:c5:d8:36:bd:2f:88:c1:a0:
        18:f0:a4:65:d7:0b:e8:ae:34:2c:4b:29:8b:7a:c9:84:
        32:29:a6:f2:53:4e:7b:f5:d9:ed:85:3d:5b:d4:22:26:
        57:82:8c:49:c8:f3:d0:74:6e:06:64:02:95:46:e3:19:
        b1:dd:5d:d5:7e:d3:07:9f:f2:65:1b:9e:1f:81:f4:83:
        54:db:f2:4d:60:db:7e:1b:a5:26:2d:53:bf:40:f3:64
    Fingerprint (SHA-256):
        C8:DD:F3:A8:53:F4:52:63:60:20:80:6B:A9:F3:ED:23:AE:FE:CA:4F:7A:FE:1B:5C:66:A5:47:DE:63:92:80:8F
    Fingerprint (SHA1):
        28:47:5F:7E:DC:EC:BF:EA:EC:DE:40:48:30:89:70:4D:4F:C4:E9:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6454: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115760 (0x1e67bfb0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:57:43 2017
            Not After : Tue May 10 11:57:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:4c:d4:f9:3e:56:64:bc:4a:50:e3:2d:b2:f1:6e:44:
                    45:94:a9:d7:b7:14:5d:2f:6c:85:c5:cb:5c:9c:a6:fc:
                    48:12:3f:c8:8e:17:b8:8c:00:82:d3:ea:3f:67:8b:bf:
                    c6:ff:93:74:b9:b7:9d:21:21:e1:9c:d3:72:f2:8b:65:
                    1a:0b:3d:4f:f6:d3:d2:ea:68:50:94:38:50:00:bb:7c:
                    fb:b2:17:c3:f5:f2:fc:ac:70:a2:b5:8a:29:76:75:04:
                    b7:61:e1:f3:ff:a0:66:b0:06:69:cd:1d:70:b9:00:be:
                    b1:29:7e:61:01:70:64:1a:71:54:32:04:9d:f1:a2:55:
                    62:82:1a:4c:f7:f9:f1:9d:83:45:23:2a:3d:cc:93:0e:
                    f3:f6:6f:a2:0c:97:99:e2:e6:12:1c:b4:3b:ec:46:30:
                    9b:d7:39:60:c3:59:1b:69:84:aa:92:16:1d:92:95:f2:
                    77:a6:63:9f:10:96:9f:7e:56:47:b4:ed:7f:58:96:35:
                    36:80:63:e0:56:d3:5b:5c:82:f7:68:3d:3b:cd:7f:f5:
                    0d:e8:83:b6:d9:89:e1:08:b4:fb:1e:a6:83:65:03:c7:
                    35:3a:d1:68:74:d1:93:00:e0:3f:80:40:1d:8a:75:11:
                    52:f6:de:87:a6:41:ac:54:03:dd:e4:b6:0d:82:01:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:eb:b1:2a:00:78:16:79:36:6c:94:4d:6b:82:ac:50:
        5d:e9:e4:84:8d:17:4a:fd:88:1a:90:e8:9f:a9:1d:6d:
        26:c0:71:7a:a4:f4:15:a4:d4:ec:74:b5:b6:e6:3c:5b:
        19:29:b0:27:a0:63:16:b1:25:3d:62:ed:a3:26:97:89:
        9a:6a:e7:33:7d:73:00:d0:85:e5:58:ba:b9:9b:08:b5:
        dd:9b:dc:15:3f:4a:07:cb:78:3b:ac:c1:20:ef:80:cc:
        c5:13:dd:9a:3d:19:e5:56:3f:13:1e:ef:b5:ed:58:01:
        97:af:50:e3:e1:ff:fa:5a:dc:02:fa:c7:1c:68:cb:73:
        3f:0b:16:73:73:cb:e4:99:78:2f:fa:e7:65:b4:b7:63:
        f5:8a:5f:95:71:80:53:f6:0d:ce:e5:51:ed:d1:2b:88:
        16:bc:3f:cb:2d:f2:63:f1:c5:d8:36:bd:2f:88:c1:a0:
        18:f0:a4:65:d7:0b:e8:ae:34:2c:4b:29:8b:7a:c9:84:
        32:29:a6:f2:53:4e:7b:f5:d9:ed:85:3d:5b:d4:22:26:
        57:82:8c:49:c8:f3:d0:74:6e:06:64:02:95:46:e3:19:
        b1:dd:5d:d5:7e:d3:07:9f:f2:65:1b:9e:1f:81:f4:83:
        54:db:f2:4d:60:db:7e:1b:a5:26:2d:53:bf:40:f3:64
    Fingerprint (SHA-256):
        C8:DD:F3:A8:53:F4:52:63:60:20:80:6B:A9:F3:ED:23:AE:FE:CA:4F:7A:FE:1B:5C:66:A5:47:DE:63:92:80:8F
    Fingerprint (SHA1):
        28:47:5F:7E:DC:EC:BF:EA:EC:DE:40:48:30:89:70:4D:4F:C4:E9:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6455: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115760 (0x1e67bfb0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:57:43 2017
            Not After : Tue May 10 11:57:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:4c:d4:f9:3e:56:64:bc:4a:50:e3:2d:b2:f1:6e:44:
                    45:94:a9:d7:b7:14:5d:2f:6c:85:c5:cb:5c:9c:a6:fc:
                    48:12:3f:c8:8e:17:b8:8c:00:82:d3:ea:3f:67:8b:bf:
                    c6:ff:93:74:b9:b7:9d:21:21:e1:9c:d3:72:f2:8b:65:
                    1a:0b:3d:4f:f6:d3:d2:ea:68:50:94:38:50:00:bb:7c:
                    fb:b2:17:c3:f5:f2:fc:ac:70:a2:b5:8a:29:76:75:04:
                    b7:61:e1:f3:ff:a0:66:b0:06:69:cd:1d:70:b9:00:be:
                    b1:29:7e:61:01:70:64:1a:71:54:32:04:9d:f1:a2:55:
                    62:82:1a:4c:f7:f9:f1:9d:83:45:23:2a:3d:cc:93:0e:
                    f3:f6:6f:a2:0c:97:99:e2:e6:12:1c:b4:3b:ec:46:30:
                    9b:d7:39:60:c3:59:1b:69:84:aa:92:16:1d:92:95:f2:
                    77:a6:63:9f:10:96:9f:7e:56:47:b4:ed:7f:58:96:35:
                    36:80:63:e0:56:d3:5b:5c:82:f7:68:3d:3b:cd:7f:f5:
                    0d:e8:83:b6:d9:89:e1:08:b4:fb:1e:a6:83:65:03:c7:
                    35:3a:d1:68:74:d1:93:00:e0:3f:80:40:1d:8a:75:11:
                    52:f6:de:87:a6:41:ac:54:03:dd:e4:b6:0d:82:01:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:eb:b1:2a:00:78:16:79:36:6c:94:4d:6b:82:ac:50:
        5d:e9:e4:84:8d:17:4a:fd:88:1a:90:e8:9f:a9:1d:6d:
        26:c0:71:7a:a4:f4:15:a4:d4:ec:74:b5:b6:e6:3c:5b:
        19:29:b0:27:a0:63:16:b1:25:3d:62:ed:a3:26:97:89:
        9a:6a:e7:33:7d:73:00:d0:85:e5:58:ba:b9:9b:08:b5:
        dd:9b:dc:15:3f:4a:07:cb:78:3b:ac:c1:20:ef:80:cc:
        c5:13:dd:9a:3d:19:e5:56:3f:13:1e:ef:b5:ed:58:01:
        97:af:50:e3:e1:ff:fa:5a:dc:02:fa:c7:1c:68:cb:73:
        3f:0b:16:73:73:cb:e4:99:78:2f:fa:e7:65:b4:b7:63:
        f5:8a:5f:95:71:80:53:f6:0d:ce:e5:51:ed:d1:2b:88:
        16:bc:3f:cb:2d:f2:63:f1:c5:d8:36:bd:2f:88:c1:a0:
        18:f0:a4:65:d7:0b:e8:ae:34:2c:4b:29:8b:7a:c9:84:
        32:29:a6:f2:53:4e:7b:f5:d9:ed:85:3d:5b:d4:22:26:
        57:82:8c:49:c8:f3:d0:74:6e:06:64:02:95:46:e3:19:
        b1:dd:5d:d5:7e:d3:07:9f:f2:65:1b:9e:1f:81:f4:83:
        54:db:f2:4d:60:db:7e:1b:a5:26:2d:53:bf:40:f3:64
    Fingerprint (SHA-256):
        C8:DD:F3:A8:53:F4:52:63:60:20:80:6B:A9:F3:ED:23:AE:FE:CA:4F:7A:FE:1B:5C:66:A5:47:DE:63:92:80:8F
    Fingerprint (SHA1):
        28:47:5F:7E:DC:EC:BF:EA:EC:DE:40:48:30:89:70:4D:4F:C4:E9:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6456: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115760 (0x1e67bfb0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:57:43 2017
            Not After : Tue May 10 11:57:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:4c:d4:f9:3e:56:64:bc:4a:50:e3:2d:b2:f1:6e:44:
                    45:94:a9:d7:b7:14:5d:2f:6c:85:c5:cb:5c:9c:a6:fc:
                    48:12:3f:c8:8e:17:b8:8c:00:82:d3:ea:3f:67:8b:bf:
                    c6:ff:93:74:b9:b7:9d:21:21:e1:9c:d3:72:f2:8b:65:
                    1a:0b:3d:4f:f6:d3:d2:ea:68:50:94:38:50:00:bb:7c:
                    fb:b2:17:c3:f5:f2:fc:ac:70:a2:b5:8a:29:76:75:04:
                    b7:61:e1:f3:ff:a0:66:b0:06:69:cd:1d:70:b9:00:be:
                    b1:29:7e:61:01:70:64:1a:71:54:32:04:9d:f1:a2:55:
                    62:82:1a:4c:f7:f9:f1:9d:83:45:23:2a:3d:cc:93:0e:
                    f3:f6:6f:a2:0c:97:99:e2:e6:12:1c:b4:3b:ec:46:30:
                    9b:d7:39:60:c3:59:1b:69:84:aa:92:16:1d:92:95:f2:
                    77:a6:63:9f:10:96:9f:7e:56:47:b4:ed:7f:58:96:35:
                    36:80:63:e0:56:d3:5b:5c:82:f7:68:3d:3b:cd:7f:f5:
                    0d:e8:83:b6:d9:89:e1:08:b4:fb:1e:a6:83:65:03:c7:
                    35:3a:d1:68:74:d1:93:00:e0:3f:80:40:1d:8a:75:11:
                    52:f6:de:87:a6:41:ac:54:03:dd:e4:b6:0d:82:01:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:eb:b1:2a:00:78:16:79:36:6c:94:4d:6b:82:ac:50:
        5d:e9:e4:84:8d:17:4a:fd:88:1a:90:e8:9f:a9:1d:6d:
        26:c0:71:7a:a4:f4:15:a4:d4:ec:74:b5:b6:e6:3c:5b:
        19:29:b0:27:a0:63:16:b1:25:3d:62:ed:a3:26:97:89:
        9a:6a:e7:33:7d:73:00:d0:85:e5:58:ba:b9:9b:08:b5:
        dd:9b:dc:15:3f:4a:07:cb:78:3b:ac:c1:20:ef:80:cc:
        c5:13:dd:9a:3d:19:e5:56:3f:13:1e:ef:b5:ed:58:01:
        97:af:50:e3:e1:ff:fa:5a:dc:02:fa:c7:1c:68:cb:73:
        3f:0b:16:73:73:cb:e4:99:78:2f:fa:e7:65:b4:b7:63:
        f5:8a:5f:95:71:80:53:f6:0d:ce:e5:51:ed:d1:2b:88:
        16:bc:3f:cb:2d:f2:63:f1:c5:d8:36:bd:2f:88:c1:a0:
        18:f0:a4:65:d7:0b:e8:ae:34:2c:4b:29:8b:7a:c9:84:
        32:29:a6:f2:53:4e:7b:f5:d9:ed:85:3d:5b:d4:22:26:
        57:82:8c:49:c8:f3:d0:74:6e:06:64:02:95:46:e3:19:
        b1:dd:5d:d5:7e:d3:07:9f:f2:65:1b:9e:1f:81:f4:83:
        54:db:f2:4d:60:db:7e:1b:a5:26:2d:53:bf:40:f3:64
    Fingerprint (SHA-256):
        C8:DD:F3:A8:53:F4:52:63:60:20:80:6B:A9:F3:ED:23:AE:FE:CA:4F:7A:FE:1B:5C:66:A5:47:DE:63:92:80:8F
    Fingerprint (SHA1):
        28:47:5F:7E:DC:EC:BF:EA:EC:DE:40:48:30:89:70:4D:4F:C4:E9:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6457: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6458: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6459: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115790 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6460: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6461: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #6462: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6463: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 510115791   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6464: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6465: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #6466: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6467: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 510115792   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6468: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6469: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #6470: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6471: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 510115793   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6472: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6473: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #6474: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6475: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 510115794   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6476: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6477: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #6478: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6479: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 510115795   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6480: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6481: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #6482: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6483: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 510115796   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6484: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6485: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6486: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115790 (0x1e67bfce)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:57 2017
            Not After : Tue May 10 11:57:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:36:99:dd:3c:df:c1:84:23:5b:89:02:89:26:5a:96:
                    16:3e:e6:30:46:c6:5b:b4:70:be:5b:67:9d:3f:b4:3f:
                    92:12:2c:28:b1:e7:24:e1:e7:c9:4c:5f:a6:db:10:c1:
                    71:89:35:14:23:47:2e:ea:6f:5e:d2:25:61:ef:f1:be:
                    bf:82:1c:65:2c:3c:b5:79:76:45:3a:8f:a4:eb:6f:15:
                    8b:14:f0:68:f4:43:3f:f2:48:82:90:de:f9:58:b2:5f:
                    89:2f:03:88:f9:76:a2:a0:78:65:ec:91:65:08:a5:f9:
                    f5:4a:46:b7:d4:f9:c8:83:89:93:2b:1a:61:0a:73:d8:
                    7a:29:3f:74:06:b1:47:3d:0d:d4:7b:07:96:ac:62:b1:
                    dd:a7:ae:28:7a:90:93:f7:84:1d:f5:d6:a3:b7:f4:90:
                    71:f3:eb:e2:b3:36:9e:e3:c3:ec:8d:c8:8a:91:18:c6:
                    6d:87:f6:eb:80:01:d6:70:49:4e:a8:36:d1:6e:b2:fc:
                    b5:90:50:a0:a4:7c:bd:86:33:a5:a4:2e:a9:3f:12:d1:
                    b0:db:5e:fb:f2:92:c0:9e:44:1a:46:5c:e2:a1:3b:aa:
                    46:c0:d6:40:d3:c4:88:22:ab:56:f9:8c:ff:12:80:f0:
                    ae:ac:af:9b:8f:fc:c4:9c:62:16:73:73:50:05:87:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:1f:90:98:ce:69:6a:69:0e:0a:6f:f0:2a:d2:5e:19:
        07:da:c7:d8:44:b5:50:5f:0f:9a:94:04:7b:3b:9c:e0:
        0b:6f:1d:27:78:56:d9:58:4d:b1:fd:fb:cf:5b:25:41:
        9e:c2:17:99:ea:83:b3:1e:04:bf:ed:9b:f5:bc:2a:f8:
        39:7f:0c:16:4a:e8:48:6d:ba:99:12:d8:a2:cb:f4:5b:
        4e:78:98:26:1f:40:ed:5f:10:2e:15:fd:f4:30:0b:90:
        64:2e:6e:ed:3e:4b:27:2e:10:de:4f:c2:76:4e:77:27:
        81:9f:2c:f0:c8:18:e4:0a:70:df:48:3d:56:bb:5c:4a:
        6f:c7:da:be:5b:69:74:8b:74:d4:c0:80:4d:3c:11:45:
        43:59:ac:d2:ab:dd:13:6b:d3:e2:c0:f4:44:eb:7d:61:
        b2:9d:fa:54:66:62:9f:0e:92:c8:fd:57:5a:66:81:a2:
        91:a6:b8:96:3b:16:7d:46:47:6b:e9:58:f1:c2:7b:1d:
        0a:45:f3:ac:8c:e5:00:5a:dc:82:72:f5:60:c5:8c:5a:
        f8:27:49:dd:1a:b9:5c:bd:c1:11:4f:d7:9b:39:a2:04:
        87:2d:ee:29:cb:68:18:63:e7:a0:5e:ba:de:3d:64:d9:
        66:ae:20:90:7a:2f:04:a5:b8:70:7c:73:f1:24:9b:98
    Fingerprint (SHA-256):
        3A:66:30:11:BE:E4:5E:10:BD:08:74:95:0D:A7:12:B0:82:FB:84:0F:FA:1A:DA:4B:36:2A:BD:01:6D:CF:8E:58
    Fingerprint (SHA1):
        A8:4F:2B:56:AF:21:E5:15:73:54:A4:75:E3:D5:5A:8F:27:1B:D7:60
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6487: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6488: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6489: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6490: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115790 (0x1e67bfce)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:57 2017
            Not After : Tue May 10 11:57:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:36:99:dd:3c:df:c1:84:23:5b:89:02:89:26:5a:96:
                    16:3e:e6:30:46:c6:5b:b4:70:be:5b:67:9d:3f:b4:3f:
                    92:12:2c:28:b1:e7:24:e1:e7:c9:4c:5f:a6:db:10:c1:
                    71:89:35:14:23:47:2e:ea:6f:5e:d2:25:61:ef:f1:be:
                    bf:82:1c:65:2c:3c:b5:79:76:45:3a:8f:a4:eb:6f:15:
                    8b:14:f0:68:f4:43:3f:f2:48:82:90:de:f9:58:b2:5f:
                    89:2f:03:88:f9:76:a2:a0:78:65:ec:91:65:08:a5:f9:
                    f5:4a:46:b7:d4:f9:c8:83:89:93:2b:1a:61:0a:73:d8:
                    7a:29:3f:74:06:b1:47:3d:0d:d4:7b:07:96:ac:62:b1:
                    dd:a7:ae:28:7a:90:93:f7:84:1d:f5:d6:a3:b7:f4:90:
                    71:f3:eb:e2:b3:36:9e:e3:c3:ec:8d:c8:8a:91:18:c6:
                    6d:87:f6:eb:80:01:d6:70:49:4e:a8:36:d1:6e:b2:fc:
                    b5:90:50:a0:a4:7c:bd:86:33:a5:a4:2e:a9:3f:12:d1:
                    b0:db:5e:fb:f2:92:c0:9e:44:1a:46:5c:e2:a1:3b:aa:
                    46:c0:d6:40:d3:c4:88:22:ab:56:f9:8c:ff:12:80:f0:
                    ae:ac:af:9b:8f:fc:c4:9c:62:16:73:73:50:05:87:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:1f:90:98:ce:69:6a:69:0e:0a:6f:f0:2a:d2:5e:19:
        07:da:c7:d8:44:b5:50:5f:0f:9a:94:04:7b:3b:9c:e0:
        0b:6f:1d:27:78:56:d9:58:4d:b1:fd:fb:cf:5b:25:41:
        9e:c2:17:99:ea:83:b3:1e:04:bf:ed:9b:f5:bc:2a:f8:
        39:7f:0c:16:4a:e8:48:6d:ba:99:12:d8:a2:cb:f4:5b:
        4e:78:98:26:1f:40:ed:5f:10:2e:15:fd:f4:30:0b:90:
        64:2e:6e:ed:3e:4b:27:2e:10:de:4f:c2:76:4e:77:27:
        81:9f:2c:f0:c8:18:e4:0a:70:df:48:3d:56:bb:5c:4a:
        6f:c7:da:be:5b:69:74:8b:74:d4:c0:80:4d:3c:11:45:
        43:59:ac:d2:ab:dd:13:6b:d3:e2:c0:f4:44:eb:7d:61:
        b2:9d:fa:54:66:62:9f:0e:92:c8:fd:57:5a:66:81:a2:
        91:a6:b8:96:3b:16:7d:46:47:6b:e9:58:f1:c2:7b:1d:
        0a:45:f3:ac:8c:e5:00:5a:dc:82:72:f5:60:c5:8c:5a:
        f8:27:49:dd:1a:b9:5c:bd:c1:11:4f:d7:9b:39:a2:04:
        87:2d:ee:29:cb:68:18:63:e7:a0:5e:ba:de:3d:64:d9:
        66:ae:20:90:7a:2f:04:a5:b8:70:7c:73:f1:24:9b:98
    Fingerprint (SHA-256):
        3A:66:30:11:BE:E4:5E:10:BD:08:74:95:0D:A7:12:B0:82:FB:84:0F:FA:1A:DA:4B:36:2A:BD:01:6D:CF:8E:58
    Fingerprint (SHA1):
        A8:4F:2B:56:AF:21:E5:15:73:54:A4:75:E3:D5:5A:8F:27:1B:D7:60
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6491: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6492: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6493: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6494: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115797 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6495: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6496: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6497: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6498: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115798   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6499: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6500: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6501: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6502: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115799   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6503: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6504: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6505: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6506: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510115800   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6507: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6508: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6509: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6510: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6511: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6512: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115797 (0x1e67bfd5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:57:59 2017
            Not After : Tue May 10 11:57:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:d9:02:e2:b5:89:4e:8a:be:9c:ff:67:d4:ba:59:81:
                    92:fd:da:31:2c:e1:32:78:e0:4e:ed:21:37:56:95:2a:
                    96:3f:c2:bb:41:07:d1:e1:12:ca:ce:45:93:dd:95:d1:
                    08:6e:0d:36:cb:df:ee:2a:46:3c:03:ec:12:62:92:11:
                    24:17:93:8a:70:ad:55:f1:5e:c1:b7:c0:5b:aa:d9:c6:
                    ec:f9:60:11:f9:bf:3d:a0:bd:da:2d:9c:ba:65:8d:0a:
                    66:29:fe:06:b1:4e:9f:84:55:6c:39:7f:db:b0:66:e2:
                    85:c5:1e:96:48:96:e0:1c:f2:7c:41:13:50:67:0d:ce:
                    4f:3c:f2:ea:13:c2:49:ab:9b:aa:66:e9:5e:26:96:e7:
                    c7:bd:c6:72:a0:46:52:7e:e5:d8:17:e5:62:0c:fb:f0:
                    c9:1d:fa:32:2e:2c:8e:83:8d:31:76:71:1a:e6:9c:1b:
                    1d:a6:ab:33:b0:6d:cb:d8:da:ef:3e:46:b4:dc:9c:24:
                    0f:e4:68:61:84:0d:39:ea:be:bc:c2:d3:72:65:a7:84:
                    7e:bc:c4:9a:01:bc:4f:b0:61:3b:0f:fe:78:e3:42:62:
                    52:8e:a3:5f:6a:13:10:d0:77:33:9e:18:b9:f8:6c:19:
                    d0:f3:18:a0:ac:cd:a8:30:14:02:58:4f:61:40:20:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:e6:20:92:33:38:83:14:65:d3:3c:99:14:54:b1:72:
        6e:d9:00:a2:4f:b2:cb:8d:c7:f6:25:bd:aa:04:c2:50:
        9c:15:52:ea:8d:1b:66:e2:4a:94:36:e9:a8:0c:95:c5:
        af:40:2e:27:8a:34:37:67:d7:67:4a:86:50:b1:d1:8b:
        fa:8d:4f:dc:f5:8a:29:5f:65:e0:c2:9f:ca:f9:0e:29:
        4e:48:49:96:09:d1:6f:77:56:30:ab:e0:0b:88:f5:82:
        ce:44:e9:b8:9c:ec:45:6e:a6:4f:1e:a9:f9:a0:fb:3a:
        69:ca:29:b7:f1:8e:7a:00:29:8d:d3:fb:8e:44:19:f5:
        73:e8:4e:f4:f4:c4:cd:25:79:65:89:86:0a:b9:d4:a3:
        be:a9:ef:87:47:0b:fe:01:ec:a7:85:c9:a4:dc:17:a5:
        a4:c5:48:d3:27:a1:9d:e7:1c:73:cf:90:53:17:d4:a8:
        ee:32:46:cf:2d:a8:5f:0c:56:e9:7f:5d:29:33:a2:1d:
        d0:0a:eb:6a:de:e6:b5:46:22:e6:55:63:6d:e6:2e:43:
        0b:57:75:8d:08:3e:bd:5b:4a:32:75:66:b3:27:b7:d7:
        27:f7:04:43:5b:cb:9b:11:53:b2:51:a0:26:31:f8:1e:
        7f:1d:28:4d:95:bf:c3:29:4a:1c:ac:dd:91:12:92:24
    Fingerprint (SHA-256):
        E1:14:70:85:C1:9A:00:03:0F:15:E4:3E:D8:BF:1B:69:5B:76:1B:E2:13:79:91:91:87:28:02:B5:97:6F:91:39
    Fingerprint (SHA1):
        87:40:25:63:AF:6C:02:39:DC:8A:86:23:2B:5E:10:12:04:CC:2F:F3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6513: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6514: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6515: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115798 (0x1e67bfd6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:00 2017
            Not After : Tue May 10 11:58:00 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:98:1f:10:15:8c:19:e5:fb:ea:4a:5a:f1:29:d0:d7:
                    6e:a2:33:8d:ac:dd:ae:f3:56:29:80:19:5b:30:4e:65:
                    a2:03:ed:b1:bd:3e:ef:79:d8:fd:3e:12:25:bf:b4:40:
                    5a:5b:99:fa:40:84:80:b4:1a:e6:ea:0d:6f:01:5c:fc:
                    d0:ce:f2:02:c5:62:cf:2e:89:49:0c:e6:3d:f4:2a:86:
                    70:01:b1:7d:02:5b:32:ef:fa:7a:33:01:a0:60:b6:43:
                    a0:e4:92:2b:11:75:98:9f:3c:2d:5b:0d:d4:81:10:15:
                    a5:4f:da:ee:65:96:05:ea:1e:74:22:78:a3:16:42:75:
                    21:39:0e:17:b1:6d:5a:fd:88:77:f6:20:6f:5a:33:c1:
                    03:d1:3e:1b:63:64:8b:ed:6a:85:19:13:cb:e4:ed:7c:
                    1d:d8:73:97:df:ad:19:93:19:f2:3a:e1:02:84:f1:ef:
                    a3:26:7f:dd:3e:01:c4:1c:b2:bd:d5:90:bd:f4:22:2b:
                    88:92:7a:87:ec:2c:62:97:29:74:eb:c7:f1:5b:56:8f:
                    24:ad:84:31:ca:01:99:c4:75:78:0f:43:fe:af:e5:65:
                    46:07:66:28:e6:f5:f2:80:93:27:36:a7:da:30:76:e3:
                    42:df:9d:e1:fd:a8:80:89:0e:13:f6:58:c6:54:25:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:76:3c:e7:57:16:21:41:86:aa:3f:1e:ed:4d:80:f9:
        c6:65:fd:44:f8:92:b1:c3:f2:83:7a:9c:bc:eb:53:98:
        9a:38:f7:88:7c:f8:ad:10:38:75:d1:b2:5a:eb:e8:14:
        81:79:41:cd:5c:b5:70:67:98:f8:69:de:90:f2:f8:45:
        43:c4:67:ae:51:91:03:a7:28:75:ee:ce:22:04:70:74:
        d1:61:a8:6c:22:5b:25:f2:59:f3:e7:b0:be:4c:29:64:
        2c:0c:57:ff:95:d0:17:f1:15:07:e1:74:89:3d:78:22:
        18:3c:22:30:c1:f4:13:58:ef:d2:ad:f2:b9:ca:c0:ef:
        03:7a:a3:3f:8e:30:6b:0a:1c:05:1b:8f:68:60:55:57:
        6b:82:91:55:1d:b1:2b:61:63:c3:50:21:9b:1f:5e:44:
        32:30:f5:96:5e:d7:ee:98:c6:83:fb:cb:46:d5:a0:f1:
        30:bd:e2:43:38:93:b9:fa:29:2e:fc:27:2f:65:5b:e8:
        99:75:e9:f4:43:98:59:20:4e:84:6e:b5:8a:6f:b3:0e:
        2b:ee:bc:f4:87:cd:3f:e6:08:a0:2d:68:e7:c0:77:c4:
        f2:41:48:75:14:ed:15:be:da:2a:ef:e2:04:d4:93:fc:
        51:49:80:f0:52:02:cb:89:71:ef:65:50:89:99:89:0d
    Fingerprint (SHA-256):
        F5:7F:FE:FE:7E:54:FD:6C:7F:1B:9F:5E:9C:48:50:CA:14:B5:B8:4C:A2:0E:31:1B:36:CC:52:1E:5E:50:E6:11
    Fingerprint (SHA1):
        69:10:21:AD:DF:4C:83:E0:2F:BE:E3:1A:A0:98:92:93:09:67:17:DA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6516: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6517: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115799 (0x1e67bfd7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:58:00 2017
            Not After : Tue May 10 11:58:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:0d:0a:a6:e9:21:f9:c7:9d:00:60:96:74:fe:df:60:
                    ab:c4:2c:10:13:35:4d:0f:62:90:9c:f9:0f:b7:81:ca:
                    3a:f5:17:37:04:87:05:5d:7d:b1:8a:6e:b6:f0:74:b4:
                    49:19:d4:e8:46:cd:fc:87:1b:3f:10:9d:e5:74:79:ba:
                    a2:77:c3:13:7c:8d:65:3e:99:61:16:1c:4b:64:7b:99:
                    a0:2d:3d:61:0d:9b:1b:c8:4b:dd:ea:f1:64:b5:63:57:
                    d7:7f:f5:c4:21:33:cf:3f:48:68:b2:23:c3:0d:96:43:
                    43:a5:71:da:e1:d4:89:91:02:de:ac:c1:a4:26:1e:df:
                    9f:b7:af:12:e1:ac:70:20:10:8f:74:90:20:06:fd:04:
                    f1:b8:ab:c3:30:4a:2d:c0:37:c3:69:03:ca:46:f7:5c:
                    7d:d8:c6:5a:b6:7c:33:86:55:27:04:4c:43:c8:cc:20:
                    d3:2e:80:5e:2e:45:70:15:11:e6:bf:5f:d6:c5:d9:f3:
                    72:04:53:a9:2a:3d:b1:0b:04:9c:34:2f:9c:4b:e1:e2:
                    82:5a:d3:c0:97:26:61:5a:e3:dd:b1:f4:a1:28:ec:e5:
                    12:5a:df:f9:75:fc:ce:6a:80:a8:cb:ad:d1:40:82:be:
                    9e:80:50:bf:18:d7:af:2c:15:55:92:ac:c9:75:3c:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:e3:ad:fc:07:f5:ac:d0:0a:25:ab:f6:c9:6f:55:5a:
        f9:6d:a9:da:ae:70:ca:0b:80:57:00:c1:ce:fc:ed:bb:
        8f:84:16:5e:e5:1b:ac:31:d7:59:bf:1a:97:47:d7:8e:
        92:1f:f1:8f:ca:18:60:20:ef:32:d2:46:04:bc:f6:9e:
        58:fa:37:bf:6c:e7:ed:f5:98:b8:4d:c8:b2:35:b0:96:
        7f:42:57:f9:48:b4:60:88:41:74:ab:fd:7d:01:80:f0:
        82:57:54:92:6b:07:1b:71:f8:55:62:90:7e:4c:cb:90:
        60:22:64:aa:b2:fc:34:e4:6a:1a:4c:70:f2:c3:42:c1:
        d1:bb:06:46:1c:aa:61:f4:85:91:3e:f2:c2:9e:7f:aa:
        fb:85:52:c6:3f:3b:ec:c3:4c:e3:59:bf:0e:ba:3f:81:
        39:7f:82:bc:97:80:fa:6e:86:b8:e8:25:ac:db:00:49:
        de:2f:67:73:dd:6b:20:d8:63:57:b3:86:cb:7a:65:f2:
        c1:db:81:d4:6a:f5:6b:9e:d8:25:18:0d:51:89:c5:21:
        7f:ab:3d:e9:8e:bd:da:61:15:b4:ab:b1:c9:59:ce:a7:
        d6:bc:4b:db:01:74:5a:50:39:9e:ad:9e:c3:f2:b1:b8:
        fb:c0:dd:67:b9:bc:db:c6:a3:a9:ad:3d:3d:61:c8:c9
    Fingerprint (SHA-256):
        EF:36:D7:36:05:D4:D6:E5:8F:53:49:78:21:6D:26:01:9C:0F:5A:63:77:3F:FA:09:9A:3B:39:E3:9E:CE:83:D3
    Fingerprint (SHA1):
        41:F3:60:C9:6D:1E:83:6F:2B:34:F2:CE:CA:CE:68:5B:E7:6D:A8:AE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6518: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6519: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115801 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6520: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6521: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6522: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6523: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115802   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6524: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6525: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6526: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6527: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115803   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6528: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6529: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6530: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6531: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 510115804   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6532: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6533: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6534: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6535: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 510115805   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6536: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6537: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6538: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6539: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6540: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6541: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #6542: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115801 (0x1e67bfd9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:01 2017
            Not After : Tue May 10 11:58:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:34:05:85:9d:12:14:d6:d1:62:26:a3:f3:7f:21:2e:
                    ca:d6:0c:fd:f3:7b:42:c9:b1:7c:57:bf:87:90:8f:0c:
                    13:67:0a:f7:0a:e4:9d:4f:1d:0e:8e:32:5d:9a:c8:8b:
                    7e:04:c6:f0:4c:84:94:68:e5:be:17:56:87:c3:72:84:
                    d3:f4:09:91:e6:07:3a:10:ca:23:11:7b:79:d4:a6:e2:
                    d0:a3:5b:0f:fb:bb:e7:cc:ea:83:34:35:d1:f7:54:6d:
                    9b:59:c5:6b:f4:2a:50:24:f0:c0:2d:d5:71:73:3f:4f:
                    42:55:0f:5d:2c:e5:f7:fd:fc:8c:08:57:c2:87:d2:aa:
                    8c:ff:7d:6b:f2:76:ae:40:db:42:22:6d:1a:df:6c:f7:
                    7f:e7:92:11:cc:bd:c1:5a:1c:f5:aa:56:9f:3b:a1:83:
                    87:62:0f:5d:f8:55:0d:bc:9d:88:c4:78:24:e9:e1:b8:
                    f6:80:ee:1c:6d:4b:2e:02:7e:f8:8d:79:c1:9b:20:90:
                    0b:e4:3c:ba:a1:93:80:d0:9d:fb:d5:7b:64:93:b6:89:
                    08:bc:a5:e0:83:ae:c9:c5:07:61:88:77:c9:b0:8b:5f:
                    77:6e:7a:35:a8:ab:f3:8d:78:05:7e:cb:7d:8f:93:65:
                    3f:6d:0a:d6:b9:51:67:f5:1c:67:1c:b5:5e:fe:db:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        87:63:ac:e6:bf:b8:44:5c:d5:6a:0d:b0:33:aa:ef:df:
        2f:43:dc:0c:a1:d3:c3:56:2f:70:4b:13:f1:86:f0:f1:
        74:9d:e1:7a:8c:93:79:7d:03:a2:53:38:5f:5f:dd:ff:
        b1:2a:d4:e0:3f:82:92:aa:c4:a2:ac:c7:9f:18:39:fa:
        a9:fd:18:1b:39:4f:83:f9:fd:81:c2:d5:a9:2e:72:f4:
        60:5c:b8:77:70:8d:8c:0b:e0:06:71:89:4f:29:34:ea:
        1b:77:9d:2c:da:22:d1:dc:0c:4d:e4:55:9f:48:63:e5:
        96:83:47:2d:fe:1d:70:8b:a1:9d:4f:77:f7:11:fe:cb:
        9c:80:74:21:e4:50:cd:4a:51:9b:cf:0a:a6:ff:df:a4:
        7d:a2:8b:4a:5e:27:64:0a:0d:e7:ef:cb:8a:b8:57:99:
        a0:e6:7d:5d:41:47:3c:08:c3:2b:9e:04:8f:5b:7a:89:
        40:e9:18:32:da:f4:a7:34:46:90:f7:21:53:80:7b:8e:
        6d:ae:02:71:47:c2:8d:b1:79:56:85:ce:54:a8:f8:1a:
        25:d1:9e:e8:12:d9:12:aa:7b:90:82:06:32:11:69:bf:
        5e:0a:d4:df:b6:24:3c:e1:db:e3:02:e4:88:58:41:6e:
        b0:c8:76:38:5c:45:45:40:d0:c4:17:93:ad:d8:e7:c1
    Fingerprint (SHA-256):
        09:D3:12:83:CD:84:AB:AE:57:24:91:FE:1B:23:51:43:65:05:7C:FE:F1:A1:45:8E:A1:10:37:9D:D3:4C:0B:8C
    Fingerprint (SHA1):
        EC:18:9D:F3:D9:47:74:FC:F3:08:9B:9C:05:4F:04:7D:FA:59:D4:CE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6543: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6544: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115802 (0x1e67bfda)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:02 2017
            Not After : Tue May 10 11:58:02 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:45:b4:5b:be:f3:78:9c:2f:44:40:b8:51:ac:67:02:
                    6c:e8:2f:00:7c:a5:91:f2:86:92:6c:cc:83:e8:94:97:
                    51:58:5b:e8:c5:cb:47:76:a7:80:fb:13:13:28:f4:27:
                    7d:ea:4f:1d:f5:61:24:0f:e8:8a:4a:67:b2:99:aa:b7:
                    e8:29:a4:6d:cb:88:e4:b1:65:f1:44:88:9a:58:4b:28:
                    37:be:72:78:82:86:29:51:5e:4c:ab:d7:45:c5:33:85:
                    8c:7a:81:94:cc:5c:73:de:2a:6c:64:34:e4:4a:6f:0b:
                    b4:a0:9b:85:c6:84:2e:83:29:1b:a0:25:bc:14:ba:2a:
                    f0:6a:b0:32:6c:f7:3b:5e:80:ae:dc:66:3f:95:67:1c:
                    21:2a:e6:9d:ca:f1:b2:5b:68:9e:6f:0f:d7:92:96:58:
                    2c:23:e6:e0:37:b8:32:a0:33:7a:b6:3c:bf:09:68:79:
                    33:8d:b5:55:b2:ed:29:cf:41:06:e7:95:61:53:36:83:
                    a1:fa:6a:e5:18:53:fb:ec:bb:9a:6b:8a:29:8c:ca:d3:
                    32:9c:62:28:bc:e1:4e:d4:1b:6f:97:fc:dc:91:e7:c1:
                    d6:61:39:18:2c:9b:b0:f7:3c:d6:87:a6:d6:fc:7f:80:
                    7c:a5:24:3c:4e:ab:64:9e:40:e8:8f:3f:2b:ae:93:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        52:8c:43:3b:e6:02:d7:c0:9f:fb:64:71:ee:c9:68:ad:
        64:6d:cf:fa:34:f8:7b:5e:f3:d0:f6:52:96:c4:3f:41:
        9d:95:37:f9:77:83:06:f5:67:fb:e7:01:37:90:1f:51:
        0e:3c:04:4e:7d:32:be:8f:6d:2e:d8:33:68:4c:70:27:
        8f:39:20:61:5e:00:bb:76:ac:54:9a:b8:87:c5:a6:7a:
        82:b9:7e:89:b5:e3:53:bd:a2:b4:f4:27:f7:d1:2b:e9:
        5a:b4:a5:2b:9f:9e:37:ac:da:a0:6c:4b:43:cc:19:81:
        f5:8a:c7:c2:32:28:b7:83:89:d0:e3:f1:10:7c:7a:47:
        e3:76:75:90:05:94:3f:3b:2f:12:70:55:ba:28:78:39:
        84:10:45:4b:79:dd:d6:a0:da:47:32:41:62:9a:eb:6e:
        81:17:36:cd:c0:02:11:e8:c9:3e:42:ac:f3:88:25:3d:
        29:b4:37:e6:da:a7:51:a9:8c:a8:17:5a:ab:34:0a:ef:
        4b:bc:36:62:62:ef:ba:9c:b1:4b:b7:f4:3a:41:5b:df:
        e0:21:13:8c:35:e8:0d:8d:30:fc:65:c6:b4:e9:c9:1f:
        04:92:6f:9f:c0:25:48:47:87:1e:9f:1c:9d:15:f7:ad:
        80:5c:d5:6a:9c:97:d2:cc:f9:96:05:58:a0:48:cd:74
    Fingerprint (SHA-256):
        67:FB:82:B0:67:68:64:36:80:2D:1F:E1:71:75:87:B5:58:6E:A7:89:5E:ED:0F:26:C3:31:FD:7E:B5:95:E3:22
    Fingerprint (SHA1):
        19:08:9C:FE:9E:C9:83:8F:F3:C7:B2:EC:A6:C3:AE:0A:EE:81:A4:09
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6545: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6546: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6547: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115803 (0x1e67bfdb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:58:02 2017
            Not After : Tue May 10 11:58:02 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:d1:ff:30:1e:42:eb:16:50:f3:c7:76:2c:9c:a6:9f:
                    44:26:4e:05:4c:90:66:b1:3b:2d:5b:fa:b4:d2:a4:b6:
                    f5:d2:df:59:34:b2:43:37:4a:a2:52:8f:55:89:fb:02:
                    d9:24:71:4b:ec:dd:e3:1c:26:f2:55:2c:2e:45:f4:35:
                    f1:5d:15:e1:76:51:6b:7b:16:29:12:be:6c:df:40:c1:
                    fe:3f:94:a8:b6:e6:b6:1f:ce:57:de:b4:62:97:a9:90:
                    22:87:a9:25:19:40:61:a8:2c:88:bd:e4:81:97:c1:e7:
                    79:4a:d5:c7:a7:34:46:2f:21:67:a1:9e:a2:80:d1:96:
                    0e:e0:4a:00:76:5f:a8:0a:fb:33:95:be:ba:29:2c:e8:
                    aa:d0:d9:c4:4d:59:64:a0:4f:b0:a2:4c:b2:b0:bd:c4:
                    a9:9f:71:fc:2e:34:3f:43:c3:59:6a:ad:6d:57:18:88:
                    7e:cf:88:c5:18:99:9f:52:36:1e:55:1a:18:c7:ab:9c:
                    ab:03:92:2f:28:95:10:24:d0:26:e9:b6:1d:ac:dc:ea:
                    1b:d2:2c:cb:11:65:de:83:68:90:13:16:a3:d1:17:a7:
                    4e:12:a4:22:72:ed:5f:dd:40:1f:15:22:4b:97:84:05:
                    7f:0b:20:42:e3:8a:12:c6:a4:33:89:e4:70:6e:72:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        00:eb:ff:a5:e9:e5:0a:5d:a9:ef:5f:2c:c2:be:7e:64:
        af:bd:01:97:08:fb:3f:60:8d:4a:cb:44:16:6c:fa:eb:
        e6:38:e5:5d:b6:53:2e:1a:7e:7f:f8:71:bd:d7:62:b0:
        2d:b8:2b:85:6f:d1:c7:0c:74:42:1d:02:b3:7e:04:94:
        8c:59:a9:88:e0:7a:93:c5:95:de:43:c2:06:54:df:c4:
        bc:87:c1:35:3b:d4:a9:b2:88:d4:29:47:7a:d8:c4:cd:
        3a:55:fa:a4:97:7b:f0:5d:25:01:47:3d:8e:74:2b:73:
        df:af:f7:0a:30:41:a8:0b:6f:f5:19:13:b2:88:76:a5:
        93:85:7a:b1:62:15:40:02:f7:9c:cb:84:83:36:00:44:
        91:cf:34:63:bc:77:3b:7c:e7:83:d3:b7:2d:2b:3c:4f:
        1a:d7:db:a1:c3:3b:4e:0e:95:0e:6c:55:66:2d:b9:9a:
        63:b3:2d:96:fe:fc:ad:09:99:8e:a6:27:39:06:03:30:
        e5:f4:38:bd:2d:08:d0:6d:dd:9a:b8:a2:7c:03:45:cc:
        a1:0c:a5:60:6a:0e:a1:0a:bb:6a:4f:86:db:3b:c6:a0:
        c5:a1:68:3e:7d:89:54:fc:2c:ff:32:21:45:d2:b4:16:
        eb:ff:a6:49:0e:8a:31:fb:ac:42:8b:3a:f0:60:65:8a
    Fingerprint (SHA-256):
        70:18:0E:6D:95:E4:DD:4E:32:8B:7B:4F:F9:E8:BF:6D:32:F8:FB:78:2B:09:CF:2A:12:50:8D:D7:CD:08:11:00
    Fingerprint (SHA1):
        4D:17:97:6A:39:55:B3:FA:03:19:EB:CB:D2:A4:B5:CA:36:4C:8A:D7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #6548: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6549: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115806 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6550: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6551: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6552: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6553: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115807   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6554: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6555: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6556: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6557: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115808   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA1Root-510115715.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6558: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6559: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6560: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6561: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510115809   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6562: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6563: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #6564: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115806 (0x1e67bfde)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:03 2017
            Not After : Tue May 10 11:58:03 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:3e:64:35:02:78:b9:61:98:d0:cc:54:be:33:d6:15:
                    b8:96:07:57:d0:ee:d5:17:55:f6:b6:b2:67:e6:b6:dc:
                    82:af:12:d4:3f:f2:cd:76:98:61:d3:60:e8:7f:f9:27:
                    45:8e:74:df:26:17:13:c8:9a:a9:77:c6:1f:a1:98:ea:
                    a9:82:dd:e4:96:77:e9:5f:09:66:49:13:c6:42:74:14:
                    02:f6:b3:3b:af:c9:ce:ad:f6:05:71:98:f8:ba:bc:25:
                    2b:f8:4c:8e:a1:f7:16:27:3f:e6:30:d9:60:83:00:52:
                    c8:e3:96:68:b1:f6:f7:30:fe:03:4c:46:43:e0:d7:ae:
                    d3:7d:b5:aa:b0:de:67:97:e2:ab:2b:0f:70:d6:e5:e8:
                    b1:6e:3c:af:1c:e8:c3:df:64:e0:73:f2:02:3a:28:d0:
                    48:08:31:c6:e2:59:d0:8a:3b:f1:6b:d5:37:17:e4:29:
                    5b:72:d8:91:38:fc:32:63:84:c9:6c:d8:cc:b6:04:68:
                    74:d6:2c:9e:b3:48:45:66:90:98:30:68:d2:14:0c:e6:
                    fd:1b:40:65:6f:8f:aa:3d:ca:0d:78:98:52:ad:e8:c0:
                    ba:32:93:1a:ff:dc:28:af:4d:eb:a0:31:5c:52:9d:4d:
                    bb:1f:41:19:98:eb:ec:5e:a8:ef:1a:c0:cb:52:de:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:9f:86:89:b8:2a:cc:55:11:2d:d0:ff:ca:5e:bd:56:
        34:e8:cf:b8:4d:4c:cb:8c:19:59:46:61:3b:da:55:d5:
        91:e0:33:1e:41:48:45:7d:61:ec:8d:3a:e3:89:89:a4:
        db:46:cd:04:f5:69:5a:b7:c3:35:d8:82:78:ee:72:a7:
        e3:e0:66:99:2e:3c:91:f5:47:a2:7e:2e:76:31:90:b4:
        7c:9f:51:04:b8:7f:d7:41:a5:8c:c6:dc:ff:d7:55:75:
        30:c6:a2:fa:06:4f:2f:26:f6:a0:ed:82:73:09:35:71:
        74:49:ce:30:20:df:9a:0c:fc:62:54:b4:a6:45:11:72:
        b9:7a:09:c9:d8:d4:32:4b:a2:13:63:64:69:0d:00:1f:
        5d:6d:f2:37:f6:f8:9b:02:18:ab:db:82:e5:d5:a7:90:
        29:23:f8:f5:98:2c:8b:43:a6:da:d3:df:0e:5a:0b:0f:
        59:9f:b2:29:15:6b:22:f2:e4:84:2e:94:eb:65:19:a6:
        81:e6:8c:d3:2c:ec:0d:e2:fe:6e:0b:a9:a6:e8:f8:89:
        73:fb:c5:56:d3:b2:37:d7:14:3d:20:16:a2:68:0a:0f:
        56:f9:b0:20:11:70:07:af:7b:2d:08:39:7f:56:26:b2:
        b1:e2:44:4d:ce:b9:6c:21:6e:ec:ab:0e:42:24:d1:37
    Fingerprint (SHA-256):
        77:DB:79:44:49:4A:ED:D7:D6:69:E6:3D:8A:C0:13:46:77:1A:4E:E8:DA:B7:59:07:07:47:30:A5:4D:3B:BC:33
    Fingerprint (SHA1):
        DA:81:B4:C3:FA:BA:7A:F3:80:77:F9:CD:99:57:4A:05:EE:53:4F:DB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6565: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6566: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115810 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6567: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6568: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6569: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115811 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6570: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6571: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6572: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6573: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510115812 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6574: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6575: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510115813 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6576: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6577: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6578: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6579: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6580: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510115814   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-Bridge-510115716.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6581: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6582: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6583: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6584: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115815   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6585: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6586: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6587: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6588: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115811 (0x1e67bfe3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:58:05 2017
            Not After : Tue May 10 11:58:05 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:b1:86:dc:3a:39:93:b9:51:91:52:23:5b:fb:d5:ce:
                    29:b5:4a:9d:1b:9e:86:91:7f:5c:97:8e:a3:72:68:a0:
                    bc:53:89:d4:16:19:20:b7:2c:8e:d6:24:46:90:16:1c:
                    b7:91:31:ba:61:3d:e1:5a:f4:8c:a1:c6:bb:36:34:1b:
                    a5:04:ec:00:e5:6d:1b:9f:7c:d7:62:54:40:56:9b:c1:
                    fa:7b:ed:0a:20:ba:2a:38:1a:34:b7:3a:a5:1f:87:09:
                    ce:22:3a:d0:f1:be:a7:7a:82:f3:4f:57:b7:13:23:84:
                    01:dd:1f:0c:ee:2b:18:ab:da:4a:b0:ea:ca:0e:30:85:
                    03:50:00:f9:87:15:a1:ad:b3:01:fd:89:6d:53:d2:43:
                    61:ca:94:5a:c2:b0:7f:96:98:32:87:63:da:b1:cd:aa:
                    20:f7:72:77:2b:6e:8d:ec:b1:9d:79:81:41:93:6d:e3:
                    4a:6d:33:cc:c3:ff:0d:7b:87:52:dd:24:57:55:1c:a3:
                    ee:6f:6c:91:a3:4f:0f:0b:56:c1:08:3e:d9:c7:38:96:
                    5a:e2:4b:82:63:e8:5f:3c:4e:22:61:c4:60:f3:74:2c:
                    68:57:46:c5:2e:72:83:c5:b4:04:5b:64:8d:35:e9:2c:
                    73:ee:dc:01:3c:ec:46:23:ce:f2:3d:75:ef:8e:01:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:18:40:32:93:e0:35:dc:00:ef:95:24:13:58:6d:2e:
        6a:67:e1:25:2d:c8:0c:5d:08:19:47:3b:e8:f5:18:99:
        b0:8a:d5:5e:af:16:56:de:2f:1c:60:6f:ad:39:19:d3:
        68:d0:0e:49:62:af:4a:4b:7f:c2:d7:30:20:d2:1d:49:
        17:db:1d:bd:3f:bf:c3:12:2c:3c:a9:de:bd:43:ff:ff:
        db:c6:60:7d:09:af:9e:c5:e6:36:df:2b:f7:1e:9d:ed:
        47:0a:37:dc:1f:21:c3:09:51:29:0f:84:9b:f1:98:a5:
        69:62:05:a3:23:e3:31:fe:f2:c8:1d:e9:5b:71:1a:c0:
        13:c8:46:a9:04:59:3f:8b:4a:88:f3:f7:a8:f8:92:e5:
        6f:79:12:12:0e:46:94:1a:f9:82:55:cc:7f:48:7d:31:
        dc:fb:d5:c0:8f:e8:90:b0:7c:76:67:94:8f:00:da:40:
        a2:08:46:cc:cf:9f:c0:88:c5:f4:23:84:31:64:ea:91:
        f0:0a:fb:0e:dc:1d:a8:c4:f2:8e:ff:75:cc:83:09:93:
        12:bc:d9:af:0a:26:3f:19:fe:ef:f7:48:77:2a:7e:3b:
        a8:a1:e9:c3:0b:03:9e:c8:ef:7f:81:5e:47:d7:7f:28:
        05:de:63:fc:8a:78:d7:b8:d9:34:cd:31:3a:cb:0d:93
    Fingerprint (SHA-256):
        57:D2:C5:7F:BA:14:2C:56:34:03:B3:6E:8E:A4:F2:2C:C7:EF:BE:25:7E:75:8A:3E:2E:64:10:0C:61:2C:3B:19
    Fingerprint (SHA1):
        8A:B5:AE:94:9A:80:3E:D7:86:F1:77:55:A9:96:7E:59:03:61:A5:F1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6589: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115811 (0x1e67bfe3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:58:05 2017
            Not After : Tue May 10 11:58:05 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:b1:86:dc:3a:39:93:b9:51:91:52:23:5b:fb:d5:ce:
                    29:b5:4a:9d:1b:9e:86:91:7f:5c:97:8e:a3:72:68:a0:
                    bc:53:89:d4:16:19:20:b7:2c:8e:d6:24:46:90:16:1c:
                    b7:91:31:ba:61:3d:e1:5a:f4:8c:a1:c6:bb:36:34:1b:
                    a5:04:ec:00:e5:6d:1b:9f:7c:d7:62:54:40:56:9b:c1:
                    fa:7b:ed:0a:20:ba:2a:38:1a:34:b7:3a:a5:1f:87:09:
                    ce:22:3a:d0:f1:be:a7:7a:82:f3:4f:57:b7:13:23:84:
                    01:dd:1f:0c:ee:2b:18:ab:da:4a:b0:ea:ca:0e:30:85:
                    03:50:00:f9:87:15:a1:ad:b3:01:fd:89:6d:53:d2:43:
                    61:ca:94:5a:c2:b0:7f:96:98:32:87:63:da:b1:cd:aa:
                    20:f7:72:77:2b:6e:8d:ec:b1:9d:79:81:41:93:6d:e3:
                    4a:6d:33:cc:c3:ff:0d:7b:87:52:dd:24:57:55:1c:a3:
                    ee:6f:6c:91:a3:4f:0f:0b:56:c1:08:3e:d9:c7:38:96:
                    5a:e2:4b:82:63:e8:5f:3c:4e:22:61:c4:60:f3:74:2c:
                    68:57:46:c5:2e:72:83:c5:b4:04:5b:64:8d:35:e9:2c:
                    73:ee:dc:01:3c:ec:46:23:ce:f2:3d:75:ef:8e:01:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:18:40:32:93:e0:35:dc:00:ef:95:24:13:58:6d:2e:
        6a:67:e1:25:2d:c8:0c:5d:08:19:47:3b:e8:f5:18:99:
        b0:8a:d5:5e:af:16:56:de:2f:1c:60:6f:ad:39:19:d3:
        68:d0:0e:49:62:af:4a:4b:7f:c2:d7:30:20:d2:1d:49:
        17:db:1d:bd:3f:bf:c3:12:2c:3c:a9:de:bd:43:ff:ff:
        db:c6:60:7d:09:af:9e:c5:e6:36:df:2b:f7:1e:9d:ed:
        47:0a:37:dc:1f:21:c3:09:51:29:0f:84:9b:f1:98:a5:
        69:62:05:a3:23:e3:31:fe:f2:c8:1d:e9:5b:71:1a:c0:
        13:c8:46:a9:04:59:3f:8b:4a:88:f3:f7:a8:f8:92:e5:
        6f:79:12:12:0e:46:94:1a:f9:82:55:cc:7f:48:7d:31:
        dc:fb:d5:c0:8f:e8:90:b0:7c:76:67:94:8f:00:da:40:
        a2:08:46:cc:cf:9f:c0:88:c5:f4:23:84:31:64:ea:91:
        f0:0a:fb:0e:dc:1d:a8:c4:f2:8e:ff:75:cc:83:09:93:
        12:bc:d9:af:0a:26:3f:19:fe:ef:f7:48:77:2a:7e:3b:
        a8:a1:e9:c3:0b:03:9e:c8:ef:7f:81:5e:47:d7:7f:28:
        05:de:63:fc:8a:78:d7:b8:d9:34:cd:31:3a:cb:0d:93
    Fingerprint (SHA-256):
        57:D2:C5:7F:BA:14:2C:56:34:03:B3:6E:8E:A4:F2:2C:C7:EF:BE:25:7E:75:8A:3E:2E:64:10:0C:61:2C:3B:19
    Fingerprint (SHA1):
        8A:B5:AE:94:9A:80:3E:D7:86:F1:77:55:A9:96:7E:59:03:61:A5:F1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6590: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6591: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115816 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6592: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6593: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6594: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115817 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6595: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6596: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6597: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6598: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510115818 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6599: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6600: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510115819 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6601: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6602: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6603: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6604: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6605: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510115820   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-Bridge-510115717.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6606: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6607: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6608: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6609: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115821   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6610: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6611: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6612: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6613: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510115822   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-BridgeNavy-510115718.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6614: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6615: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6616: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6617: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510115823   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6618: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6619: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6620: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6621: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115817 (0x1e67bfe9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:58:07 2017
            Not After : Tue May 10 11:58:07 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:74:40:ee:66:67:f4:7a:37:b7:c6:34:b4:bd:3b:af:
                    c4:42:fe:96:45:40:53:64:ce:de:e7:67:69:17:c2:04:
                    c7:26:a2:0b:cc:34:bc:39:08:a2:35:c2:bd:40:c3:73:
                    05:1e:d9:e1:1a:8d:cb:0c:77:2d:8f:2d:f8:3e:9e:b8:
                    66:27:aa:dd:80:a1:e4:a5:02:47:91:2d:4c:7c:c9:b9:
                    00:1e:d8:61:c6:ac:06:2c:ba:1f:9a:f2:55:7a:b7:44:
                    50:ec:b1:87:4f:3d:2f:99:50:5f:85:ca:14:ff:ca:3d:
                    57:e6:f9:93:53:97:b6:ca:fb:eb:ad:b9:24:65:98:36:
                    1e:64:d8:4c:56:69:59:1b:da:3e:44:a7:78:1b:8b:27:
                    61:d4:eb:1c:40:95:02:05:77:61:68:cd:49:b9:16:e7:
                    59:ba:c1:72:20:e8:18:96:b4:be:37:6c:35:6a:00:bd:
                    54:b8:5d:99:f9:df:c8:c2:ef:1f:cc:15:29:fa:8e:3f:
                    06:67:18:ef:73:6b:2a:59:04:a0:1c:bf:ca:34:d0:31:
                    88:eb:f0:83:f6:16:cf:08:25:19:92:aa:9e:6d:34:b2:
                    c3:21:c5:80:d5:67:40:66:83:fd:d8:05:ba:72:95:ae:
                    54:a9:3f:41:49:01:07:30:66:8c:3d:f5:1c:ea:15:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:83:4b:22:95:e9:b5:d8:57:87:46:0c:a6:28:76:21:
        f9:2c:8b:a6:98:1c:2c:02:4b:12:22:91:4d:cb:1f:df:
        7d:89:61:e7:c9:9a:f3:60:94:c4:a7:9e:c1:f8:8d:fc:
        e0:d1:72:e8:82:07:96:b8:d6:9d:db:a2:4d:7b:e2:ae:
        b6:cf:12:70:0e:4a:1a:8b:12:4f:9d:67:51:78:3b:b4:
        a4:70:c9:d4:fe:1c:d9:d1:78:c4:09:0a:f6:d0:ac:9b:
        a1:8d:29:2d:63:36:37:ce:b9:d9:1b:e1:42:81:79:a3:
        c9:fd:34:47:36:9f:d8:cc:a7:fb:92:d9:41:15:4e:75:
        8c:9a:58:2a:aa:d6:c7:8f:e5:92:81:43:41:2d:3e:9d:
        2c:53:f0:23:13:ad:ad:4f:1f:4c:30:6a:8a:19:da:9f:
        01:81:30:93:d2:4b:b9:61:e7:8b:76:bc:25:0c:a5:6a:
        5f:80:1f:9a:33:5c:a0:cf:7c:38:67:09:61:78:b5:54:
        13:b8:9d:d5:ac:d1:c0:41:6b:f0:6f:b2:b0:e1:7e:4a:
        23:50:f7:87:14:2b:b3:f9:14:5f:7c:a6:7e:60:91:55:
        a3:c3:42:ea:29:da:72:96:c7:a2:32:56:bd:b2:8e:24:
        97:80:93:d4:af:2d:71:0a:d8:01:a8:78:e4:50:1c:81
    Fingerprint (SHA-256):
        4B:D1:F8:6C:8A:B8:C8:AD:CA:07:15:D4:63:73:DB:CA:74:72:8C:72:31:E9:43:6C:B5:3F:3B:BC:9B:40:74:6F
    Fingerprint (SHA1):
        BB:5B:96:4C:72:DA:F3:C5:D7:E2:29:C1:21:8A:4E:6B:A3:AD:EF:F5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6622: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115817 (0x1e67bfe9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:58:07 2017
            Not After : Tue May 10 11:58:07 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:74:40:ee:66:67:f4:7a:37:b7:c6:34:b4:bd:3b:af:
                    c4:42:fe:96:45:40:53:64:ce:de:e7:67:69:17:c2:04:
                    c7:26:a2:0b:cc:34:bc:39:08:a2:35:c2:bd:40:c3:73:
                    05:1e:d9:e1:1a:8d:cb:0c:77:2d:8f:2d:f8:3e:9e:b8:
                    66:27:aa:dd:80:a1:e4:a5:02:47:91:2d:4c:7c:c9:b9:
                    00:1e:d8:61:c6:ac:06:2c:ba:1f:9a:f2:55:7a:b7:44:
                    50:ec:b1:87:4f:3d:2f:99:50:5f:85:ca:14:ff:ca:3d:
                    57:e6:f9:93:53:97:b6:ca:fb:eb:ad:b9:24:65:98:36:
                    1e:64:d8:4c:56:69:59:1b:da:3e:44:a7:78:1b:8b:27:
                    61:d4:eb:1c:40:95:02:05:77:61:68:cd:49:b9:16:e7:
                    59:ba:c1:72:20:e8:18:96:b4:be:37:6c:35:6a:00:bd:
                    54:b8:5d:99:f9:df:c8:c2:ef:1f:cc:15:29:fa:8e:3f:
                    06:67:18:ef:73:6b:2a:59:04:a0:1c:bf:ca:34:d0:31:
                    88:eb:f0:83:f6:16:cf:08:25:19:92:aa:9e:6d:34:b2:
                    c3:21:c5:80:d5:67:40:66:83:fd:d8:05:ba:72:95:ae:
                    54:a9:3f:41:49:01:07:30:66:8c:3d:f5:1c:ea:15:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:83:4b:22:95:e9:b5:d8:57:87:46:0c:a6:28:76:21:
        f9:2c:8b:a6:98:1c:2c:02:4b:12:22:91:4d:cb:1f:df:
        7d:89:61:e7:c9:9a:f3:60:94:c4:a7:9e:c1:f8:8d:fc:
        e0:d1:72:e8:82:07:96:b8:d6:9d:db:a2:4d:7b:e2:ae:
        b6:cf:12:70:0e:4a:1a:8b:12:4f:9d:67:51:78:3b:b4:
        a4:70:c9:d4:fe:1c:d9:d1:78:c4:09:0a:f6:d0:ac:9b:
        a1:8d:29:2d:63:36:37:ce:b9:d9:1b:e1:42:81:79:a3:
        c9:fd:34:47:36:9f:d8:cc:a7:fb:92:d9:41:15:4e:75:
        8c:9a:58:2a:aa:d6:c7:8f:e5:92:81:43:41:2d:3e:9d:
        2c:53:f0:23:13:ad:ad:4f:1f:4c:30:6a:8a:19:da:9f:
        01:81:30:93:d2:4b:b9:61:e7:8b:76:bc:25:0c:a5:6a:
        5f:80:1f:9a:33:5c:a0:cf:7c:38:67:09:61:78:b5:54:
        13:b8:9d:d5:ac:d1:c0:41:6b:f0:6f:b2:b0:e1:7e:4a:
        23:50:f7:87:14:2b:b3:f9:14:5f:7c:a6:7e:60:91:55:
        a3:c3:42:ea:29:da:72:96:c7:a2:32:56:bd:b2:8e:24:
        97:80:93:d4:af:2d:71:0a:d8:01:a8:78:e4:50:1c:81
    Fingerprint (SHA-256):
        4B:D1:F8:6C:8A:B8:C8:AD:CA:07:15:D4:63:73:DB:CA:74:72:8C:72:31:E9:43:6C:B5:3F:3B:BC:9B:40:74:6F
    Fingerprint (SHA1):
        BB:5B:96:4C:72:DA:F3:C5:D7:E2:29:C1:21:8A:4E:6B:A3:AD:EF:F5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6623: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #6624: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115816 (0x1e67bfe8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:58:07 2017
            Not After : Tue May 10 11:58:07 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:da:93:40:a2:73:75:55:21:3a:66:d9:18:38:51:4e:
                    22:05:21:96:98:d0:2d:18:ee:30:07:c6:81:7d:c1:15:
                    16:f2:62:e8:c6:a3:6b:79:c1:9a:f5:cb:f6:eb:26:4a:
                    7e:74:1a:25:e8:a0:1e:27:9f:94:b7:be:48:40:00:e8:
                    89:15:49:2f:2c:0f:1d:07:7b:cb:43:2c:c7:09:88:1f:
                    9a:b3:e5:59:e6:9f:9f:23:3d:c1:5e:1e:62:ce:f3:ae:
                    ac:fe:3b:58:d5:a0:62:7f:94:bb:3c:f6:e1:c5:31:86:
                    3a:1f:26:15:a6:81:53:67:5b:ae:54:1a:f3:fd:9b:6a:
                    bb:97:ba:f6:2b:92:e7:5f:dd:88:2a:4a:9c:92:fc:5f:
                    4e:30:7b:2d:e6:f9:aa:7e:72:d2:62:c5:22:0e:dc:48:
                    cf:f5:ed:63:f9:48:5a:c1:38:3b:ec:12:7e:4c:0e:78:
                    39:f1:2c:b8:e1:1f:c9:83:58:48:4b:db:c0:c7:83:22:
                    a5:7b:f4:42:31:ab:01:33:29:56:d8:7e:86:50:4b:61:
                    b9:3f:5f:5d:4a:cf:76:37:4a:7a:1d:69:28:7e:c9:6e:
                    9f:94:05:06:6d:28:98:d4:b6:a7:2e:8e:1c:10:63:d5:
                    f9:10:8a:67:1c:55:49:27:9e:55:22:70:30:ce:d8:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:9b:56:62:82:d7:38:4e:d2:ed:3e:cf:8e:86:f0:ba:
        02:d3:7d:e5:86:7c:2c:fa:69:7d:55:0f:c1:84:81:81:
        66:83:cb:bf:91:39:de:96:c1:dd:26:79:a4:21:99:e6:
        8a:5d:1f:10:d4:65:86:98:a2:96:c2:6d:d2:97:66:d3:
        f6:2b:92:3b:81:d8:03:79:ac:da:73:09:19:21:47:82:
        3e:a8:06:d6:29:ac:ff:e5:ec:31:b4:2b:ad:99:a7:c1:
        5c:d4:81:af:c0:59:22:53:d3:7a:b4:c2:38:ae:03:55:
        02:f7:8a:92:0d:19:08:47:52:d2:bd:f0:f1:eb:68:2d:
        74:9b:06:62:c2:9e:d8:54:8e:8a:f6:5f:a1:a7:d6:9c:
        ee:0f:f3:30:d5:d5:49:5e:e9:a5:b0:60:12:c7:a6:52:
        1e:fc:4b:8c:cf:bc:7a:ea:80:71:07:bf:8c:9c:82:01:
        10:8c:3c:f8:a7:6a:a5:55:d0:36:33:e0:04:d8:89:e8:
        c4:3b:c0:c4:e5:9f:2f:69:4b:d6:bc:90:a6:d4:3b:38:
        71:5c:6a:27:f3:1d:e9:36:8e:e9:6a:15:94:78:22:de:
        58:44:9a:b1:81:df:dc:8f:72:c9:b3:12:ef:f8:40:24:
        10:a9:88:a7:7e:7d:2d:11:27:c1:fe:56:76:94:2d:e2
    Fingerprint (SHA-256):
        49:EF:48:78:4E:17:4A:86:1D:2C:1B:B9:EF:B3:18:45:BC:D1:CE:A5:C0:53:B6:99:C8:38:5D:73:28:D7:92:93
    Fingerprint (SHA1):
        CC:8A:EF:EC:E9:7A:22:AC:4B:80:D6:35:34:AD:D8:0F:45:14:40:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6625: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115817 (0x1e67bfe9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:58:07 2017
            Not After : Tue May 10 11:58:07 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:74:40:ee:66:67:f4:7a:37:b7:c6:34:b4:bd:3b:af:
                    c4:42:fe:96:45:40:53:64:ce:de:e7:67:69:17:c2:04:
                    c7:26:a2:0b:cc:34:bc:39:08:a2:35:c2:bd:40:c3:73:
                    05:1e:d9:e1:1a:8d:cb:0c:77:2d:8f:2d:f8:3e:9e:b8:
                    66:27:aa:dd:80:a1:e4:a5:02:47:91:2d:4c:7c:c9:b9:
                    00:1e:d8:61:c6:ac:06:2c:ba:1f:9a:f2:55:7a:b7:44:
                    50:ec:b1:87:4f:3d:2f:99:50:5f:85:ca:14:ff:ca:3d:
                    57:e6:f9:93:53:97:b6:ca:fb:eb:ad:b9:24:65:98:36:
                    1e:64:d8:4c:56:69:59:1b:da:3e:44:a7:78:1b:8b:27:
                    61:d4:eb:1c:40:95:02:05:77:61:68:cd:49:b9:16:e7:
                    59:ba:c1:72:20:e8:18:96:b4:be:37:6c:35:6a:00:bd:
                    54:b8:5d:99:f9:df:c8:c2:ef:1f:cc:15:29:fa:8e:3f:
                    06:67:18:ef:73:6b:2a:59:04:a0:1c:bf:ca:34:d0:31:
                    88:eb:f0:83:f6:16:cf:08:25:19:92:aa:9e:6d:34:b2:
                    c3:21:c5:80:d5:67:40:66:83:fd:d8:05:ba:72:95:ae:
                    54:a9:3f:41:49:01:07:30:66:8c:3d:f5:1c:ea:15:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:83:4b:22:95:e9:b5:d8:57:87:46:0c:a6:28:76:21:
        f9:2c:8b:a6:98:1c:2c:02:4b:12:22:91:4d:cb:1f:df:
        7d:89:61:e7:c9:9a:f3:60:94:c4:a7:9e:c1:f8:8d:fc:
        e0:d1:72:e8:82:07:96:b8:d6:9d:db:a2:4d:7b:e2:ae:
        b6:cf:12:70:0e:4a:1a:8b:12:4f:9d:67:51:78:3b:b4:
        a4:70:c9:d4:fe:1c:d9:d1:78:c4:09:0a:f6:d0:ac:9b:
        a1:8d:29:2d:63:36:37:ce:b9:d9:1b:e1:42:81:79:a3:
        c9:fd:34:47:36:9f:d8:cc:a7:fb:92:d9:41:15:4e:75:
        8c:9a:58:2a:aa:d6:c7:8f:e5:92:81:43:41:2d:3e:9d:
        2c:53:f0:23:13:ad:ad:4f:1f:4c:30:6a:8a:19:da:9f:
        01:81:30:93:d2:4b:b9:61:e7:8b:76:bc:25:0c:a5:6a:
        5f:80:1f:9a:33:5c:a0:cf:7c:38:67:09:61:78:b5:54:
        13:b8:9d:d5:ac:d1:c0:41:6b:f0:6f:b2:b0:e1:7e:4a:
        23:50:f7:87:14:2b:b3:f9:14:5f:7c:a6:7e:60:91:55:
        a3:c3:42:ea:29:da:72:96:c7:a2:32:56:bd:b2:8e:24:
        97:80:93:d4:af:2d:71:0a:d8:01:a8:78:e4:50:1c:81
    Fingerprint (SHA-256):
        4B:D1:F8:6C:8A:B8:C8:AD:CA:07:15:D4:63:73:DB:CA:74:72:8C:72:31:E9:43:6C:B5:3F:3B:BC:9B:40:74:6F
    Fingerprint (SHA1):
        BB:5B:96:4C:72:DA:F3:C5:D7:E2:29:C1:21:8A:4E:6B:A3:AD:EF:F5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6626: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115817 (0x1e67bfe9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:58:07 2017
            Not After : Tue May 10 11:58:07 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:74:40:ee:66:67:f4:7a:37:b7:c6:34:b4:bd:3b:af:
                    c4:42:fe:96:45:40:53:64:ce:de:e7:67:69:17:c2:04:
                    c7:26:a2:0b:cc:34:bc:39:08:a2:35:c2:bd:40:c3:73:
                    05:1e:d9:e1:1a:8d:cb:0c:77:2d:8f:2d:f8:3e:9e:b8:
                    66:27:aa:dd:80:a1:e4:a5:02:47:91:2d:4c:7c:c9:b9:
                    00:1e:d8:61:c6:ac:06:2c:ba:1f:9a:f2:55:7a:b7:44:
                    50:ec:b1:87:4f:3d:2f:99:50:5f:85:ca:14:ff:ca:3d:
                    57:e6:f9:93:53:97:b6:ca:fb:eb:ad:b9:24:65:98:36:
                    1e:64:d8:4c:56:69:59:1b:da:3e:44:a7:78:1b:8b:27:
                    61:d4:eb:1c:40:95:02:05:77:61:68:cd:49:b9:16:e7:
                    59:ba:c1:72:20:e8:18:96:b4:be:37:6c:35:6a:00:bd:
                    54:b8:5d:99:f9:df:c8:c2:ef:1f:cc:15:29:fa:8e:3f:
                    06:67:18:ef:73:6b:2a:59:04:a0:1c:bf:ca:34:d0:31:
                    88:eb:f0:83:f6:16:cf:08:25:19:92:aa:9e:6d:34:b2:
                    c3:21:c5:80:d5:67:40:66:83:fd:d8:05:ba:72:95:ae:
                    54:a9:3f:41:49:01:07:30:66:8c:3d:f5:1c:ea:15:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:83:4b:22:95:e9:b5:d8:57:87:46:0c:a6:28:76:21:
        f9:2c:8b:a6:98:1c:2c:02:4b:12:22:91:4d:cb:1f:df:
        7d:89:61:e7:c9:9a:f3:60:94:c4:a7:9e:c1:f8:8d:fc:
        e0:d1:72:e8:82:07:96:b8:d6:9d:db:a2:4d:7b:e2:ae:
        b6:cf:12:70:0e:4a:1a:8b:12:4f:9d:67:51:78:3b:b4:
        a4:70:c9:d4:fe:1c:d9:d1:78:c4:09:0a:f6:d0:ac:9b:
        a1:8d:29:2d:63:36:37:ce:b9:d9:1b:e1:42:81:79:a3:
        c9:fd:34:47:36:9f:d8:cc:a7:fb:92:d9:41:15:4e:75:
        8c:9a:58:2a:aa:d6:c7:8f:e5:92:81:43:41:2d:3e:9d:
        2c:53:f0:23:13:ad:ad:4f:1f:4c:30:6a:8a:19:da:9f:
        01:81:30:93:d2:4b:b9:61:e7:8b:76:bc:25:0c:a5:6a:
        5f:80:1f:9a:33:5c:a0:cf:7c:38:67:09:61:78:b5:54:
        13:b8:9d:d5:ac:d1:c0:41:6b:f0:6f:b2:b0:e1:7e:4a:
        23:50:f7:87:14:2b:b3:f9:14:5f:7c:a6:7e:60:91:55:
        a3:c3:42:ea:29:da:72:96:c7:a2:32:56:bd:b2:8e:24:
        97:80:93:d4:af:2d:71:0a:d8:01:a8:78:e4:50:1c:81
    Fingerprint (SHA-256):
        4B:D1:F8:6C:8A:B8:C8:AD:CA:07:15:D4:63:73:DB:CA:74:72:8C:72:31:E9:43:6C:B5:3F:3B:BC:9B:40:74:6F
    Fingerprint (SHA1):
        BB:5B:96:4C:72:DA:F3:C5:D7:E2:29:C1:21:8A:4E:6B:A3:AD:EF:F5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6627: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6628: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115824 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6629: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6630: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6631: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115825 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6632: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6633: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #6634: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6635: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 510115826   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6636: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6637: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #6638: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6639: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 510115827   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6640: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6641: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6642: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6643: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 510115828 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6644: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6645: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 510115829 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6646: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6647: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #6648: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6649: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6650: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510115830   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6651: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6652: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6653: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6654: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510115831   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6655: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6656: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6657: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6658: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115832   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6659: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6660: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6661: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6662: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510115833   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6663: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6664: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6665: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115824 (0x1e67bff0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:58:10 2017
            Not After : Tue May 10 11:58:10 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:01:11:86:ac:73:96:85:a0:db:e4:8a:d6:1a:61:e1:
                    95:ff:49:3e:41:f2:9c:1c:3d:f5:a0:4a:da:ce:8c:16:
                    33:07:43:2b:ac:86:5a:eb:fe:37:00:56:a5:d9:55:24:
                    e3:e3:08:e2:92:33:d9:b6:f8:4b:91:e9:51:56:9b:81:
                    0f:f7:63:64:54:be:c6:c7:58:3d:1e:18:0b:90:22:a0:
                    cf:0c:4a:c7:57:b5:ec:7b:ab:3c:1b:3d:b0:76:22:74:
                    7e:5e:58:94:80:a4:17:0b:61:14:fc:37:2b:dc:22:64:
                    91:a0:b2:fa:e6:5e:44:d9:8a:80:86:56:7a:ef:25:d0:
                    6f:63:b4:3e:f5:cf:79:58:66:9a:61:d8:ec:49:94:0c:
                    37:9d:5b:fc:c6:33:b8:66:5a:d7:5d:7c:e0:6f:f5:36:
                    d8:87:f5:01:43:a5:27:20:b0:6e:a8:64:9b:d6:91:24:
                    14:e2:81:51:e8:4b:b1:c6:79:ce:78:9c:79:fb:4e:a7:
                    c5:5d:0f:78:0a:a8:1d:95:76:37:73:80:93:91:3e:6e:
                    71:d7:22:bf:ec:c2:06:47:b2:e1:21:00:09:a6:d3:f3:
                    1c:b4:0a:c1:0f:bb:21:43:cf:4f:39:c3:07:87:86:ef:
                    2c:8d:21:e4:12:aa:44:f5:77:1b:a1:64:c6:7f:b3:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:63:cd:46:57:8b:56:59:d3:7e:11:ac:0f:e9:5b:db:
        68:33:ba:74:99:ed:11:f1:26:5b:9f:e3:f8:86:fd:a0:
        98:68:84:ff:21:72:68:33:db:5f:25:25:3d:07:ef:be:
        98:d3:13:30:f5:b1:d5:46:00:7b:eb:22:b1:70:f7:45:
        8c:20:ea:f2:4f:f5:f2:78:27:cf:2a:68:95:98:f1:e8:
        3f:66:fe:57:9c:bb:d9:93:c3:0e:4f:88:d0:8b:ea:db:
        d1:1b:42:e6:fe:63:45:b2:56:58:43:11:31:6c:3c:38:
        a0:69:3e:ba:3f:2b:c9:56:e5:a6:ee:6a:09:2a:8c:7f:
        df:1b:14:ef:ec:d0:a1:db:2c:fd:8a:75:31:83:02:da:
        15:86:66:e9:45:1b:0b:ae:54:e3:90:67:17:70:ad:1b:
        db:4a:7d:70:bb:c6:4a:d1:87:27:27:6b:1e:86:34:4d:
        09:44:ca:d1:2b:5f:f6:c0:c7:dd:15:3c:d5:ff:c6:e4:
        2c:a4:21:28:d5:a5:8a:3e:52:2d:a9:6c:ce:61:66:a0:
        fc:54:87:09:0d:e3:98:b8:99:db:39:eb:11:95:c3:50:
        e5:0d:c8:6a:15:28:44:8d:ba:08:e5:74:c3:f4:41:e2:
        3a:c9:fb:b4:49:c9:ef:2a:f3:97:f3:64:86:2f:25:dc
    Fingerprint (SHA-256):
        05:F4:77:60:4B:7F:1D:DE:27:0D:31:BA:3F:8B:56:25:17:01:13:B6:D6:21:5D:B8:80:64:9C:30:A1:77:18:0B
    Fingerprint (SHA1):
        D7:3A:C7:40:C8:49:3E:3D:DF:34:6A:96:10:8F:0B:0D:B6:2A:A5:77
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #6666: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6667: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6668: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6669: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6670: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6671: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6672: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6673: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6674: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115825 (0x1e67bff1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:58:10 2017
            Not After : Tue May 10 11:58:10 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:97:48:9b:d1:d1:14:93:ce:8e:a7:74:3b:16:2c:7b:
                    92:54:2b:e0:96:2e:dc:94:8d:d0:51:e6:56:18:83:0f:
                    c1:58:e5:48:5c:14:f4:09:c9:3f:78:90:2d:6e:df:3a:
                    04:7a:fc:51:f4:9c:f2:79:ef:2b:23:86:19:3c:a5:fe:
                    a9:3a:4c:db:5b:1e:46:c4:3c:95:72:2e:d0:2c:e2:b1:
                    72:f8:00:43:13:23:a5:14:e7:0d:ae:d0:90:0e:ce:ba:
                    e3:af:8e:ce:c3:de:b5:14:73:37:ab:ae:32:9f:f2:79:
                    2f:4f:1e:b3:9a:ac:0e:69:93:3d:74:2a:13:2a:1f:56:
                    73:76:40:3b:a4:2f:e9:11:bd:c8:3d:68:b3:04:8c:e0:
                    67:e0:56:77:70:c5:6c:3a:6d:50:e2:a1:e3:22:64:37:
                    0f:9e:39:57:16:21:74:55:dd:66:83:32:bc:66:2c:6a:
                    6b:73:8a:50:79:67:d6:b1:a5:2b:e2:a9:9c:21:07:5b:
                    cd:67:44:0b:f9:d3:eb:0c:46:fc:bf:be:ba:ab:a5:97:
                    8b:b7:5c:da:dd:32:ad:07:67:83:e5:a1:c2:ae:03:91:
                    bb:09:af:0f:ac:41:63:e0:d6:f3:77:bc:b0:52:b9:b3:
                    b3:f2:28:a7:11:dd:f1:69:dc:54:d5:a0:e1:98:be:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:b2:8a:eb:cf:a5:b9:c3:23:40:f8:5b:5e:6b:6a:42:
        ef:bf:5d:2e:22:83:f8:0e:6c:d6:6e:f8:70:eb:43:fc:
        6c:0a:cb:b7:79:6a:bf:c4:3f:d5:ea:40:e5:58:dd:0b:
        72:b7:2e:1c:91:8f:7b:7a:1f:15:32:33:68:7f:4e:5d:
        2a:67:43:84:79:2d:f8:ce:54:b3:ba:d3:c1:26:6f:d4:
        e9:68:2d:95:b7:a2:52:97:02:b0:5e:9e:40:30:7b:cc:
        28:45:aa:df:17:ac:9c:f8:44:76:5b:61:17:9e:05:d4:
        66:b9:65:5f:95:4b:85:b0:a4:da:d6:f9:52:ba:fa:2d:
        f6:3b:de:11:02:75:f7:a2:44:6d:d7:26:cb:28:76:65:
        37:04:7d:99:8b:7a:50:81:c4:44:40:db:3f:c2:8e:52:
        07:25:53:de:6e:a1:8b:b1:ae:5e:fe:95:00:e1:ae:67:
        f4:52:7e:44:e7:62:00:72:1d:f3:33:2f:82:fc:8f:f9:
        45:41:f4:7c:f5:17:39:98:01:ff:d7:68:18:36:3f:b6:
        d4:44:18:4e:b5:dd:3a:9e:a6:6d:a2:5b:09:12:b2:e8:
        5f:35:32:1d:42:0d:76:7c:e4:f8:0e:24:fa:b9:3b:76:
        f0:ec:89:ee:0d:11:12:b3:79:aa:07:4c:c4:08:ee:8f
    Fingerprint (SHA-256):
        52:78:51:C8:DD:B4:26:B8:6A:75:0C:18:68:08:9F:49:66:29:66:BC:98:8E:A2:BF:A8:56:91:52:08:6B:C8:DA
    Fingerprint (SHA1):
        A7:17:88:13:51:6E:95:DC:32:4B:53:E3:D4:2D:34:03:8F:94:ED:8D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #6675: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6676: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6677: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6678: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6679: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6680: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6681: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #6682: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #6683: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #6684: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #6685: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #6686: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #6687: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #6688: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6689: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6690: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #6691: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #6692: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6693: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115834 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6694: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6695: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6696: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6697: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115835   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6698: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6699: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6700: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6701: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115836   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6702: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6703: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6704: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6705: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 510115837   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6706: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6707: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6708: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6709: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510115838   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6710: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6711: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6712: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6713: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 510115839   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6714: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6715: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #6716: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6717: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 510115840   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6718: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6719: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #6720: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6721: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 510115841   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6722: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6723: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #6724: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6725: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 510115842   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6726: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6727: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6728: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115834 (0x1e67bffa)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:14 2017
            Not After : Tue May 10 11:58:14 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    7e:9a:77:a8:f3:67:c5:40:40:89:bb:d3:62:fc:93:a5:
                    ab:67:00:48:a3:49:1d:55:e7:60:b8:b6:1b:89:64:6b:
                    7f:77:08:1b:8b:ba:fa:25:6d:31:88:6d:45:9d:16:c9:
                    c4:5b:5e:6f:3c:82:25:fb:52:3b:8d:e2:32:1d:7a:85:
                    17:99:df:ec:96:d5:ad:b6:55:37:d2:3d:95:9a:fb:bf:
                    08:bc:ed:01:1d:e1:f0:cf:35:33:be:15:84:d4:a2:29:
                    63:c7:93:7b:b7:7b:95:53:85:59:41:d2:53:ce:39:31:
                    cf:44:cf:be:3f:90:86:34:b0:e8:5d:db:e3:94:3b:48:
                    26:e8:bd:7a:cd:24:78:a2:68:6c:56:e9:af:03:1f:06:
                    89:b6:ab:24:dd:81:19:71:62:42:5b:ca:c7:8f:35:38:
                    e4:2b:b6:12:ec:bd:64:03:34:ee:44:86:b6:c9:48:d2:
                    0a:10:1b:f9:f4:82:40:16:8e:0c:25:37:02:b0:c1:f6:
                    b1:49:48:55:c7:9e:59:35:2c:fd:30:a6:71:1d:f7:05:
                    61:a3:63:df:a9:51:20:71:68:5f:46:4a:c3:18:b7:a8:
                    fc:34:49:59:cf:fd:4b:07:37:8a:24:8f:e4:b5:0e:8c:
                    ec:13:4b:5c:94:89:d2:a4:99:36:90:cc:20:b0:7e:dd
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:4c:62:9b:06:5e:dd:c6:e3:4f:99:83:df:
        f1:11:a7:64:9d:b9:1b:7c:ee:fa:66:7e:f7:a0:d7:68:
        02:1d:00:bb:fc:2e:ca:01:73:79:6f:88:d2:6e:b7:57:
        52:fc:79:6b:68:89:4b:8b:e8:95:01:c5:18:bb:25
    Fingerprint (SHA-256):
        27:ED:A8:00:4D:C9:E2:06:87:40:BA:AE:DE:EB:F1:30:6D:B6:40:C5:96:AB:0B:58:23:8D:E6:D3:DE:69:7A:99
    Fingerprint (SHA1):
        7F:71:AF:4E:D7:24:CE:D6:32:E3:94:F2:39:BD:2B:72:73:C4:94:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6729: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115834 (0x1e67bffa)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:14 2017
            Not After : Tue May 10 11:58:14 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    7e:9a:77:a8:f3:67:c5:40:40:89:bb:d3:62:fc:93:a5:
                    ab:67:00:48:a3:49:1d:55:e7:60:b8:b6:1b:89:64:6b:
                    7f:77:08:1b:8b:ba:fa:25:6d:31:88:6d:45:9d:16:c9:
                    c4:5b:5e:6f:3c:82:25:fb:52:3b:8d:e2:32:1d:7a:85:
                    17:99:df:ec:96:d5:ad:b6:55:37:d2:3d:95:9a:fb:bf:
                    08:bc:ed:01:1d:e1:f0:cf:35:33:be:15:84:d4:a2:29:
                    63:c7:93:7b:b7:7b:95:53:85:59:41:d2:53:ce:39:31:
                    cf:44:cf:be:3f:90:86:34:b0:e8:5d:db:e3:94:3b:48:
                    26:e8:bd:7a:cd:24:78:a2:68:6c:56:e9:af:03:1f:06:
                    89:b6:ab:24:dd:81:19:71:62:42:5b:ca:c7:8f:35:38:
                    e4:2b:b6:12:ec:bd:64:03:34:ee:44:86:b6:c9:48:d2:
                    0a:10:1b:f9:f4:82:40:16:8e:0c:25:37:02:b0:c1:f6:
                    b1:49:48:55:c7:9e:59:35:2c:fd:30:a6:71:1d:f7:05:
                    61:a3:63:df:a9:51:20:71:68:5f:46:4a:c3:18:b7:a8:
                    fc:34:49:59:cf:fd:4b:07:37:8a:24:8f:e4:b5:0e:8c:
                    ec:13:4b:5c:94:89:d2:a4:99:36:90:cc:20:b0:7e:dd
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:4c:62:9b:06:5e:dd:c6:e3:4f:99:83:df:
        f1:11:a7:64:9d:b9:1b:7c:ee:fa:66:7e:f7:a0:d7:68:
        02:1d:00:bb:fc:2e:ca:01:73:79:6f:88:d2:6e:b7:57:
        52:fc:79:6b:68:89:4b:8b:e8:95:01:c5:18:bb:25
    Fingerprint (SHA-256):
        27:ED:A8:00:4D:C9:E2:06:87:40:BA:AE:DE:EB:F1:30:6D:B6:40:C5:96:AB:0B:58:23:8D:E6:D3:DE:69:7A:99
    Fingerprint (SHA1):
        7F:71:AF:4E:D7:24:CE:D6:32:E3:94:F2:39:BD:2B:72:73:C4:94:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6730: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115834 (0x1e67bffa)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:14 2017
            Not After : Tue May 10 11:58:14 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    7e:9a:77:a8:f3:67:c5:40:40:89:bb:d3:62:fc:93:a5:
                    ab:67:00:48:a3:49:1d:55:e7:60:b8:b6:1b:89:64:6b:
                    7f:77:08:1b:8b:ba:fa:25:6d:31:88:6d:45:9d:16:c9:
                    c4:5b:5e:6f:3c:82:25:fb:52:3b:8d:e2:32:1d:7a:85:
                    17:99:df:ec:96:d5:ad:b6:55:37:d2:3d:95:9a:fb:bf:
                    08:bc:ed:01:1d:e1:f0:cf:35:33:be:15:84:d4:a2:29:
                    63:c7:93:7b:b7:7b:95:53:85:59:41:d2:53:ce:39:31:
                    cf:44:cf:be:3f:90:86:34:b0:e8:5d:db:e3:94:3b:48:
                    26:e8:bd:7a:cd:24:78:a2:68:6c:56:e9:af:03:1f:06:
                    89:b6:ab:24:dd:81:19:71:62:42:5b:ca:c7:8f:35:38:
                    e4:2b:b6:12:ec:bd:64:03:34:ee:44:86:b6:c9:48:d2:
                    0a:10:1b:f9:f4:82:40:16:8e:0c:25:37:02:b0:c1:f6:
                    b1:49:48:55:c7:9e:59:35:2c:fd:30:a6:71:1d:f7:05:
                    61:a3:63:df:a9:51:20:71:68:5f:46:4a:c3:18:b7:a8:
                    fc:34:49:59:cf:fd:4b:07:37:8a:24:8f:e4:b5:0e:8c:
                    ec:13:4b:5c:94:89:d2:a4:99:36:90:cc:20:b0:7e:dd
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:4c:62:9b:06:5e:dd:c6:e3:4f:99:83:df:
        f1:11:a7:64:9d:b9:1b:7c:ee:fa:66:7e:f7:a0:d7:68:
        02:1d:00:bb:fc:2e:ca:01:73:79:6f:88:d2:6e:b7:57:
        52:fc:79:6b:68:89:4b:8b:e8:95:01:c5:18:bb:25
    Fingerprint (SHA-256):
        27:ED:A8:00:4D:C9:E2:06:87:40:BA:AE:DE:EB:F1:30:6D:B6:40:C5:96:AB:0B:58:23:8D:E6:D3:DE:69:7A:99
    Fingerprint (SHA1):
        7F:71:AF:4E:D7:24:CE:D6:32:E3:94:F2:39:BD:2B:72:73:C4:94:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #6731: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115834 (0x1e67bffa)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:14 2017
            Not After : Tue May 10 11:58:14 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    7e:9a:77:a8:f3:67:c5:40:40:89:bb:d3:62:fc:93:a5:
                    ab:67:00:48:a3:49:1d:55:e7:60:b8:b6:1b:89:64:6b:
                    7f:77:08:1b:8b:ba:fa:25:6d:31:88:6d:45:9d:16:c9:
                    c4:5b:5e:6f:3c:82:25:fb:52:3b:8d:e2:32:1d:7a:85:
                    17:99:df:ec:96:d5:ad:b6:55:37:d2:3d:95:9a:fb:bf:
                    08:bc:ed:01:1d:e1:f0:cf:35:33:be:15:84:d4:a2:29:
                    63:c7:93:7b:b7:7b:95:53:85:59:41:d2:53:ce:39:31:
                    cf:44:cf:be:3f:90:86:34:b0:e8:5d:db:e3:94:3b:48:
                    26:e8:bd:7a:cd:24:78:a2:68:6c:56:e9:af:03:1f:06:
                    89:b6:ab:24:dd:81:19:71:62:42:5b:ca:c7:8f:35:38:
                    e4:2b:b6:12:ec:bd:64:03:34:ee:44:86:b6:c9:48:d2:
                    0a:10:1b:f9:f4:82:40:16:8e:0c:25:37:02:b0:c1:f6:
                    b1:49:48:55:c7:9e:59:35:2c:fd:30:a6:71:1d:f7:05:
                    61:a3:63:df:a9:51:20:71:68:5f:46:4a:c3:18:b7:a8:
                    fc:34:49:59:cf:fd:4b:07:37:8a:24:8f:e4:b5:0e:8c:
                    ec:13:4b:5c:94:89:d2:a4:99:36:90:cc:20:b0:7e:dd
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:4c:62:9b:06:5e:dd:c6:e3:4f:99:83:df:
        f1:11:a7:64:9d:b9:1b:7c:ee:fa:66:7e:f7:a0:d7:68:
        02:1d:00:bb:fc:2e:ca:01:73:79:6f:88:d2:6e:b7:57:
        52:fc:79:6b:68:89:4b:8b:e8:95:01:c5:18:bb:25
    Fingerprint (SHA-256):
        27:ED:A8:00:4D:C9:E2:06:87:40:BA:AE:DE:EB:F1:30:6D:B6:40:C5:96:AB:0B:58:23:8D:E6:D3:DE:69:7A:99
    Fingerprint (SHA1):
        7F:71:AF:4E:D7:24:CE:D6:32:E3:94:F2:39:BD:2B:72:73:C4:94:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #6732: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6733: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6734: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6735: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #6736: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6737: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6738: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6739: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6740: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6741: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6742: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6743: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #6744: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6745: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6746: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6747: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #6748: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6749: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6750: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6751: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6752: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6753: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6754: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6755: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #6756: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6757: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6758: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6759: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510115819Z
nextupdate=20180510115819Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 11:58:19 2017
    Next Update: Thu May 10 11:58:19 2018
    CRL Extensions:
chains.sh: #6760: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115819Z
nextupdate=20180510115819Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:58:19 2017
    Next Update: Thu May 10 11:58:19 2018
    CRL Extensions:
chains.sh: #6761: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510115819Z
nextupdate=20180510115819Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 11:58:19 2017
    Next Update: Thu May 10 11:58:19 2018
    CRL Extensions:
chains.sh: #6762: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510115819Z
nextupdate=20180510115819Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 11:58:19 2017
    Next Update: Thu May 10 11:58:19 2018
    CRL Extensions:
chains.sh: #6763: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510115820Z
addcert 14 20170510115820Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 11:58:20 2017
    Next Update: Thu May 10 11:58:19 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed May 10 11:58:20 2017
    CRL Extensions:
chains.sh: #6764: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115821Z
addcert 15 20170510115821Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:58:21 2017
    Next Update: Thu May 10 11:58:19 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed May 10 11:58:21 2017
    CRL Extensions:
chains.sh: #6765: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6766: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6767: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #6768: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #6769: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #6770: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #6771: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #6772: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #6773: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #6774: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:16 2017
            Not After : Tue May 10 11:58:16 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:cd:c9:61:b7:5a:ae:d4:47:f7:67:27:6c:ba:c1:40:
                    37:e3:20:4c:46:4d:ff:2c:60:88:b3:9b:5b:5c:00:e1:
                    86:01:a2:7f:88:96:a7:a5:14:84:87:2d:6f:7a:3c:ae:
                    26:5e:59:59:12:18:62:6e:24:fd:4f:d0:a0:df:67:45:
                    35:a8:ba:53:1e:b4:6b:d4:6f:e1:8b:55:9a:a9:43:e6:
                    bd:9f:82:93:ec:d2:5c:d0:01:a4:9b:cb:98:ba:7b:70:
                    2f:6e:86:22:95:91:87:58:42:cd:2a:c1:62:2f:30:a6:
                    ee:57:56:3e:a2:ed:9e:b6:d7:14:af:9c:f3:85:9c:d8:
                    de:26:31:45:10:eb:79:22:78:dd:01:d1:64:64:51:0b:
                    7f:70:9e:99:67:4f:d0:dd:ab:d9:aa:3e:06:5e:0f:1c:
                    25:9f:c7:47:08:05:64:b3:b3:77:ff:99:32:2f:61:df:
                    80:de:ef:2a:27:57:3f:48:c5:9a:2d:b0:56:78:5a:b1:
                    6f:67:a3:92:85:d6:9e:7b:71:18:f3:80:8f:5a:98:da:
                    d0:62:fb:f4:b7:4a:22:1f:54:c0:a4:a0:06:1c:00:7e:
                    86:10:70:1c:d5:c0:13:b6:db:da:73:ba:f3:5f:e9:3c:
                    12:31:de:b6:b8:55:44:65:42:b5:82:d2:d3:a1:14:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:11:19:44:af:50:52:aa:c0:61:15:6f:4f:54:17:2b:
        97:01:4f:55:9d:13:9b:df:cd:ee:fb:d6:31:b1:fa:85:
        de:70:90:01:f8:7f:20:0c:4d:f7:6e:d4:d6:2d:88:b5:
        f9:66:95:83:c7:f7:c2:f9:1e:b4:c1:c2:d5:70:d6:96:
        fe:5d:03:63:09:83:92:fb:ee:b2:4c:b1:15:c7:ce:ea:
        5b:e6:74:45:dc:f8:f4:99:84:47:45:fa:e9:08:f5:50:
        75:06:cf:29:89:74:8b:f5:2c:e9:fb:b5:e1:d3:3b:27:
        82:83:5a:da:f3:4e:40:21:00:9f:62:21:a9:2f:17:1c:
        f5:b9:8a:e4:57:d0:a6:f5:ec:4d:c2:33:ef:f8:2f:8a:
        2f:77:9a:ab:35:12:60:26:35:46:4b:c7:4c:16:1d:90:
        69:3d:29:17:16:3c:30:9b:51:75:ad:e3:f3:1a:b9:ee:
        59:3a:a8:4a:16:ad:71:d2:df:c7:c6:8b:93:ed:30:0c:
        72:46:4d:2e:47:3a:07:d7:c8:41:2c:bb:f8:34:af:d6:
        4e:c3:8f:48:2d:44:9e:23:bd:0b:5e:fd:1e:a1:1c:2c:
        eb:ed:22:2e:6e:50:d2:3e:44:fe:d2:ba:70:b5:8d:f3:
        e8:cf:bc:c6:a0:3b:a5:08:db:17:c8:64:99:83:d2:8c
    Fingerprint (SHA-256):
        99:43:69:50:F6:1B:C9:5E:68:EB:DC:93:00:68:D3:B5:72:7A:F5:FA:BC:CD:67:B3:0A:D6:51:44:9E:9A:12:E1
    Fingerprint (SHA1):
        92:80:C2:0B:42:FE:7C:0E:3D:8C:8E:EB:88:0D:75:4C:51:09:BF:C3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6775: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6776: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:16 2017
            Not After : Tue May 10 11:58:16 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:cd:c9:61:b7:5a:ae:d4:47:f7:67:27:6c:ba:c1:40:
                    37:e3:20:4c:46:4d:ff:2c:60:88:b3:9b:5b:5c:00:e1:
                    86:01:a2:7f:88:96:a7:a5:14:84:87:2d:6f:7a:3c:ae:
                    26:5e:59:59:12:18:62:6e:24:fd:4f:d0:a0:df:67:45:
                    35:a8:ba:53:1e:b4:6b:d4:6f:e1:8b:55:9a:a9:43:e6:
                    bd:9f:82:93:ec:d2:5c:d0:01:a4:9b:cb:98:ba:7b:70:
                    2f:6e:86:22:95:91:87:58:42:cd:2a:c1:62:2f:30:a6:
                    ee:57:56:3e:a2:ed:9e:b6:d7:14:af:9c:f3:85:9c:d8:
                    de:26:31:45:10:eb:79:22:78:dd:01:d1:64:64:51:0b:
                    7f:70:9e:99:67:4f:d0:dd:ab:d9:aa:3e:06:5e:0f:1c:
                    25:9f:c7:47:08:05:64:b3:b3:77:ff:99:32:2f:61:df:
                    80:de:ef:2a:27:57:3f:48:c5:9a:2d:b0:56:78:5a:b1:
                    6f:67:a3:92:85:d6:9e:7b:71:18:f3:80:8f:5a:98:da:
                    d0:62:fb:f4:b7:4a:22:1f:54:c0:a4:a0:06:1c:00:7e:
                    86:10:70:1c:d5:c0:13:b6:db:da:73:ba:f3:5f:e9:3c:
                    12:31:de:b6:b8:55:44:65:42:b5:82:d2:d3:a1:14:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:11:19:44:af:50:52:aa:c0:61:15:6f:4f:54:17:2b:
        97:01:4f:55:9d:13:9b:df:cd:ee:fb:d6:31:b1:fa:85:
        de:70:90:01:f8:7f:20:0c:4d:f7:6e:d4:d6:2d:88:b5:
        f9:66:95:83:c7:f7:c2:f9:1e:b4:c1:c2:d5:70:d6:96:
        fe:5d:03:63:09:83:92:fb:ee:b2:4c:b1:15:c7:ce:ea:
        5b:e6:74:45:dc:f8:f4:99:84:47:45:fa:e9:08:f5:50:
        75:06:cf:29:89:74:8b:f5:2c:e9:fb:b5:e1:d3:3b:27:
        82:83:5a:da:f3:4e:40:21:00:9f:62:21:a9:2f:17:1c:
        f5:b9:8a:e4:57:d0:a6:f5:ec:4d:c2:33:ef:f8:2f:8a:
        2f:77:9a:ab:35:12:60:26:35:46:4b:c7:4c:16:1d:90:
        69:3d:29:17:16:3c:30:9b:51:75:ad:e3:f3:1a:b9:ee:
        59:3a:a8:4a:16:ad:71:d2:df:c7:c6:8b:93:ed:30:0c:
        72:46:4d:2e:47:3a:07:d7:c8:41:2c:bb:f8:34:af:d6:
        4e:c3:8f:48:2d:44:9e:23:bd:0b:5e:fd:1e:a1:1c:2c:
        eb:ed:22:2e:6e:50:d2:3e:44:fe:d2:ba:70:b5:8d:f3:
        e8:cf:bc:c6:a0:3b:a5:08:db:17:c8:64:99:83:d2:8c
    Fingerprint (SHA-256):
        99:43:69:50:F6:1B:C9:5E:68:EB:DC:93:00:68:D3:B5:72:7A:F5:FA:BC:CD:67:B3:0A:D6:51:44:9E:9A:12:E1
    Fingerprint (SHA1):
        92:80:C2:0B:42:FE:7C:0E:3D:8C:8E:EB:88:0D:75:4C:51:09:BF:C3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6777: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6778: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6779: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115843 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6780: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6781: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #6782: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6783: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 510115844   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6784: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6785: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6786: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115734.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6787: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115719.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6788: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6789: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #6790: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115734.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6791: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 510115845   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6792: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6793: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6794: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115734.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6795: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115720.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6796: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6797: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #6798: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6799: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 510115846   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6800: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6801: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6802: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115734.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6803: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115721.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6804: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6805: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6806: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115734.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6807: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115722.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6808: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6809: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510115824Z
nextupdate=20180510115824Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 11:58:24 2017
    Next Update: Thu May 10 11:58:24 2018
    CRL Extensions:
chains.sh: #6810: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115824Z
nextupdate=20180510115824Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:58:24 2017
    Next Update: Thu May 10 11:58:24 2018
    CRL Extensions:
chains.sh: #6811: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510115824Z
nextupdate=20180510115824Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 11:58:24 2017
    Next Update: Thu May 10 11:58:24 2018
    CRL Extensions:
chains.sh: #6812: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510115824Z
nextupdate=20180510115824Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 11:58:24 2017
    Next Update: Thu May 10 11:58:24 2018
    CRL Extensions:
chains.sh: #6813: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115825Z
addcert 20 20170510115825Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:58:25 2017
    Next Update: Thu May 10 11:58:24 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 11:58:25 2017
    CRL Extensions:
chains.sh: #6814: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115826Z
addcert 40 20170510115826Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:58:26 2017
    Next Update: Thu May 10 11:58:24 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 11:58:25 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 11:58:26 2017
    CRL Extensions:
chains.sh: #6815: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6816: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6817: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #6818: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115843 (0x1e67c003)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:22 2017
            Not After : Tue May 10 11:58:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:e2:1e:66:c0:c2:2c:ad:08:ee:33:2e:29:3d:84:e9:
                    10:33:ed:e1:ae:5d:08:12:3d:6e:43:14:be:e6:5c:9b:
                    f0:7d:03:8e:58:25:54:56:f4:7f:27:3b:2d:25:62:1d:
                    ea:ea:07:72:7f:20:8c:f7:96:c4:b0:ad:4d:0f:47:8f:
                    01:fc:eb:71:8d:fc:8b:84:41:11:dd:e8:0b:57:a2:5b:
                    47:3f:ce:6b:73:72:16:47:76:e2:ad:69:68:f8:37:8f:
                    df:20:b4:50:77:95:ab:26:9d:91:48:d4:4e:79:ad:d4:
                    bd:af:c6:da:74:38:6a:a0:e6:b5:96:59:ba:06:e2:ed:
                    28:3d:08:6e:ae:d6:a1:d1:03:35:3b:98:4b:ca:16:f6:
                    e6:95:95:4f:37:98:db:c3:df:9e:95:b9:98:b7:16:0c:
                    89:9c:b4:6e:61:f6:f0:b7:10:d7:08:0e:9f:ee:57:56:
                    41:2d:9f:e3:91:4d:e6:90:6b:e1:08:68:c4:7c:ed:2c:
                    7c:45:c0:e0:0a:90:d2:b0:80:25:ce:5d:0a:59:f4:15:
                    85:77:d3:93:1c:fe:74:08:25:2a:3c:da:c6:64:d7:0a:
                    19:52:4f:52:ad:79:7b:1b:57:43:ff:ef:f0:22:07:f8:
                    e4:20:51:fd:10:e3:ff:f8:16:8d:31:be:47:df:18:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:c0:f9:2b:23:7a:b1:35:d2:f8:5c:ba:b5:ff:68:f4:
        d1:5b:12:ab:b3:0f:09:78:76:49:1c:08:55:98:d7:5f:
        f6:d7:e0:7e:84:c9:54:79:aa:ad:96:a2:1d:fb:79:d6:
        83:be:b0:b6:7c:c5:04:e5:b6:7a:a7:67:b7:70:be:fd:
        89:ee:ca:1a:0b:60:fd:8c:cf:75:18:c1:42:c9:61:f4:
        c7:be:43:5f:4f:4b:71:a9:fb:15:48:78:aa:a8:26:b1:
        eb:84:9e:6e:17:26:c2:8e:6a:7b:00:92:71:b4:4a:c5:
        7b:18:80:d5:7e:cc:f8:39:f3:16:0b:68:9e:98:64:bd:
        3e:90:39:8e:56:7d:09:90:4e:90:8d:6c:12:c8:87:37:
        93:38:58:aa:36:e7:4f:2b:4f:83:c7:dc:61:33:00:a8:
        12:ab:16:30:16:2a:09:1a:f0:3d:28:83:f9:84:77:58:
        b9:e4:32:94:f8:f6:df:44:d2:3a:13:55:9a:36:28:0b:
        fd:a8:ad:64:63:eb:8f:ef:03:42:f3:be:14:2b:0d:85:
        8a:39:16:c4:20:df:4a:8a:df:77:24:2b:d1:9c:1a:25:
        ba:0b:99:b6:0f:79:15:c1:6c:ec:2d:6b:20:e8:b4:72:
        a9:02:8e:7a:2e:b8:8a:22:65:f1:21:b2:88:30:68:ff
    Fingerprint (SHA-256):
        6B:EE:27:79:76:81:CB:CA:D2:34:AB:BD:7A:C9:C9:D7:0B:C3:D4:84:F7:BC:3D:0E:D0:64:2C:99:B4:5B:29:5F
    Fingerprint (SHA1):
        A2:C5:07:E0:C3:64:AF:DC:B0:17:01:D3:F7:F7:C0:4B:20:0F:18:17
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6819: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6820: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115843 (0x1e67c003)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:22 2017
            Not After : Tue May 10 11:58:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:e2:1e:66:c0:c2:2c:ad:08:ee:33:2e:29:3d:84:e9:
                    10:33:ed:e1:ae:5d:08:12:3d:6e:43:14:be:e6:5c:9b:
                    f0:7d:03:8e:58:25:54:56:f4:7f:27:3b:2d:25:62:1d:
                    ea:ea:07:72:7f:20:8c:f7:96:c4:b0:ad:4d:0f:47:8f:
                    01:fc:eb:71:8d:fc:8b:84:41:11:dd:e8:0b:57:a2:5b:
                    47:3f:ce:6b:73:72:16:47:76:e2:ad:69:68:f8:37:8f:
                    df:20:b4:50:77:95:ab:26:9d:91:48:d4:4e:79:ad:d4:
                    bd:af:c6:da:74:38:6a:a0:e6:b5:96:59:ba:06:e2:ed:
                    28:3d:08:6e:ae:d6:a1:d1:03:35:3b:98:4b:ca:16:f6:
                    e6:95:95:4f:37:98:db:c3:df:9e:95:b9:98:b7:16:0c:
                    89:9c:b4:6e:61:f6:f0:b7:10:d7:08:0e:9f:ee:57:56:
                    41:2d:9f:e3:91:4d:e6:90:6b:e1:08:68:c4:7c:ed:2c:
                    7c:45:c0:e0:0a:90:d2:b0:80:25:ce:5d:0a:59:f4:15:
                    85:77:d3:93:1c:fe:74:08:25:2a:3c:da:c6:64:d7:0a:
                    19:52:4f:52:ad:79:7b:1b:57:43:ff:ef:f0:22:07:f8:
                    e4:20:51:fd:10:e3:ff:f8:16:8d:31:be:47:df:18:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:c0:f9:2b:23:7a:b1:35:d2:f8:5c:ba:b5:ff:68:f4:
        d1:5b:12:ab:b3:0f:09:78:76:49:1c:08:55:98:d7:5f:
        f6:d7:e0:7e:84:c9:54:79:aa:ad:96:a2:1d:fb:79:d6:
        83:be:b0:b6:7c:c5:04:e5:b6:7a:a7:67:b7:70:be:fd:
        89:ee:ca:1a:0b:60:fd:8c:cf:75:18:c1:42:c9:61:f4:
        c7:be:43:5f:4f:4b:71:a9:fb:15:48:78:aa:a8:26:b1:
        eb:84:9e:6e:17:26:c2:8e:6a:7b:00:92:71:b4:4a:c5:
        7b:18:80:d5:7e:cc:f8:39:f3:16:0b:68:9e:98:64:bd:
        3e:90:39:8e:56:7d:09:90:4e:90:8d:6c:12:c8:87:37:
        93:38:58:aa:36:e7:4f:2b:4f:83:c7:dc:61:33:00:a8:
        12:ab:16:30:16:2a:09:1a:f0:3d:28:83:f9:84:77:58:
        b9:e4:32:94:f8:f6:df:44:d2:3a:13:55:9a:36:28:0b:
        fd:a8:ad:64:63:eb:8f:ef:03:42:f3:be:14:2b:0d:85:
        8a:39:16:c4:20:df:4a:8a:df:77:24:2b:d1:9c:1a:25:
        ba:0b:99:b6:0f:79:15:c1:6c:ec:2d:6b:20:e8:b4:72:
        a9:02:8e:7a:2e:b8:8a:22:65:f1:21:b2:88:30:68:ff
    Fingerprint (SHA-256):
        6B:EE:27:79:76:81:CB:CA:D2:34:AB:BD:7A:C9:C9:D7:0B:C3:D4:84:F7:BC:3D:0E:D0:64:2C:99:B4:5B:29:5F
    Fingerprint (SHA1):
        A2:C5:07:E0:C3:64:AF:DC:B0:17:01:D3:F7:F7:C0:4B:20:0F:18:17
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6821: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6822: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6823: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115847 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6824: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6825: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6826: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6827: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510115848   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6828: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6829: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6830: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6831: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115849   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6832: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6833: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6834: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6835: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 510115850   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6836: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6837: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #6838: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115851 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6839: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #6840: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #6841: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6842: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 510115852   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6843: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6844: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6845: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6846: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 510115853   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6847: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6848: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #6849: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #6850: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #6851: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115847 (0x1e67c007)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:27 2017
            Not After : Tue May 10 11:58:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:39:b2:d4:f1:33:a1:fc:45:4f:27:fc:35:7e:e3:09:
                    00:e3:dd:e5:0e:db:d1:38:e4:c1:cf:d1:4b:21:8c:42:
                    74:d9:cf:77:85:2e:e9:63:75:49:3c:2a:ca:fc:f2:d6:
                    72:57:8a:0a:fc:59:13:b8:cb:08:f3:f6:ce:9d:cb:55:
                    41:ab:d6:b2:ee:85:8c:49:33:cd:ac:9c:f7:d5:5c:ef:
                    5b:79:ac:f0:5f:fd:29:6d:37:6c:c3:11:d6:3c:fb:1f:
                    d3:1c:40:bf:25:7f:93:80:4b:9f:86:ba:ec:8e:8a:17:
                    b1:0f:8c:52:f3:e4:fa:d8:d3:33:7c:68:3e:02:05:4a:
                    74:d3:73:aa:d7:b2:91:30:91:93:b8:2f:a5:22:a8:b4:
                    95:6a:dd:8b:92:38:99:fd:3b:b4:6f:d1:5f:3a:61:cd:
                    26:75:67:65:46:90:64:cd:c2:e9:df:a2:08:b3:a7:ff:
                    51:ce:4e:30:e5:7d:97:e0:1a:82:07:c7:be:d3:be:d3:
                    3a:03:f5:89:6a:4d:8c:51:08:d3:c4:17:06:b1:e7:26:
                    6b:53:33:45:19:f3:13:e3:ed:aa:52:b5:3d:b4:d0:6b:
                    e9:17:b3:79:4d:f9:56:67:eb:72:fe:a8:54:30:2e:4b:
                    08:43:ad:4a:08:8c:3c:06:ca:c7:49:ee:ae:37:04:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:e4:d2:73:75:64:bb:e9:55:72:47:d5:51:43:59:69:
        66:43:3f:13:72:23:a0:dc:0b:01:68:a5:0c:1a:5b:91:
        09:cd:51:6c:76:4b:b9:3e:af:fd:75:fd:9a:56:0e:4e:
        90:81:e0:13:ed:51:45:24:7e:75:9c:fb:26:3c:81:77:
        3a:f4:57:6f:33:ae:b8:a8:d6:c7:f4:bb:7c:fe:d5:aa:
        04:e3:d2:c6:f6:57:18:ff:75:7e:56:0a:dc:89:c1:c3:
        7f:de:8f:c9:f1:a3:ec:24:87:d5:01:cf:8a:f3:fe:74:
        f9:c8:e9:f5:3e:18:27:d6:77:57:d3:a0:d2:49:cd:95:
        c9:8f:58:31:61:8d:53:5e:07:84:bb:3b:64:9d:88:8f:
        c3:f9:5a:8a:8f:a2:47:1d:58:4b:bd:10:a0:6f:27:64:
        22:2e:ff:ba:11:ea:34:d1:51:53:e8:35:01:87:96:81:
        09:de:cc:b6:31:3e:eb:fd:67:e5:7f:bb:87:7c:37:1b:
        2f:52:4f:5c:d0:c3:4e:f5:17:94:4c:87:29:d6:72:c6:
        82:97:f9:f9:b1:38:2b:80:95:32:d9:27:1c:83:55:61:
        f3:51:d6:80:32:66:42:d4:cc:3d:d0:78:fa:54:ae:17:
        4e:84:41:3f:e6:52:0e:bf:63:96:45:01:11:52:5a:50
    Fingerprint (SHA-256):
        D5:0E:0C:5F:77:31:AF:A6:02:18:5A:FB:1F:EE:DF:B6:2D:57:53:49:6E:AD:D6:CF:DD:26:7A:DA:76:0A:64:B8
    Fingerprint (SHA1):
        F1:5E:5A:E7:93:7E:25:85:F6:0F:D9:E3:5B:B4:83:07:2C:78:B8:DA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6852: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115849 (0x1e67c009)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:58:28 2017
            Not After : Tue May 10 11:58:28 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:f0:cc:bc:76:3c:22:44:6b:aa:24:a0:92:ba:0b:80:
                    c3:1c:75:e8:4b:35:77:3e:86:e9:46:4a:14:cf:be:5c:
                    05:f8:78:94:19:77:c1:c1:d5:ab:ad:a3:88:be:07:aa:
                    34:bd:f5:01:a3:fa:54:53:ea:ed:bc:33:0a:be:d7:34:
                    12:7b:f5:78:9f:c6:d4:5d:ca:da:cf:94:c1:84:69:9c:
                    90:73:5c:38:66:eb:cc:45:43:1c:64:f3:81:71:76:b7:
                    ef:bc:a0:20:b4:e9:da:9d:06:ba:83:d9:21:45:b6:57:
                    23:a4:7d:b7:91:82:23:0a:8f:d1:74:4d:b2:0b:55:a3:
                    de:26:40:c6:2c:da:01:9a:d0:dc:39:11:c2:41:12:d7:
                    ae:37:1f:9d:96:8f:0e:52:c3:8e:06:30:df:1c:16:68:
                    5b:37:85:9d:88:24:53:a5:2f:f4:3e:16:57:c2:1f:38:
                    c0:bc:cf:47:88:21:26:9f:21:dc:e0:e2:2d:22:3f:cb:
                    b6:a9:d5:2e:7c:27:95:03:48:91:7a:cc:b8:0c:78:6f:
                    57:21:ff:5d:d6:f2:ab:09:f3:57:1c:ba:3c:39:71:53:
                    0d:b5:e8:e9:47:73:8b:fc:5b:35:a4:53:0a:ec:fb:09:
                    94:c6:ac:cf:96:30:6f:d5:36:1c:1a:2d:15:48:40:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:3c:f9:a9:22:77:1a:50:1f:3d:69:a5:de:b4:17:c4:
        52:b4:3d:92:85:00:77:85:08:af:15:a2:5c:f7:5f:0b:
        6f:eb:b0:08:0a:72:6d:1e:78:12:17:b8:2c:aa:0e:b7:
        d4:c9:be:6e:30:fd:a7:d1:43:e5:52:e5:85:d6:27:3e:
        ca:aa:3b:e7:fa:60:2c:75:d8:ab:fb:58:5c:63:b6:10:
        01:52:11:35:38:25:1f:98:20:db:9b:85:35:27:6e:91:
        a8:9c:c7:59:df:96:84:ad:c4:53:84:48:44:fb:aa:a4:
        c8:fd:48:7c:9f:af:d2:ca:41:7c:bb:a2:33:be:d3:63:
        ac:d4:7d:39:ea:3d:bb:f6:a1:e6:12:52:44:cc:b9:a0:
        7a:2e:a2:1f:03:16:7e:3e:d7:ad:ca:8f:c9:1c:5e:da:
        ec:e6:46:83:09:27:c4:d8:c0:20:21:e1:61:3a:2d:fc:
        91:56:b9:ea:6e:7b:8a:4b:4e:41:47:0a:45:ea:05:2c:
        df:95:09:ff:40:8a:21:e5:9d:3a:a8:ac:f4:b4:a5:1d:
        7f:0e:55:cc:9f:5b:29:ba:53:22:c1:6c:8a:1a:1e:52:
        04:e2:17:a8:5a:b4:f0:ad:62:8a:b9:75:3f:d8:20:12:
        c0:cd:d2:2f:b1:d9:14:ce:7f:c9:1d:cf:c6:12:0a:21
    Fingerprint (SHA-256):
        59:88:AD:FE:31:59:5D:30:D2:80:BC:81:64:33:9B:29:57:2A:DF:AF:51:5C:5D:98:D1:AF:9C:D8:E9:19:7E:26
    Fingerprint (SHA1):
        21:4D:BD:19:F6:FE:3A:CF:92:BC:15:F2:41:B3:3C:3C:BC:92:79:E2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6853: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115847 (0x1e67c007)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:27 2017
            Not After : Tue May 10 11:58:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:39:b2:d4:f1:33:a1:fc:45:4f:27:fc:35:7e:e3:09:
                    00:e3:dd:e5:0e:db:d1:38:e4:c1:cf:d1:4b:21:8c:42:
                    74:d9:cf:77:85:2e:e9:63:75:49:3c:2a:ca:fc:f2:d6:
                    72:57:8a:0a:fc:59:13:b8:cb:08:f3:f6:ce:9d:cb:55:
                    41:ab:d6:b2:ee:85:8c:49:33:cd:ac:9c:f7:d5:5c:ef:
                    5b:79:ac:f0:5f:fd:29:6d:37:6c:c3:11:d6:3c:fb:1f:
                    d3:1c:40:bf:25:7f:93:80:4b:9f:86:ba:ec:8e:8a:17:
                    b1:0f:8c:52:f3:e4:fa:d8:d3:33:7c:68:3e:02:05:4a:
                    74:d3:73:aa:d7:b2:91:30:91:93:b8:2f:a5:22:a8:b4:
                    95:6a:dd:8b:92:38:99:fd:3b:b4:6f:d1:5f:3a:61:cd:
                    26:75:67:65:46:90:64:cd:c2:e9:df:a2:08:b3:a7:ff:
                    51:ce:4e:30:e5:7d:97:e0:1a:82:07:c7:be:d3:be:d3:
                    3a:03:f5:89:6a:4d:8c:51:08:d3:c4:17:06:b1:e7:26:
                    6b:53:33:45:19:f3:13:e3:ed:aa:52:b5:3d:b4:d0:6b:
                    e9:17:b3:79:4d:f9:56:67:eb:72:fe:a8:54:30:2e:4b:
                    08:43:ad:4a:08:8c:3c:06:ca:c7:49:ee:ae:37:04:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:e4:d2:73:75:64:bb:e9:55:72:47:d5:51:43:59:69:
        66:43:3f:13:72:23:a0:dc:0b:01:68:a5:0c:1a:5b:91:
        09:cd:51:6c:76:4b:b9:3e:af:fd:75:fd:9a:56:0e:4e:
        90:81:e0:13:ed:51:45:24:7e:75:9c:fb:26:3c:81:77:
        3a:f4:57:6f:33:ae:b8:a8:d6:c7:f4:bb:7c:fe:d5:aa:
        04:e3:d2:c6:f6:57:18:ff:75:7e:56:0a:dc:89:c1:c3:
        7f:de:8f:c9:f1:a3:ec:24:87:d5:01:cf:8a:f3:fe:74:
        f9:c8:e9:f5:3e:18:27:d6:77:57:d3:a0:d2:49:cd:95:
        c9:8f:58:31:61:8d:53:5e:07:84:bb:3b:64:9d:88:8f:
        c3:f9:5a:8a:8f:a2:47:1d:58:4b:bd:10:a0:6f:27:64:
        22:2e:ff:ba:11:ea:34:d1:51:53:e8:35:01:87:96:81:
        09:de:cc:b6:31:3e:eb:fd:67:e5:7f:bb:87:7c:37:1b:
        2f:52:4f:5c:d0:c3:4e:f5:17:94:4c:87:29:d6:72:c6:
        82:97:f9:f9:b1:38:2b:80:95:32:d9:27:1c:83:55:61:
        f3:51:d6:80:32:66:42:d4:cc:3d:d0:78:fa:54:ae:17:
        4e:84:41:3f:e6:52:0e:bf:63:96:45:01:11:52:5a:50
    Fingerprint (SHA-256):
        D5:0E:0C:5F:77:31:AF:A6:02:18:5A:FB:1F:EE:DF:B6:2D:57:53:49:6E:AD:D6:CF:DD:26:7A:DA:76:0A:64:B8
    Fingerprint (SHA1):
        F1:5E:5A:E7:93:7E:25:85:F6:0F:D9:E3:5B:B4:83:07:2C:78:B8:DA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6854: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #6855: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115847 (0x1e67c007)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:27 2017
            Not After : Tue May 10 11:58:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:39:b2:d4:f1:33:a1:fc:45:4f:27:fc:35:7e:e3:09:
                    00:e3:dd:e5:0e:db:d1:38:e4:c1:cf:d1:4b:21:8c:42:
                    74:d9:cf:77:85:2e:e9:63:75:49:3c:2a:ca:fc:f2:d6:
                    72:57:8a:0a:fc:59:13:b8:cb:08:f3:f6:ce:9d:cb:55:
                    41:ab:d6:b2:ee:85:8c:49:33:cd:ac:9c:f7:d5:5c:ef:
                    5b:79:ac:f0:5f:fd:29:6d:37:6c:c3:11:d6:3c:fb:1f:
                    d3:1c:40:bf:25:7f:93:80:4b:9f:86:ba:ec:8e:8a:17:
                    b1:0f:8c:52:f3:e4:fa:d8:d3:33:7c:68:3e:02:05:4a:
                    74:d3:73:aa:d7:b2:91:30:91:93:b8:2f:a5:22:a8:b4:
                    95:6a:dd:8b:92:38:99:fd:3b:b4:6f:d1:5f:3a:61:cd:
                    26:75:67:65:46:90:64:cd:c2:e9:df:a2:08:b3:a7:ff:
                    51:ce:4e:30:e5:7d:97:e0:1a:82:07:c7:be:d3:be:d3:
                    3a:03:f5:89:6a:4d:8c:51:08:d3:c4:17:06:b1:e7:26:
                    6b:53:33:45:19:f3:13:e3:ed:aa:52:b5:3d:b4:d0:6b:
                    e9:17:b3:79:4d:f9:56:67:eb:72:fe:a8:54:30:2e:4b:
                    08:43:ad:4a:08:8c:3c:06:ca:c7:49:ee:ae:37:04:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:e4:d2:73:75:64:bb:e9:55:72:47:d5:51:43:59:69:
        66:43:3f:13:72:23:a0:dc:0b:01:68:a5:0c:1a:5b:91:
        09:cd:51:6c:76:4b:b9:3e:af:fd:75:fd:9a:56:0e:4e:
        90:81:e0:13:ed:51:45:24:7e:75:9c:fb:26:3c:81:77:
        3a:f4:57:6f:33:ae:b8:a8:d6:c7:f4:bb:7c:fe:d5:aa:
        04:e3:d2:c6:f6:57:18:ff:75:7e:56:0a:dc:89:c1:c3:
        7f:de:8f:c9:f1:a3:ec:24:87:d5:01:cf:8a:f3:fe:74:
        f9:c8:e9:f5:3e:18:27:d6:77:57:d3:a0:d2:49:cd:95:
        c9:8f:58:31:61:8d:53:5e:07:84:bb:3b:64:9d:88:8f:
        c3:f9:5a:8a:8f:a2:47:1d:58:4b:bd:10:a0:6f:27:64:
        22:2e:ff:ba:11:ea:34:d1:51:53:e8:35:01:87:96:81:
        09:de:cc:b6:31:3e:eb:fd:67:e5:7f:bb:87:7c:37:1b:
        2f:52:4f:5c:d0:c3:4e:f5:17:94:4c:87:29:d6:72:c6:
        82:97:f9:f9:b1:38:2b:80:95:32:d9:27:1c:83:55:61:
        f3:51:d6:80:32:66:42:d4:cc:3d:d0:78:fa:54:ae:17:
        4e:84:41:3f:e6:52:0e:bf:63:96:45:01:11:52:5a:50
    Fingerprint (SHA-256):
        D5:0E:0C:5F:77:31:AF:A6:02:18:5A:FB:1F:EE:DF:B6:2D:57:53:49:6E:AD:D6:CF:DD:26:7A:DA:76:0A:64:B8
    Fingerprint (SHA1):
        F1:5E:5A:E7:93:7E:25:85:F6:0F:D9:E3:5B:B4:83:07:2C:78:B8:DA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6856: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115849 (0x1e67c009)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:58:28 2017
            Not After : Tue May 10 11:58:28 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:f0:cc:bc:76:3c:22:44:6b:aa:24:a0:92:ba:0b:80:
                    c3:1c:75:e8:4b:35:77:3e:86:e9:46:4a:14:cf:be:5c:
                    05:f8:78:94:19:77:c1:c1:d5:ab:ad:a3:88:be:07:aa:
                    34:bd:f5:01:a3:fa:54:53:ea:ed:bc:33:0a:be:d7:34:
                    12:7b:f5:78:9f:c6:d4:5d:ca:da:cf:94:c1:84:69:9c:
                    90:73:5c:38:66:eb:cc:45:43:1c:64:f3:81:71:76:b7:
                    ef:bc:a0:20:b4:e9:da:9d:06:ba:83:d9:21:45:b6:57:
                    23:a4:7d:b7:91:82:23:0a:8f:d1:74:4d:b2:0b:55:a3:
                    de:26:40:c6:2c:da:01:9a:d0:dc:39:11:c2:41:12:d7:
                    ae:37:1f:9d:96:8f:0e:52:c3:8e:06:30:df:1c:16:68:
                    5b:37:85:9d:88:24:53:a5:2f:f4:3e:16:57:c2:1f:38:
                    c0:bc:cf:47:88:21:26:9f:21:dc:e0:e2:2d:22:3f:cb:
                    b6:a9:d5:2e:7c:27:95:03:48:91:7a:cc:b8:0c:78:6f:
                    57:21:ff:5d:d6:f2:ab:09:f3:57:1c:ba:3c:39:71:53:
                    0d:b5:e8:e9:47:73:8b:fc:5b:35:a4:53:0a:ec:fb:09:
                    94:c6:ac:cf:96:30:6f:d5:36:1c:1a:2d:15:48:40:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:3c:f9:a9:22:77:1a:50:1f:3d:69:a5:de:b4:17:c4:
        52:b4:3d:92:85:00:77:85:08:af:15:a2:5c:f7:5f:0b:
        6f:eb:b0:08:0a:72:6d:1e:78:12:17:b8:2c:aa:0e:b7:
        d4:c9:be:6e:30:fd:a7:d1:43:e5:52:e5:85:d6:27:3e:
        ca:aa:3b:e7:fa:60:2c:75:d8:ab:fb:58:5c:63:b6:10:
        01:52:11:35:38:25:1f:98:20:db:9b:85:35:27:6e:91:
        a8:9c:c7:59:df:96:84:ad:c4:53:84:48:44:fb:aa:a4:
        c8:fd:48:7c:9f:af:d2:ca:41:7c:bb:a2:33:be:d3:63:
        ac:d4:7d:39:ea:3d:bb:f6:a1:e6:12:52:44:cc:b9:a0:
        7a:2e:a2:1f:03:16:7e:3e:d7:ad:ca:8f:c9:1c:5e:da:
        ec:e6:46:83:09:27:c4:d8:c0:20:21:e1:61:3a:2d:fc:
        91:56:b9:ea:6e:7b:8a:4b:4e:41:47:0a:45:ea:05:2c:
        df:95:09:ff:40:8a:21:e5:9d:3a:a8:ac:f4:b4:a5:1d:
        7f:0e:55:cc:9f:5b:29:ba:53:22:c1:6c:8a:1a:1e:52:
        04:e2:17:a8:5a:b4:f0:ad:62:8a:b9:75:3f:d8:20:12:
        c0:cd:d2:2f:b1:d9:14:ce:7f:c9:1d:cf:c6:12:0a:21
    Fingerprint (SHA-256):
        59:88:AD:FE:31:59:5D:30:D2:80:BC:81:64:33:9B:29:57:2A:DF:AF:51:5C:5D:98:D1:AF:9C:D8:E9:19:7E:26
    Fingerprint (SHA1):
        21:4D:BD:19:F6:FE:3A:CF:92:BC:15:F2:41:B3:3C:3C:BC:92:79:E2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6857: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #6858: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #6859: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #6860: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115847 (0x1e67c007)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:27 2017
            Not After : Tue May 10 11:58:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:39:b2:d4:f1:33:a1:fc:45:4f:27:fc:35:7e:e3:09:
                    00:e3:dd:e5:0e:db:d1:38:e4:c1:cf:d1:4b:21:8c:42:
                    74:d9:cf:77:85:2e:e9:63:75:49:3c:2a:ca:fc:f2:d6:
                    72:57:8a:0a:fc:59:13:b8:cb:08:f3:f6:ce:9d:cb:55:
                    41:ab:d6:b2:ee:85:8c:49:33:cd:ac:9c:f7:d5:5c:ef:
                    5b:79:ac:f0:5f:fd:29:6d:37:6c:c3:11:d6:3c:fb:1f:
                    d3:1c:40:bf:25:7f:93:80:4b:9f:86:ba:ec:8e:8a:17:
                    b1:0f:8c:52:f3:e4:fa:d8:d3:33:7c:68:3e:02:05:4a:
                    74:d3:73:aa:d7:b2:91:30:91:93:b8:2f:a5:22:a8:b4:
                    95:6a:dd:8b:92:38:99:fd:3b:b4:6f:d1:5f:3a:61:cd:
                    26:75:67:65:46:90:64:cd:c2:e9:df:a2:08:b3:a7:ff:
                    51:ce:4e:30:e5:7d:97:e0:1a:82:07:c7:be:d3:be:d3:
                    3a:03:f5:89:6a:4d:8c:51:08:d3:c4:17:06:b1:e7:26:
                    6b:53:33:45:19:f3:13:e3:ed:aa:52:b5:3d:b4:d0:6b:
                    e9:17:b3:79:4d:f9:56:67:eb:72:fe:a8:54:30:2e:4b:
                    08:43:ad:4a:08:8c:3c:06:ca:c7:49:ee:ae:37:04:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:e4:d2:73:75:64:bb:e9:55:72:47:d5:51:43:59:69:
        66:43:3f:13:72:23:a0:dc:0b:01:68:a5:0c:1a:5b:91:
        09:cd:51:6c:76:4b:b9:3e:af:fd:75:fd:9a:56:0e:4e:
        90:81:e0:13:ed:51:45:24:7e:75:9c:fb:26:3c:81:77:
        3a:f4:57:6f:33:ae:b8:a8:d6:c7:f4:bb:7c:fe:d5:aa:
        04:e3:d2:c6:f6:57:18:ff:75:7e:56:0a:dc:89:c1:c3:
        7f:de:8f:c9:f1:a3:ec:24:87:d5:01:cf:8a:f3:fe:74:
        f9:c8:e9:f5:3e:18:27:d6:77:57:d3:a0:d2:49:cd:95:
        c9:8f:58:31:61:8d:53:5e:07:84:bb:3b:64:9d:88:8f:
        c3:f9:5a:8a:8f:a2:47:1d:58:4b:bd:10:a0:6f:27:64:
        22:2e:ff:ba:11:ea:34:d1:51:53:e8:35:01:87:96:81:
        09:de:cc:b6:31:3e:eb:fd:67:e5:7f:bb:87:7c:37:1b:
        2f:52:4f:5c:d0:c3:4e:f5:17:94:4c:87:29:d6:72:c6:
        82:97:f9:f9:b1:38:2b:80:95:32:d9:27:1c:83:55:61:
        f3:51:d6:80:32:66:42:d4:cc:3d:d0:78:fa:54:ae:17:
        4e:84:41:3f:e6:52:0e:bf:63:96:45:01:11:52:5a:50
    Fingerprint (SHA-256):
        D5:0E:0C:5F:77:31:AF:A6:02:18:5A:FB:1F:EE:DF:B6:2D:57:53:49:6E:AD:D6:CF:DD:26:7A:DA:76:0A:64:B8
    Fingerprint (SHA1):
        F1:5E:5A:E7:93:7E:25:85:F6:0F:D9:E3:5B:B4:83:07:2C:78:B8:DA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6861: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115851 (0x1e67c00b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 11:58:28 2017
            Not After : Tue May 10 11:58:28 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:b1:e5:83:ab:f9:f1:2e:40:78:4b:40:61:14:22:f9:
                    6d:c0:79:1c:4c:6a:2d:a6:26:dd:a2:52:d6:67:16:55:
                    4f:2b:2a:6f:33:6e:37:a7:0e:83:c4:89:74:60:e1:9c:
                    51:9c:42:7d:a6:3c:d2:44:89:05:66:bc:c0:61:8e:34:
                    c7:59:76:14:e5:72:c5:e2:e1:44:d9:08:8a:ad:51:a2:
                    09:33:c0:34:14:e4:59:5d:b2:1e:ce:56:07:8f:2f:8a:
                    ad:25:cc:5b:9b:42:69:60:a9:cb:02:fc:85:eb:75:d8:
                    07:fc:d7:fc:45:cb:74:d5:f9:d7:1a:13:ba:23:34:29:
                    ab:93:df:94:5d:17:85:1f:62:5c:d9:8e:28:a0:2a:00:
                    5b:bb:c4:51:ac:6b:10:9b:9d:c4:02:b7:08:84:6e:72:
                    28:3b:24:73:c5:c1:56:9e:11:18:fb:e8:80:e5:8a:cc:
                    62:3d:ee:7b:87:32:41:21:9c:8a:30:ad:7d:05:2c:b8:
                    c6:1e:6f:fc:eb:9f:5b:f0:4c:2f:0c:6f:25:41:22:dd:
                    95:0c:d5:b8:f3:29:f5:26:70:8b:42:3d:1d:76:08:35:
                    d6:2b:2e:96:f2:7d:3c:c2:cc:11:2b:7d:56:42:a2:17:
                    42:4c:8a:a2:4d:21:6b:66:51:17:50:6b:81:ba:72:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:78:43:60:ef:e1:c0:33:79:dd:28:22:03:22:e2:36:
        a2:cd:d3:12:36:d8:b2:67:47:b4:c0:2d:b6:14:c1:1b:
        0f:26:e2:41:42:db:f5:51:2b:22:89:26:e6:35:66:6d:
        28:77:0c:c2:ba:e5:77:cb:a0:ee:70:a8:c8:b8:4e:4d:
        e5:67:a6:4a:df:a3:59:72:f3:18:53:eb:2e:e7:c3:d6:
        db:13:12:45:d2:c7:fd:38:fb:67:fa:68:67:77:fc:47:
        60:cc:29:d6:f5:0e:b8:08:c2:f5:26:61:23:2c:47:c2:
        fb:13:86:1d:17:f6:44:93:da:99:4a:de:2a:62:ae:13:
        72:36:37:d2:f7:d9:fa:20:62:30:21:c6:1f:08:22:5b:
        8a:ad:b8:9e:e6:cc:da:45:8b:da:86:e8:83:b0:dd:60:
        55:5f:68:e2:5f:70:47:a5:5a:e5:66:3a:4d:c1:83:8e:
        06:c1:c4:01:02:b7:8b:87:7b:1b:54:15:7c:21:d7:f1:
        e1:a1:b9:b7:a6:ab:44:70:af:4a:12:eb:f5:3e:45:6c:
        15:d4:98:b8:8d:2e:c8:f4:5e:6a:e0:62:e5:0d:83:a4:
        ee:c7:b7:4b:76:f6:70:2c:f9:fb:2a:1b:61:f1:9a:53:
        86:e9:16:75:6c:61:29:de:bb:c4:67:a4:36:39:7c:1f
    Fingerprint (SHA-256):
        85:A0:94:13:02:B5:A5:D1:E8:72:4A:8E:B9:30:22:51:E0:B2:B6:10:6A:C1:02:EF:75:81:12:63:90:BA:1A:2F
    Fingerprint (SHA1):
        75:F0:B7:0F:12:EE:F9:25:1C:D4:9C:B9:5D:01:DA:A1:42:24:37:05
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #6862: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115847 (0x1e67c007)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:27 2017
            Not After : Tue May 10 11:58:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:39:b2:d4:f1:33:a1:fc:45:4f:27:fc:35:7e:e3:09:
                    00:e3:dd:e5:0e:db:d1:38:e4:c1:cf:d1:4b:21:8c:42:
                    74:d9:cf:77:85:2e:e9:63:75:49:3c:2a:ca:fc:f2:d6:
                    72:57:8a:0a:fc:59:13:b8:cb:08:f3:f6:ce:9d:cb:55:
                    41:ab:d6:b2:ee:85:8c:49:33:cd:ac:9c:f7:d5:5c:ef:
                    5b:79:ac:f0:5f:fd:29:6d:37:6c:c3:11:d6:3c:fb:1f:
                    d3:1c:40:bf:25:7f:93:80:4b:9f:86:ba:ec:8e:8a:17:
                    b1:0f:8c:52:f3:e4:fa:d8:d3:33:7c:68:3e:02:05:4a:
                    74:d3:73:aa:d7:b2:91:30:91:93:b8:2f:a5:22:a8:b4:
                    95:6a:dd:8b:92:38:99:fd:3b:b4:6f:d1:5f:3a:61:cd:
                    26:75:67:65:46:90:64:cd:c2:e9:df:a2:08:b3:a7:ff:
                    51:ce:4e:30:e5:7d:97:e0:1a:82:07:c7:be:d3:be:d3:
                    3a:03:f5:89:6a:4d:8c:51:08:d3:c4:17:06:b1:e7:26:
                    6b:53:33:45:19:f3:13:e3:ed:aa:52:b5:3d:b4:d0:6b:
                    e9:17:b3:79:4d:f9:56:67:eb:72:fe:a8:54:30:2e:4b:
                    08:43:ad:4a:08:8c:3c:06:ca:c7:49:ee:ae:37:04:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:e4:d2:73:75:64:bb:e9:55:72:47:d5:51:43:59:69:
        66:43:3f:13:72:23:a0:dc:0b:01:68:a5:0c:1a:5b:91:
        09:cd:51:6c:76:4b:b9:3e:af:fd:75:fd:9a:56:0e:4e:
        90:81:e0:13:ed:51:45:24:7e:75:9c:fb:26:3c:81:77:
        3a:f4:57:6f:33:ae:b8:a8:d6:c7:f4:bb:7c:fe:d5:aa:
        04:e3:d2:c6:f6:57:18:ff:75:7e:56:0a:dc:89:c1:c3:
        7f:de:8f:c9:f1:a3:ec:24:87:d5:01:cf:8a:f3:fe:74:
        f9:c8:e9:f5:3e:18:27:d6:77:57:d3:a0:d2:49:cd:95:
        c9:8f:58:31:61:8d:53:5e:07:84:bb:3b:64:9d:88:8f:
        c3:f9:5a:8a:8f:a2:47:1d:58:4b:bd:10:a0:6f:27:64:
        22:2e:ff:ba:11:ea:34:d1:51:53:e8:35:01:87:96:81:
        09:de:cc:b6:31:3e:eb:fd:67:e5:7f:bb:87:7c:37:1b:
        2f:52:4f:5c:d0:c3:4e:f5:17:94:4c:87:29:d6:72:c6:
        82:97:f9:f9:b1:38:2b:80:95:32:d9:27:1c:83:55:61:
        f3:51:d6:80:32:66:42:d4:cc:3d:d0:78:fa:54:ae:17:
        4e:84:41:3f:e6:52:0e:bf:63:96:45:01:11:52:5a:50
    Fingerprint (SHA-256):
        D5:0E:0C:5F:77:31:AF:A6:02:18:5A:FB:1F:EE:DF:B6:2D:57:53:49:6E:AD:D6:CF:DD:26:7A:DA:76:0A:64:B8
    Fingerprint (SHA1):
        F1:5E:5A:E7:93:7E:25:85:F6:0F:D9:E3:5B:B4:83:07:2C:78:B8:DA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6863: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #6864: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #6865: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #6866: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #6867: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #6868: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115852 (0x1e67c00c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 11:58:29 2017
            Not After : Tue May 10 11:58:29 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:40:66:fe:63:f2:8e:1c:00:83:db:a4:48:15:3d:76:
                    ae:46:cc:b6:db:f3:d8:e0:d8:f5:fe:40:b2:f8:89:81:
                    b9:22:11:93:09:3a:f0:28:04:45:9c:23:bb:ae:86:4e:
                    24:6f:6e:4e:5c:69:97:dc:f3:3f:c8:c3:50:c0:dc:56:
                    95:4d:38:2e:01:5a:cb:f5:ba:24:d7:c9:ba:eb:a0:a1:
                    54:5c:54:9d:1c:d7:95:d3:12:ce:ad:4c:f6:9b:f2:8f:
                    ec:b7:9d:5e:c4:7c:c8:6d:95:e4:05:c3:c4:ed:8e:9c:
                    19:db:92:c9:cb:a5:88:a4:8a:33:e9:21:52:0a:27:08:
                    7f:23:2a:7e:6a:37:61:0b:a5:0d:6b:a0:ee:bd:ab:50:
                    6b:91:1b:e0:8e:ac:05:1b:fe:d9:bb:28:d1:31:6a:97:
                    9d:a0:e5:b1:ef:62:68:db:f1:7f:dd:f4:b3:bc:52:67:
                    7c:51:88:ee:4a:35:54:f0:1e:52:83:68:12:ed:f4:56:
                    5e:fb:87:56:80:de:a8:e9:04:e0:7a:ba:6c:d8:b2:1f:
                    44:e1:2e:a1:4c:1a:f2:bf:33:69:3b:93:3c:5c:77:d2:
                    05:c3:71:b8:9a:79:29:b9:78:fd:fd:1c:06:3d:75:f5:
                    a4:8a:2c:cb:ca:57:c9:a0:f8:0f:14:df:60:cd:05:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:ed:ed:f5:27:e6:4a:7d:e1:76:9c:4f:fb:20:bf:af:
        d9:3b:78:29:94:f1:79:b3:00:e9:51:d1:66:25:4c:2b:
        19:20:66:30:92:de:9d:aa:f3:a5:83:70:2c:ea:be:87:
        f2:e5:0b:7b:ef:66:a3:b1:c2:12:6d:b8:c0:d1:94:73:
        a5:b9:d0:fc:43:bf:3e:3f:35:74:e0:33:2e:75:8f:e1:
        f4:8d:a0:e6:f8:5c:a4:81:e8:9c:30:a2:e6:ab:d0:b1:
        81:72:15:92:db:6e:df:08:e1:21:f5:4d:2b:38:0c:3f:
        7a:e2:b9:25:a2:68:8b:a4:0e:f3:b1:73:f6:b2:33:31:
        30:9c:fc:67:0a:05:96:65:c9:33:1b:81:37:15:d7:df:
        da:56:ae:70:1e:a0:41:4d:72:fb:6e:74:d3:01:2a:7a:
        56:fe:32:12:a9:31:b1:7d:e6:85:c0:1c:cf:30:2c:4e:
        68:c3:38:ca:ba:b5:98:bc:ca:53:13:02:63:25:59:ac:
        c2:5d:86:7b:8c:d5:13:07:cc:e9:80:3a:31:62:2f:bd:
        b9:50:41:b8:bf:15:a7:06:ed:02:64:e8:09:0c:36:95:
        83:66:11:34:4c:90:75:b4:1e:05:59:3e:34:91:12:fd:
        fd:4f:42:44:d4:cb:d0:b3:52:a0:bf:ad:10:78:f6:e8
    Fingerprint (SHA-256):
        ED:68:82:E4:76:5A:91:A8:D1:34:37:84:BC:33:26:E6:2F:A1:45:8B:E2:80:B6:84:B2:C1:2C:B1:46:46:ED:BB
    Fingerprint (SHA1):
        06:6C:AD:97:91:A0:2A:78:CF:74:9D:76:0F:17:C5:25:F0:DB:77:3A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6869: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #6870: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #6871: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #6872: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #6873: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6874: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6875: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6876: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6877: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6878: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6879: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6880: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6881: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6882: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6883: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6884: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6885: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6886: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6887: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #6888: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6889: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6890: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6891: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6892: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 10571 at Wed May 10 11:58:31 UTC 2017
kill -USR1 10571
httpserv: normal termination
httpserv -b -p 9333 2>/dev/null;
httpserv with PID 10571 killed at Wed May 10 11:58:31 UTC 2017
httpserv starting at Wed May 10 11:58:31 UTC 2017
httpserv -D -p 9333  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/aiahttp/http_pid.24947  &
trying to connect to httpserv at Wed May 10 11:58:31 UTC 2017
tstclnt -p 9333 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9333 (address=::1)
tstclnt: exiting with return code 0
kill -0 25981 >/dev/null 2>/dev/null
httpserv with PID 25981 found at Wed May 10 11:58:31 UTC 2017
httpserv with PID 25981 started at Wed May 10 11:58:31 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6893: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115854 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6894: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6895: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6896: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115855 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6897: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6898: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6899: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6900: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510115856 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6901: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6902: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510115857 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6903: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6904: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6905: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6906: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6907: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 510115858   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6908: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6909: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6910: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #6911: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #6912: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115855 (0x1e67c00f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:58:32 2017
            Not After : Tue May 10 11:58:32 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:5f:b3:16:76:f7:6d:1d:0b:54:32:0f:f1:91:01:1e:
                    bb:b3:db:b8:79:97:8a:7e:be:37:8a:f0:f2:3c:a9:67:
                    d5:01:58:da:3c:64:ad:c2:cf:cd:1f:15:0e:c0:1c:89:
                    c5:db:f6:68:b5:6d:da:b1:99:43:20:50:5e:32:63:2c:
                    9f:d5:dc:c3:d1:86:74:7f:66:b6:fb:4d:07:aa:0d:6e:
                    5f:55:d1:26:20:47:c1:b7:62:94:c4:bd:5d:ef:de:86:
                    69:fd:fe:ab:fc:4f:a3:41:45:90:37:10:36:55:20:9b:
                    9c:33:02:87:95:ee:9c:18:8e:c2:32:68:97:55:03:ed:
                    68:27:6a:fb:bb:fe:96:1b:dc:1a:42:c6:48:7c:43:09:
                    0b:28:02:90:a8:7d:49:c9:b8:26:1b:08:32:22:7e:43:
                    8e:bb:89:e3:38:3e:04:d5:a8:4a:22:ea:18:4b:29:b5:
                    75:23:ae:d4:4f:ee:66:99:ba:00:12:b2:74:34:8b:25:
                    ee:3d:2f:71:1f:20:bc:ef:8a:07:f4:41:2b:67:cf:dd:
                    f6:0e:19:a3:79:b8:99:c5:36:bc:94:ba:c6:67:67:47:
                    e6:eb:22:4e:7a:ec:cb:0a:9e:85:ff:84:cc:03:20:63:
                    f6:da:d9:56:bf:f8:cc:55:e4:b8:61:a2:3f:16:7d:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:35:fd:1d:09:99:81:2d:1b:82:4c:ab:f2:ea:78:0a:
        ed:f5:c3:80:91:40:c7:6e:cd:ee:92:c4:5a:1b:23:c3:
        55:5a:cb:f6:14:ec:87:8f:5a:2a:5c:c2:c4:28:82:be:
        d1:24:4a:14:b2:37:23:0b:7b:96:ac:43:01:47:a7:2a:
        ac:81:21:52:64:3b:ea:5d:85:4b:7a:03:7e:31:a5:b2:
        2e:24:42:70:88:ef:15:63:31:fc:45:70:49:f2:49:7d:
        f4:7f:dc:a3:eb:37:e8:18:5d:34:3a:0a:ff:8b:34:ae:
        71:34:b7:9f:ad:50:6b:97:38:6a:0b:7c:db:4c:60:18:
        54:88:5d:36:a5:95:2c:85:9b:0a:69:de:1b:6a:b5:e9:
        a7:68:ae:35:7d:73:a6:5b:23:5d:5e:03:ab:06:68:a5:
        8c:38:7c:f8:c0:2a:cf:2f:44:83:98:13:14:d8:7d:28:
        b2:57:ea:7b:5f:10:bd:64:bd:b6:b3:4d:f2:79:18:a7:
        70:70:d2:1a:3e:35:48:e7:7a:81:ee:92:7a:d3:42:c8:
        83:c2:ab:5c:76:6a:4f:b3:c0:da:9e:85:91:0a:0d:f2:
        e0:7f:13:c8:4a:4c:c0:ec:b8:53:c9:f1:dc:b6:db:b1:
        c8:51:cc:49:80:31:db:b2:a0:4f:15:d6:38:5d:cc:23
    Fingerprint (SHA-256):
        F5:D4:40:F2:A8:D2:BF:54:DD:50:D4:88:73:B5:6C:89:53:AA:C8:5F:2F:0D:9C:0E:A5:D0:16:2E:40:45:C2:13
    Fingerprint (SHA1):
        A8:59:F2:2D:7F:18:A0:CD:41:54:65:B4:F8:E6:14:C9:FC:EC:D0:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6913: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115854 (0x1e67c00e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:58:31 2017
            Not After : Tue May 10 11:58:31 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:10:3b:86:39:a9:9e:c8:96:82:b7:1e:71:26:bf:38:
                    2b:97:d4:ab:f7:11:c5:33:a6:fb:33:9d:4f:38:1c:a4:
                    0d:40:46:fb:6f:3a:06:98:f1:01:8b:83:a2:55:9b:29:
                    19:11:ac:4d:4d:68:61:6b:11:df:88:2f:4b:c1:70:59:
                    93:c6:05:f0:ef:9c:63:9d:b5:e3:3d:98:83:01:be:80:
                    e5:c0:36:ae:61:16:fe:b1:cc:7b:84:1f:7e:d0:af:a9:
                    c6:1e:4f:58:2c:a8:89:1d:00:89:5c:da:e9:50:da:28:
                    f1:cf:25:b4:03:be:0b:b3:ed:de:fd:da:42:02:f1:48:
                    38:b0:73:6b:21:90:80:a3:84:7c:80:e4:06:a2:37:41:
                    7d:93:1e:9f:e1:b5:39:67:71:0a:71:2c:eb:a9:62:5a:
                    c4:e6:0c:b7:f9:30:e8:6f:02:ef:c0:94:5a:4a:b8:70:
                    c3:10:8c:f0:aa:ee:55:56:09:7e:fd:22:6e:b8:0d:18:
                    04:9b:f0:b6:e7:9e:57:18:6e:19:30:f0:76:ea:bf:a3:
                    d9:3b:5f:39:3e:f8:1b:95:70:fb:f4:4a:84:e6:d7:1a:
                    87:06:e1:d6:a0:e8:15:49:08:79:75:b6:bf:02:d1:71:
                    fe:d8:11:12:0f:ec:2a:58:31:17:d4:a8:ad:b1:e8:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:1a:8e:6c:31:c7:78:60:15:9a:01:de:1b:e9:0a:1d:
        7c:50:8d:d5:ca:22:1e:85:de:f1:15:47:ab:b8:24:3b:
        a7:90:67:8d:21:03:ba:7c:0e:4c:62:4b:78:e8:07:38:
        df:5c:5d:a7:41:c4:48:76:88:ee:d2:fa:6f:f5:b8:cc:
        19:06:4d:ee:64:3e:8b:8d:ca:28:2f:17:d7:24:42:b0:
        1b:15:3f:07:b4:c3:49:78:72:75:05:ac:c8:6f:45:a9:
        5b:36:ed:51:eb:a1:c7:93:78:49:5f:c0:13:16:50:eb:
        93:cc:b3:80:39:d4:50:13:45:71:8b:6d:fd:d2:a0:30:
        ec:cd:fb:d4:ba:49:5f:18:94:ce:96:39:d0:ee:e0:b4:
        1b:af:8e:2c:28:40:65:55:26:3c:aa:ed:82:18:ad:b7:
        23:b4:aa:0b:ea:54:62:3b:9d:ab:d6:ab:79:3a:8b:c1:
        87:9a:8a:67:29:a4:9b:a9:ad:e4:52:08:c5:69:b9:96:
        2c:ab:a8:04:6b:bc:08:a8:b3:5f:02:27:e2:05:0c:15:
        82:d7:30:8a:d0:b9:81:6b:e2:e6:39:25:36:96:31:d8:
        05:92:52:12:31:5c:93:4a:43:8e:1a:54:6b:18:28:ef:
        37:7b:4d:2c:3f:ea:bc:2f:59:7b:c4:c3:30:91:d2:2f
    Fingerprint (SHA-256):
        69:82:00:8F:1F:3E:BB:A3:EB:B7:5C:39:62:FA:C9:14:D9:5D:8E:7A:21:24:2A:2E:80:06:D6:EC:2F:44:CF:DD
    Fingerprint (SHA1):
        98:52:56:1A:7A:16:A9:89:98:57:F4:1B:AA:A4:3D:6D:B8:77:3D:4E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6914: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6915: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #6916: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #6917: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115854 (0x1e67c00e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:58:31 2017
            Not After : Tue May 10 11:58:31 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:10:3b:86:39:a9:9e:c8:96:82:b7:1e:71:26:bf:38:
                    2b:97:d4:ab:f7:11:c5:33:a6:fb:33:9d:4f:38:1c:a4:
                    0d:40:46:fb:6f:3a:06:98:f1:01:8b:83:a2:55:9b:29:
                    19:11:ac:4d:4d:68:61:6b:11:df:88:2f:4b:c1:70:59:
                    93:c6:05:f0:ef:9c:63:9d:b5:e3:3d:98:83:01:be:80:
                    e5:c0:36:ae:61:16:fe:b1:cc:7b:84:1f:7e:d0:af:a9:
                    c6:1e:4f:58:2c:a8:89:1d:00:89:5c:da:e9:50:da:28:
                    f1:cf:25:b4:03:be:0b:b3:ed:de:fd:da:42:02:f1:48:
                    38:b0:73:6b:21:90:80:a3:84:7c:80:e4:06:a2:37:41:
                    7d:93:1e:9f:e1:b5:39:67:71:0a:71:2c:eb:a9:62:5a:
                    c4:e6:0c:b7:f9:30:e8:6f:02:ef:c0:94:5a:4a:b8:70:
                    c3:10:8c:f0:aa:ee:55:56:09:7e:fd:22:6e:b8:0d:18:
                    04:9b:f0:b6:e7:9e:57:18:6e:19:30:f0:76:ea:bf:a3:
                    d9:3b:5f:39:3e:f8:1b:95:70:fb:f4:4a:84:e6:d7:1a:
                    87:06:e1:d6:a0:e8:15:49:08:79:75:b6:bf:02:d1:71:
                    fe:d8:11:12:0f:ec:2a:58:31:17:d4:a8:ad:b1:e8:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:1a:8e:6c:31:c7:78:60:15:9a:01:de:1b:e9:0a:1d:
        7c:50:8d:d5:ca:22:1e:85:de:f1:15:47:ab:b8:24:3b:
        a7:90:67:8d:21:03:ba:7c:0e:4c:62:4b:78:e8:07:38:
        df:5c:5d:a7:41:c4:48:76:88:ee:d2:fa:6f:f5:b8:cc:
        19:06:4d:ee:64:3e:8b:8d:ca:28:2f:17:d7:24:42:b0:
        1b:15:3f:07:b4:c3:49:78:72:75:05:ac:c8:6f:45:a9:
        5b:36:ed:51:eb:a1:c7:93:78:49:5f:c0:13:16:50:eb:
        93:cc:b3:80:39:d4:50:13:45:71:8b:6d:fd:d2:a0:30:
        ec:cd:fb:d4:ba:49:5f:18:94:ce:96:39:d0:ee:e0:b4:
        1b:af:8e:2c:28:40:65:55:26:3c:aa:ed:82:18:ad:b7:
        23:b4:aa:0b:ea:54:62:3b:9d:ab:d6:ab:79:3a:8b:c1:
        87:9a:8a:67:29:a4:9b:a9:ad:e4:52:08:c5:69:b9:96:
        2c:ab:a8:04:6b:bc:08:a8:b3:5f:02:27:e2:05:0c:15:
        82:d7:30:8a:d0:b9:81:6b:e2:e6:39:25:36:96:31:d8:
        05:92:52:12:31:5c:93:4a:43:8e:1a:54:6b:18:28:ef:
        37:7b:4d:2c:3f:ea:bc:2f:59:7b:c4:c3:30:91:d2:2f
    Fingerprint (SHA-256):
        69:82:00:8F:1F:3E:BB:A3:EB:B7:5C:39:62:FA:C9:14:D9:5D:8E:7A:21:24:2A:2E:80:06:D6:EC:2F:44:CF:DD
    Fingerprint (SHA1):
        98:52:56:1A:7A:16:A9:89:98:57:F4:1B:AA:A4:3D:6D:B8:77:3D:4E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6918: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115855 (0x1e67c00f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:58:32 2017
            Not After : Tue May 10 11:58:32 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:5f:b3:16:76:f7:6d:1d:0b:54:32:0f:f1:91:01:1e:
                    bb:b3:db:b8:79:97:8a:7e:be:37:8a:f0:f2:3c:a9:67:
                    d5:01:58:da:3c:64:ad:c2:cf:cd:1f:15:0e:c0:1c:89:
                    c5:db:f6:68:b5:6d:da:b1:99:43:20:50:5e:32:63:2c:
                    9f:d5:dc:c3:d1:86:74:7f:66:b6:fb:4d:07:aa:0d:6e:
                    5f:55:d1:26:20:47:c1:b7:62:94:c4:bd:5d:ef:de:86:
                    69:fd:fe:ab:fc:4f:a3:41:45:90:37:10:36:55:20:9b:
                    9c:33:02:87:95:ee:9c:18:8e:c2:32:68:97:55:03:ed:
                    68:27:6a:fb:bb:fe:96:1b:dc:1a:42:c6:48:7c:43:09:
                    0b:28:02:90:a8:7d:49:c9:b8:26:1b:08:32:22:7e:43:
                    8e:bb:89:e3:38:3e:04:d5:a8:4a:22:ea:18:4b:29:b5:
                    75:23:ae:d4:4f:ee:66:99:ba:00:12:b2:74:34:8b:25:
                    ee:3d:2f:71:1f:20:bc:ef:8a:07:f4:41:2b:67:cf:dd:
                    f6:0e:19:a3:79:b8:99:c5:36:bc:94:ba:c6:67:67:47:
                    e6:eb:22:4e:7a:ec:cb:0a:9e:85:ff:84:cc:03:20:63:
                    f6:da:d9:56:bf:f8:cc:55:e4:b8:61:a2:3f:16:7d:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:35:fd:1d:09:99:81:2d:1b:82:4c:ab:f2:ea:78:0a:
        ed:f5:c3:80:91:40:c7:6e:cd:ee:92:c4:5a:1b:23:c3:
        55:5a:cb:f6:14:ec:87:8f:5a:2a:5c:c2:c4:28:82:be:
        d1:24:4a:14:b2:37:23:0b:7b:96:ac:43:01:47:a7:2a:
        ac:81:21:52:64:3b:ea:5d:85:4b:7a:03:7e:31:a5:b2:
        2e:24:42:70:88:ef:15:63:31:fc:45:70:49:f2:49:7d:
        f4:7f:dc:a3:eb:37:e8:18:5d:34:3a:0a:ff:8b:34:ae:
        71:34:b7:9f:ad:50:6b:97:38:6a:0b:7c:db:4c:60:18:
        54:88:5d:36:a5:95:2c:85:9b:0a:69:de:1b:6a:b5:e9:
        a7:68:ae:35:7d:73:a6:5b:23:5d:5e:03:ab:06:68:a5:
        8c:38:7c:f8:c0:2a:cf:2f:44:83:98:13:14:d8:7d:28:
        b2:57:ea:7b:5f:10:bd:64:bd:b6:b3:4d:f2:79:18:a7:
        70:70:d2:1a:3e:35:48:e7:7a:81:ee:92:7a:d3:42:c8:
        83:c2:ab:5c:76:6a:4f:b3:c0:da:9e:85:91:0a:0d:f2:
        e0:7f:13:c8:4a:4c:c0:ec:b8:53:c9:f1:dc:b6:db:b1:
        c8:51:cc:49:80:31:db:b2:a0:4f:15:d6:38:5d:cc:23
    Fingerprint (SHA-256):
        F5:D4:40:F2:A8:D2:BF:54:DD:50:D4:88:73:B5:6C:89:53:AA:C8:5F:2F:0D:9C:0E:A5:D0:16:2E:40:45:C2:13
    Fingerprint (SHA1):
        A8:59:F2:2D:7F:18:A0:CD:41:54:65:B4:F8:E6:14:C9:FC:EC:D0:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6919: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #6920: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #6921: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6922: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6923: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6924: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115855 (0x1e67c00f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:58:32 2017
            Not After : Tue May 10 11:58:32 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:5f:b3:16:76:f7:6d:1d:0b:54:32:0f:f1:91:01:1e:
                    bb:b3:db:b8:79:97:8a:7e:be:37:8a:f0:f2:3c:a9:67:
                    d5:01:58:da:3c:64:ad:c2:cf:cd:1f:15:0e:c0:1c:89:
                    c5:db:f6:68:b5:6d:da:b1:99:43:20:50:5e:32:63:2c:
                    9f:d5:dc:c3:d1:86:74:7f:66:b6:fb:4d:07:aa:0d:6e:
                    5f:55:d1:26:20:47:c1:b7:62:94:c4:bd:5d:ef:de:86:
                    69:fd:fe:ab:fc:4f:a3:41:45:90:37:10:36:55:20:9b:
                    9c:33:02:87:95:ee:9c:18:8e:c2:32:68:97:55:03:ed:
                    68:27:6a:fb:bb:fe:96:1b:dc:1a:42:c6:48:7c:43:09:
                    0b:28:02:90:a8:7d:49:c9:b8:26:1b:08:32:22:7e:43:
                    8e:bb:89:e3:38:3e:04:d5:a8:4a:22:ea:18:4b:29:b5:
                    75:23:ae:d4:4f:ee:66:99:ba:00:12:b2:74:34:8b:25:
                    ee:3d:2f:71:1f:20:bc:ef:8a:07:f4:41:2b:67:cf:dd:
                    f6:0e:19:a3:79:b8:99:c5:36:bc:94:ba:c6:67:67:47:
                    e6:eb:22:4e:7a:ec:cb:0a:9e:85:ff:84:cc:03:20:63:
                    f6:da:d9:56:bf:f8:cc:55:e4:b8:61:a2:3f:16:7d:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:35:fd:1d:09:99:81:2d:1b:82:4c:ab:f2:ea:78:0a:
        ed:f5:c3:80:91:40:c7:6e:cd:ee:92:c4:5a:1b:23:c3:
        55:5a:cb:f6:14:ec:87:8f:5a:2a:5c:c2:c4:28:82:be:
        d1:24:4a:14:b2:37:23:0b:7b:96:ac:43:01:47:a7:2a:
        ac:81:21:52:64:3b:ea:5d:85:4b:7a:03:7e:31:a5:b2:
        2e:24:42:70:88:ef:15:63:31:fc:45:70:49:f2:49:7d:
        f4:7f:dc:a3:eb:37:e8:18:5d:34:3a:0a:ff:8b:34:ae:
        71:34:b7:9f:ad:50:6b:97:38:6a:0b:7c:db:4c:60:18:
        54:88:5d:36:a5:95:2c:85:9b:0a:69:de:1b:6a:b5:e9:
        a7:68:ae:35:7d:73:a6:5b:23:5d:5e:03:ab:06:68:a5:
        8c:38:7c:f8:c0:2a:cf:2f:44:83:98:13:14:d8:7d:28:
        b2:57:ea:7b:5f:10:bd:64:bd:b6:b3:4d:f2:79:18:a7:
        70:70:d2:1a:3e:35:48:e7:7a:81:ee:92:7a:d3:42:c8:
        83:c2:ab:5c:76:6a:4f:b3:c0:da:9e:85:91:0a:0d:f2:
        e0:7f:13:c8:4a:4c:c0:ec:b8:53:c9:f1:dc:b6:db:b1:
        c8:51:cc:49:80:31:db:b2:a0:4f:15:d6:38:5d:cc:23
    Fingerprint (SHA-256):
        F5:D4:40:F2:A8:D2:BF:54:DD:50:D4:88:73:B5:6C:89:53:AA:C8:5F:2F:0D:9C:0E:A5:D0:16:2E:40:45:C2:13
    Fingerprint (SHA1):
        A8:59:F2:2D:7F:18:A0:CD:41:54:65:B4:F8:E6:14:C9:FC:EC:D0:25
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6925: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115855 (0x1e67c00f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:58:32 2017
            Not After : Tue May 10 11:58:32 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:5f:b3:16:76:f7:6d:1d:0b:54:32:0f:f1:91:01:1e:
                    bb:b3:db:b8:79:97:8a:7e:be:37:8a:f0:f2:3c:a9:67:
                    d5:01:58:da:3c:64:ad:c2:cf:cd:1f:15:0e:c0:1c:89:
                    c5:db:f6:68:b5:6d:da:b1:99:43:20:50:5e:32:63:2c:
                    9f:d5:dc:c3:d1:86:74:7f:66:b6:fb:4d:07:aa:0d:6e:
                    5f:55:d1:26:20:47:c1:b7:62:94:c4:bd:5d:ef:de:86:
                    69:fd:fe:ab:fc:4f:a3:41:45:90:37:10:36:55:20:9b:
                    9c:33:02:87:95:ee:9c:18:8e:c2:32:68:97:55:03:ed:
                    68:27:6a:fb:bb:fe:96:1b:dc:1a:42:c6:48:7c:43:09:
                    0b:28:02:90:a8:7d:49:c9:b8:26:1b:08:32:22:7e:43:
                    8e:bb:89:e3:38:3e:04:d5:a8:4a:22:ea:18:4b:29:b5:
                    75:23:ae:d4:4f:ee:66:99:ba:00:12:b2:74:34:8b:25:
                    ee:3d:2f:71:1f:20:bc:ef:8a:07:f4:41:2b:67:cf:dd:
                    f6:0e:19:a3:79:b8:99:c5:36:bc:94:ba:c6:67:67:47:
                    e6:eb:22:4e:7a:ec:cb:0a:9e:85:ff:84:cc:03:20:63:
                    f6:da:d9:56:bf:f8:cc:55:e4:b8:61:a2:3f:16:7d:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:35:fd:1d:09:99:81:2d:1b:82:4c:ab:f2:ea:78:0a:
        ed:f5:c3:80:91:40:c7:6e:cd:ee:92:c4:5a:1b:23:c3:
        55:5a:cb:f6:14:ec:87:8f:5a:2a:5c:c2:c4:28:82:be:
        d1:24:4a:14:b2:37:23:0b:7b:96:ac:43:01:47:a7:2a:
        ac:81:21:52:64:3b:ea:5d:85:4b:7a:03:7e:31:a5:b2:
        2e:24:42:70:88:ef:15:63:31:fc:45:70:49:f2:49:7d:
        f4:7f:dc:a3:eb:37:e8:18:5d:34:3a:0a:ff:8b:34:ae:
        71:34:b7:9f:ad:50:6b:97:38:6a:0b:7c:db:4c:60:18:
        54:88:5d:36:a5:95:2c:85:9b:0a:69:de:1b:6a:b5:e9:
        a7:68:ae:35:7d:73:a6:5b:23:5d:5e:03:ab:06:68:a5:
        8c:38:7c:f8:c0:2a:cf:2f:44:83:98:13:14:d8:7d:28:
        b2:57:ea:7b:5f:10:bd:64:bd:b6:b3:4d:f2:79:18:a7:
        70:70:d2:1a:3e:35:48:e7:7a:81:ee:92:7a:d3:42:c8:
        83:c2:ab:5c:76:6a:4f:b3:c0:da:9e:85:91:0a:0d:f2:
        e0:7f:13:c8:4a:4c:c0:ec:b8:53:c9:f1:dc:b6:db:b1:
        c8:51:cc:49:80:31:db:b2:a0:4f:15:d6:38:5d:cc:23
    Fingerprint (SHA-256):
        F5:D4:40:F2:A8:D2:BF:54:DD:50:D4:88:73:B5:6C:89:53:AA:C8:5F:2F:0D:9C:0E:A5:D0:16:2E:40:45:C2:13
    Fingerprint (SHA1):
        A8:59:F2:2D:7F:18:A0:CD:41:54:65:B4:F8:E6:14:C9:FC:EC:D0:25
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6926: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #6927: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #6928: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6929: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6930: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6931: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115854 (0x1e67c00e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:58:31 2017
            Not After : Tue May 10 11:58:31 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:10:3b:86:39:a9:9e:c8:96:82:b7:1e:71:26:bf:38:
                    2b:97:d4:ab:f7:11:c5:33:a6:fb:33:9d:4f:38:1c:a4:
                    0d:40:46:fb:6f:3a:06:98:f1:01:8b:83:a2:55:9b:29:
                    19:11:ac:4d:4d:68:61:6b:11:df:88:2f:4b:c1:70:59:
                    93:c6:05:f0:ef:9c:63:9d:b5:e3:3d:98:83:01:be:80:
                    e5:c0:36:ae:61:16:fe:b1:cc:7b:84:1f:7e:d0:af:a9:
                    c6:1e:4f:58:2c:a8:89:1d:00:89:5c:da:e9:50:da:28:
                    f1:cf:25:b4:03:be:0b:b3:ed:de:fd:da:42:02:f1:48:
                    38:b0:73:6b:21:90:80:a3:84:7c:80:e4:06:a2:37:41:
                    7d:93:1e:9f:e1:b5:39:67:71:0a:71:2c:eb:a9:62:5a:
                    c4:e6:0c:b7:f9:30:e8:6f:02:ef:c0:94:5a:4a:b8:70:
                    c3:10:8c:f0:aa:ee:55:56:09:7e:fd:22:6e:b8:0d:18:
                    04:9b:f0:b6:e7:9e:57:18:6e:19:30:f0:76:ea:bf:a3:
                    d9:3b:5f:39:3e:f8:1b:95:70:fb:f4:4a:84:e6:d7:1a:
                    87:06:e1:d6:a0:e8:15:49:08:79:75:b6:bf:02:d1:71:
                    fe:d8:11:12:0f:ec:2a:58:31:17:d4:a8:ad:b1:e8:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:1a:8e:6c:31:c7:78:60:15:9a:01:de:1b:e9:0a:1d:
        7c:50:8d:d5:ca:22:1e:85:de:f1:15:47:ab:b8:24:3b:
        a7:90:67:8d:21:03:ba:7c:0e:4c:62:4b:78:e8:07:38:
        df:5c:5d:a7:41:c4:48:76:88:ee:d2:fa:6f:f5:b8:cc:
        19:06:4d:ee:64:3e:8b:8d:ca:28:2f:17:d7:24:42:b0:
        1b:15:3f:07:b4:c3:49:78:72:75:05:ac:c8:6f:45:a9:
        5b:36:ed:51:eb:a1:c7:93:78:49:5f:c0:13:16:50:eb:
        93:cc:b3:80:39:d4:50:13:45:71:8b:6d:fd:d2:a0:30:
        ec:cd:fb:d4:ba:49:5f:18:94:ce:96:39:d0:ee:e0:b4:
        1b:af:8e:2c:28:40:65:55:26:3c:aa:ed:82:18:ad:b7:
        23:b4:aa:0b:ea:54:62:3b:9d:ab:d6:ab:79:3a:8b:c1:
        87:9a:8a:67:29:a4:9b:a9:ad:e4:52:08:c5:69:b9:96:
        2c:ab:a8:04:6b:bc:08:a8:b3:5f:02:27:e2:05:0c:15:
        82:d7:30:8a:d0:b9:81:6b:e2:e6:39:25:36:96:31:d8:
        05:92:52:12:31:5c:93:4a:43:8e:1a:54:6b:18:28:ef:
        37:7b:4d:2c:3f:ea:bc:2f:59:7b:c4:c3:30:91:d2:2f
    Fingerprint (SHA-256):
        69:82:00:8F:1F:3E:BB:A3:EB:B7:5C:39:62:FA:C9:14:D9:5D:8E:7A:21:24:2A:2E:80:06:D6:EC:2F:44:CF:DD
    Fingerprint (SHA1):
        98:52:56:1A:7A:16:A9:89:98:57:F4:1B:AA:A4:3D:6D:B8:77:3D:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6932: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115854 (0x1e67c00e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:58:31 2017
            Not After : Tue May 10 11:58:31 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:10:3b:86:39:a9:9e:c8:96:82:b7:1e:71:26:bf:38:
                    2b:97:d4:ab:f7:11:c5:33:a6:fb:33:9d:4f:38:1c:a4:
                    0d:40:46:fb:6f:3a:06:98:f1:01:8b:83:a2:55:9b:29:
                    19:11:ac:4d:4d:68:61:6b:11:df:88:2f:4b:c1:70:59:
                    93:c6:05:f0:ef:9c:63:9d:b5:e3:3d:98:83:01:be:80:
                    e5:c0:36:ae:61:16:fe:b1:cc:7b:84:1f:7e:d0:af:a9:
                    c6:1e:4f:58:2c:a8:89:1d:00:89:5c:da:e9:50:da:28:
                    f1:cf:25:b4:03:be:0b:b3:ed:de:fd:da:42:02:f1:48:
                    38:b0:73:6b:21:90:80:a3:84:7c:80:e4:06:a2:37:41:
                    7d:93:1e:9f:e1:b5:39:67:71:0a:71:2c:eb:a9:62:5a:
                    c4:e6:0c:b7:f9:30:e8:6f:02:ef:c0:94:5a:4a:b8:70:
                    c3:10:8c:f0:aa:ee:55:56:09:7e:fd:22:6e:b8:0d:18:
                    04:9b:f0:b6:e7:9e:57:18:6e:19:30:f0:76:ea:bf:a3:
                    d9:3b:5f:39:3e:f8:1b:95:70:fb:f4:4a:84:e6:d7:1a:
                    87:06:e1:d6:a0:e8:15:49:08:79:75:b6:bf:02:d1:71:
                    fe:d8:11:12:0f:ec:2a:58:31:17:d4:a8:ad:b1:e8:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:1a:8e:6c:31:c7:78:60:15:9a:01:de:1b:e9:0a:1d:
        7c:50:8d:d5:ca:22:1e:85:de:f1:15:47:ab:b8:24:3b:
        a7:90:67:8d:21:03:ba:7c:0e:4c:62:4b:78:e8:07:38:
        df:5c:5d:a7:41:c4:48:76:88:ee:d2:fa:6f:f5:b8:cc:
        19:06:4d:ee:64:3e:8b:8d:ca:28:2f:17:d7:24:42:b0:
        1b:15:3f:07:b4:c3:49:78:72:75:05:ac:c8:6f:45:a9:
        5b:36:ed:51:eb:a1:c7:93:78:49:5f:c0:13:16:50:eb:
        93:cc:b3:80:39:d4:50:13:45:71:8b:6d:fd:d2:a0:30:
        ec:cd:fb:d4:ba:49:5f:18:94:ce:96:39:d0:ee:e0:b4:
        1b:af:8e:2c:28:40:65:55:26:3c:aa:ed:82:18:ad:b7:
        23:b4:aa:0b:ea:54:62:3b:9d:ab:d6:ab:79:3a:8b:c1:
        87:9a:8a:67:29:a4:9b:a9:ad:e4:52:08:c5:69:b9:96:
        2c:ab:a8:04:6b:bc:08:a8:b3:5f:02:27:e2:05:0c:15:
        82:d7:30:8a:d0:b9:81:6b:e2:e6:39:25:36:96:31:d8:
        05:92:52:12:31:5c:93:4a:43:8e:1a:54:6b:18:28:ef:
        37:7b:4d:2c:3f:ea:bc:2f:59:7b:c4:c3:30:91:d2:2f
    Fingerprint (SHA-256):
        69:82:00:8F:1F:3E:BB:A3:EB:B7:5C:39:62:FA:C9:14:D9:5D:8E:7A:21:24:2A:2E:80:06:D6:EC:2F:44:CF:DD
    Fingerprint (SHA1):
        98:52:56:1A:7A:16:A9:89:98:57:F4:1B:AA:A4:3D:6D:B8:77:3D:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6933: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #6934: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115859 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6935: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #6936: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #6937: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115860 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6938: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #6939: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #6940: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115861 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6941: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #6942: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #6943: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115862 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6944: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #6945: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #6946: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115863 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6947: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #6948: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #6949: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115864 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6950: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #6951: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #6952: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115865 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6953: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #6954: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #6955: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115866 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6956: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #6957: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #6958: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115867 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6959: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #6960: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #6961: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6962: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 510115868 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6963: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6964: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 510115869 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6965: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6966: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 510115870 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6967: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6968: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #6969: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #6970: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6971: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 510115871 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6972: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6973: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 510115872 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6974: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6975: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 510115873 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6976: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6977: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #6978: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #6979: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6980: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 510115874 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6981: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6982: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 510115875 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6983: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6984: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 510115876 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6985: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6986: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #6987: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #6988: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6989: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 510115877 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6990: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6991: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 510115878 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6992: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6993: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 510115879 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6994: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6995: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #6996: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6997: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6998: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 510115880   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6999: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7000: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7001: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7002: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115881   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7003: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7004: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115859 (0x1e67c013)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed May 10 11:58:34 2017
            Not After : Tue May 10 11:58:34 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:f3:1e:50:23:a2:c5:80:e4:0e:ff:a5:41:9f:ac:e9:
                    b7:58:c2:72:c5:92:b3:2f:5c:06:dd:0a:f2:13:e9:96:
                    a3:91:4f:bb:47:bd:0c:f0:8e:0c:91:c0:7d:f7:86:2d:
                    d4:0a:da:ae:8f:d6:70:8d:87:99:db:54:c6:2b:ad:ae:
                    7a:aa:c2:cd:19:6d:cb:28:e5:27:29:72:88:0a:e2:26:
                    7c:d7:62:19:79:74:1a:c7:8d:93:ef:91:1c:7a:1d:d8:
                    99:15:7b:b1:6e:47:e0:88:a2:ec:57:91:f9:45:e0:88:
                    35:12:11:d0:82:44:3e:68:48:9b:b6:a6:66:6d:3e:a5:
                    b4:66:76:cc:27:8a:6e:22:55:8b:87:dd:64:ef:dd:76:
                    72:bb:bd:21:35:ef:67:10:88:64:5b:64:6d:87:9b:d4:
                    3c:b4:b6:9d:93:e8:40:c3:e7:25:50:af:0e:0e:9a:8c:
                    5c:bf:30:58:8a:20:a3:49:d2:65:3a:2e:68:24:61:85:
                    03:86:3a:71:e3:92:af:94:b2:05:e0:f2:d2:99:d3:fb:
                    6e:8b:e6:51:88:12:24:2c:e8:bf:a6:10:2d:b2:fa:a7:
                    46:db:cd:83:a1:21:01:69:e5:71:53:b7:41:8c:82:ba:
                    74:85:79:64:d8:6a:82:04:f9:95:1f:6e:e6:6b:ee:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        88:de:ba:93:d5:f8:5e:c0:6e:7e:30:b1:0c:cd:fd:2c:
        28:82:b5:a1:76:92:ad:b2:53:ab:f6:e8:e6:32:b4:ad:
        db:47:eb:b6:59:4d:07:5d:38:b4:7a:0f:70:70:bf:d5:
        06:92:6d:4f:40:da:8e:ec:f7:b7:5a:ad:29:db:05:0f:
        00:43:a0:b4:fe:1e:4f:1f:32:8d:4c:c8:40:06:ab:1d:
        26:b6:ca:09:05:9c:b0:bf:cb:46:d9:ee:d9:bc:9e:ac:
        1d:03:35:ee:f6:a2:7e:76:01:ce:7b:cd:56:fd:c5:1c:
        c3:c5:b1:ef:70:0c:7a:1a:ec:19:29:17:3c:75:75:23:
        86:9c:20:cc:a6:51:10:8b:04:ab:61:9d:e2:36:52:26:
        65:6e:c2:4d:c7:2d:83:bd:0e:0a:0f:68:5a:12:f1:cd:
        cc:c0:09:6e:9d:bf:0a:a2:df:61:1d:25:33:5f:80:27:
        de:7b:e0:0e:be:20:3b:3f:d0:b6:97:91:59:73:f8:cb:
        46:3b:f4:b2:5a:18:2e:3a:41:65:a1:30:19:f2:37:40:
        61:1e:b6:4f:be:ab:9c:8e:8a:91:eb:b3:a7:58:8b:0c:
        ed:32:67:28:18:3b:c6:b4:9e:49:93:a2:1c:0f:05:61:
        ce:34:83:18:ad:b3:36:ae:b3:a1:5d:ee:87:ed:1a:f1
    Fingerprint (SHA-256):
        71:95:6E:45:88:4B:EE:1C:D1:CE:80:16:9D:80:82:F9:7B:BA:2F:E5:77:93:0C:B9:FE:8B:17:BD:2C:89:65:35
    Fingerprint (SHA1):
        01:7C:99:A2:30:D0:FD:9F:95:9A:C0:E0:D4:15:62:80:84:6D:AA:1F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7005: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115860 (0x1e67c014)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed May 10 11:58:34 2017
            Not After : Tue May 10 11:58:34 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:a7:8c:e3:7a:e6:8a:8c:41:ea:8d:79:6d:a7:87:c8:
                    ba:13:04:de:b5:c6:b6:8a:8b:a0:3c:c7:17:6c:c2:57:
                    20:9a:77:16:09:3f:36:5f:55:8b:5d:84:83:67:9e:f2:
                    f2:8f:70:68:42:40:08:c2:5d:1b:78:63:d7:cb:74:f7:
                    58:f9:08:51:9a:33:b7:8d:47:e4:13:a8:f9:95:62:94:
                    4e:5b:fb:2c:2a:97:c8:b8:92:4e:3d:78:42:77:f6:30:
                    36:8f:28:ff:26:61:6f:9f:76:90:49:2e:0a:b9:07:c2:
                    5a:fc:81:b7:06:de:46:4b:62:50:c3:9b:bc:5b:8f:27:
                    be:39:80:95:b9:f5:c2:24:b4:dc:a4:f4:ed:b1:a8:41:
                    32:0b:d5:ca:42:08:3e:b5:32:51:48:e1:f1:d0:9d:c6:
                    b9:3d:28:c4:fe:67:e1:8f:34:d1:30:82:a0:54:63:51:
                    84:06:42:8a:8c:9e:5c:73:29:cb:85:17:57:51:bd:41:
                    4f:99:40:dd:5d:df:a2:ec:10:ef:fe:c2:a1:c9:2b:f0:
                    bd:15:d6:2d:8b:dd:a0:7b:0d:bf:5b:ca:ff:ab:b3:a2:
                    f6:ba:7f:d2:6f:00:d5:1e:c1:ec:50:4e:ac:47:c5:48:
                    b8:7a:ee:8e:af:14:05:e9:07:92:98:13:98:47:19:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:bd:df:7a:02:83:f4:1a:ea:cf:d7:82:f9:ed:df:cb:
        45:b7:e7:f4:34:7a:fc:ff:56:56:76:76:c3:2b:9b:c4:
        5a:61:4f:ca:59:4b:48:08:7b:d3:83:6e:ae:32:04:2a:
        af:c4:bf:7a:5e:a5:ec:7f:71:c7:24:5d:c0:6a:3f:69:
        d3:7c:4e:42:87:13:bb:9d:83:52:b6:32:2c:9e:88:81:
        eb:70:11:af:ce:cf:76:46:8e:79:d6:62:74:a5:d9:db:
        d3:a4:2b:4e:02:d7:4d:20:c7:bf:e5:4c:be:6f:a9:56:
        0a:fe:3e:cf:02:6e:59:f2:8e:a1:f8:c1:6e:e6:1d:98:
        55:b2:45:f6:4c:71:1a:cf:9c:8e:60:5d:82:d1:77:8a:
        55:21:ef:a2:73:98:a1:65:ff:65:34:29:92:b6:bf:c4:
        59:28:b9:83:7b:fa:bd:c4:45:f0:de:9b:38:88:95:49:
        d6:52:dd:11:03:41:ca:4e:be:ac:48:03:0d:3a:d4:fc:
        ed:44:85:79:dd:da:cf:93:e9:3c:59:d0:5a:35:7e:ae:
        9d:6a:c5:31:6d:45:89:84:5c:b5:a9:26:82:ee:09:7b:
        bc:81:b9:ac:cc:b6:14:53:83:b3:58:dc:a1:bc:3d:5c:
        f1:fe:07:86:86:21:e8:66:a6:ab:4d:5e:27:d8:78:a4
    Fingerprint (SHA-256):
        7E:D3:0D:D5:3C:50:C4:1B:AD:77:F9:B7:18:EB:9B:04:92:67:0B:E4:11:14:6B:4D:AF:7C:47:05:B4:EB:92:E2
    Fingerprint (SHA1):
        2C:A9:93:A7:43:DC:1B:0E:2C:67:F8:B6:A1:17:53:8A:DC:E5:12:88
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7006: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115861 (0x1e67c015)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed May 10 11:58:35 2017
            Not After : Tue May 10 11:58:35 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:32:42:62:ed:bd:c0:07:25:fe:ff:89:3d:75:64:36:
                    1b:6a:4a:88:0e:b7:ef:bd:46:8c:2b:8f:c1:73:59:e9:
                    d0:e6:d4:42:ae:d5:47:a9:42:be:59:72:98:8b:99:bf:
                    ca:ec:a5:97:de:cf:00:01:26:4c:97:85:5f:ac:c9:83:
                    c8:a8:e4:f3:a0:bd:81:1e:80:4e:6c:e2:28:74:20:63:
                    35:c8:4f:f3:d7:55:6d:76:b8:97:1b:96:4b:1c:4d:41:
                    d5:56:2e:d7:7f:38:79:7f:2f:ab:e7:b0:5c:22:bd:92:
                    3b:e0:e2:93:6a:fb:90:29:fb:67:3c:f2:40:d1:2c:8b:
                    2f:c2:41:a3:88:fd:a5:84:d5:d6:d6:86:d7:ef:3e:98:
                    8e:4c:bb:07:0f:1a:9d:79:99:5a:ef:07:7d:7f:fe:16:
                    24:0b:23:ad:17:94:b1:36:65:37:f7:24:41:87:bb:64:
                    0e:95:ff:45:92:06:b2:f5:79:b2:02:af:dd:1d:a3:a4:
                    73:fd:aa:34:b5:b5:e3:2a:d9:9d:24:2f:5f:9f:d9:62:
                    d1:de:4c:a3:56:54:7b:b2:ed:bb:ea:f1:a9:c0:07:82:
                    17:21:33:da:d9:2e:48:69:54:45:8c:ff:f1:ca:5b:a4:
                    53:ef:9d:30:25:27:08:4f:3d:bd:f8:8f:ab:90:3f:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:2e:8f:01:44:82:5d:7e:43:5c:b1:7e:f0:bb:1e:f3:
        b4:5f:ed:44:fd:4f:2f:79:56:f3:ab:74:cb:e0:4a:3e:
        9e:b4:a3:73:46:3d:06:cd:c7:2b:58:b4:1c:e6:06:1a:
        9b:d9:84:77:8f:da:ff:76:db:39:e7:f8:31:1e:41:36:
        3b:a7:14:9c:dc:62:f3:37:f0:4a:46:cf:40:08:ba:6f:
        d9:d5:bf:76:9a:2e:55:5b:7b:30:bb:0f:68:b4:04:6f:
        58:55:0a:95:5b:9a:cc:8a:02:d0:24:4d:53:60:5a:7b:
        7b:f3:c7:93:2a:93:ca:86:db:8c:2d:a0:6e:18:b6:c5:
        38:e4:cd:9d:61:39:67:f6:ac:da:f9:cf:38:2d:ba:8c:
        b2:5b:58:b4:64:28:04:9c:1d:24:5a:6a:83:d8:a2:a2:
        24:d2:86:0f:8a:e1:6b:4d:8d:c0:b6:e0:76:6a:ee:17:
        cf:76:cc:61:ca:e9:bb:36:b7:ae:21:79:5e:e5:b6:06:
        d5:fe:c1:29:f8:3f:35:ee:27:2b:89:f4:40:82:a0:41:
        d9:e8:3c:02:5c:b3:96:37:20:88:82:92:53:e2:6e:b1:
        df:cf:e8:34:ea:14:64:a9:0a:57:b2:6b:82:4f:37:d0:
        33:99:ae:dc:f4:55:22:59:1b:8d:03:7a:88:68:2f:5f
    Fingerprint (SHA-256):
        9A:94:70:56:94:51:B5:06:2C:54:33:81:61:90:43:62:D0:D6:8C:43:31:00:A3:7F:2B:D4:0B:E6:41:E9:47:F0
    Fingerprint (SHA1):
        D8:FF:30:06:67:F2:D6:18:34:CF:D7:95:AD:16:A2:C0:C4:4F:84:36
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7007: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115862 (0x1e67c016)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed May 10 11:58:35 2017
            Not After : Tue May 10 11:58:35 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:4d:57:5a:f6:6e:17:1d:4f:c3:fc:71:68:32:c5:50:
                    41:13:0f:e1:46:44:5d:15:da:8c:9d:11:1d:20:8b:ed:
                    d4:05:a8:a1:8c:8c:44:d2:06:a3:ec:c3:35:a6:74:8e:
                    07:c0:12:3a:92:6a:a8:01:44:36:48:3f:fd:66:a0:a0:
                    52:ab:1b:2d:9b:d3:83:35:51:5e:d4:1e:78:43:06:f7:
                    cb:42:5f:8c:35:fa:ae:ed:63:e3:9e:a9:cf:46:32:92:
                    a7:b8:7a:77:41:8b:43:2f:ae:cf:07:38:df:5d:a2:5a:
                    99:63:02:70:43:52:5a:9b:d9:98:35:e3:77:ab:54:8d:
                    6c:a7:bd:9c:a2:04:0b:af:2d:5e:43:97:4d:5f:8b:9a:
                    af:3c:03:28:8d:b0:95:dd:24:69:f0:11:db:28:53:b3:
                    bf:71:60:dc:27:19:d4:be:77:f5:61:44:05:6d:ae:7c:
                    95:1e:ed:52:75:ca:72:81:4f:2e:16:53:54:5b:09:64:
                    be:b8:84:e0:2d:8c:3f:59:ac:cc:59:cd:53:64:a8:15:
                    d2:cf:7d:eb:3f:20:4a:7d:92:ea:7e:76:41:8e:58:4f:
                    a3:f2:2b:3f:b7:87:9a:07:91:dc:24:d4:ee:4e:66:75:
                    44:c7:06:18:df:18:0d:01:c8:d8:41:b5:7f:fa:45:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:78:85:34:cf:9e:f7:82:2f:4a:40:ba:49:f7:de:01:
        fc:72:fc:d1:12:72:7d:90:2d:8d:8a:21:19:87:c8:9a:
        9e:f4:48:6d:32:c6:82:bf:5a:c4:1f:1e:9d:09:a3:73:
        ad:7b:85:71:05:6c:aa:8a:b1:4e:a7:38:f9:35:cc:68:
        3c:54:dd:bf:0a:7d:80:38:ce:b2:50:ba:49:00:21:6e:
        a6:77:a8:20:49:62:54:6a:72:14:fb:77:77:1b:75:68:
        6a:39:8f:3f:69:d3:f6:e1:54:6f:9b:84:c7:98:1c:16:
        69:f1:44:25:0e:a6:97:d1:38:ed:8c:47:ef:97:93:2e:
        f0:65:c5:6c:99:6c:6b:fc:d4:79:6a:06:08:a4:8c:9a:
        61:ab:0c:5c:f6:bb:0c:56:fc:2b:d3:85:5b:48:d6:43:
        d4:04:52:51:6e:33:74:c0:9d:64:27:20:5d:94:d6:d4:
        81:a7:a1:a0:65:cb:bc:dd:a4:86:4d:3a:78:45:6f:b6:
        56:7c:7d:d9:d7:c0:f4:4f:cd:c6:e5:5a:ee:a5:65:3e:
        60:c8:fd:5d:d8:9a:39:db:9c:d9:72:09:63:cc:61:b0:
        35:5f:16:43:20:89:b3:6e:fa:4f:52:5b:7a:b2:fd:20:
        ae:a3:3a:28:14:ec:24:8c:25:8a:ec:23:3f:9b:73:87
    Fingerprint (SHA-256):
        4D:C1:C8:EA:C6:4E:BE:91:E7:4C:E7:8F:F3:25:79:F3:D6:11:9A:B6:8E:81:59:45:B6:EC:1A:58:9D:BD:BD:3B
    Fingerprint (SHA1):
        0D:05:AA:2A:70:5B:50:72:48:0F:71:2F:64:80:C1:23:06:13:87:CF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7008: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115863 (0x1e67c017)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed May 10 11:58:35 2017
            Not After : Tue May 10 11:58:35 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:79:72:0e:08:92:ba:2e:08:e0:f4:f0:1a:df:0e:cb:
                    9d:d4:64:18:06:ee:90:80:18:3c:22:ca:9d:ff:1a:21:
                    f9:f2:b6:63:96:a0:3d:34:b3:ad:cc:d8:b5:c4:59:9a:
                    2a:4e:da:04:6e:26:4c:4a:d0:6a:55:b5:2a:0a:fe:d4:
                    b1:ea:47:e4:65:b1:18:3b:17:27:59:57:a4:dd:cc:34:
                    46:93:95:15:31:36:5d:3b:03:e3:2f:18:15:18:43:1f:
                    27:25:5d:70:3f:0b:f6:ad:b2:96:4b:f0:68:44:a8:32:
                    b9:f9:19:c3:aa:e2:16:db:dc:d8:3f:7f:08:5a:74:5a:
                    67:34:6c:60:63:9a:51:ed:4b:74:55:8d:f4:d7:fc:a8:
                    7e:54:a5:64:68:99:61:4a:bd:97:53:ab:e7:4b:44:ef:
                    21:d1:4e:29:e5:56:88:b0:ef:da:d4:cb:87:cc:87:13:
                    97:9a:aa:e0:4e:e4:7d:f6:2d:e9:b9:4f:f3:94:69:f7:
                    d7:fe:1f:24:6e:8e:01:ee:09:95:aa:0d:39:02:fe:99:
                    5d:88:7b:57:2f:15:71:21:82:5e:88:42:7c:ea:a8:70:
                    2e:87:d1:88:e6:d8:fe:be:54:f7:da:0f:07:0f:10:d6:
                    24:1b:5c:a9:b5:a6:69:9f:02:63:b9:88:8c:17:78:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:07:21:b0:a4:98:f1:e0:93:db:30:51:48:ca:1e:99:
        49:15:14:a0:14:99:76:b0:98:1e:81:d1:02:6b:f8:84:
        6e:9b:e7:de:09:15:30:78:e4:17:54:b7:07:f2:ea:a5:
        8f:32:86:60:7c:41:9e:a0:a8:a9:e8:a0:53:04:64:ae:
        39:2a:6b:f2:ed:60:ef:80:43:d0:3b:07:8e:36:66:67:
        18:96:66:fd:04:da:12:b0:1a:f5:d3:a6:51:8f:93:9c:
        42:8c:d7:03:38:e4:25:e3:04:a2:09:22:5d:87:e1:b6:
        20:b4:80:93:37:65:8d:e3:d1:d5:55:2c:13:c7:65:a0:
        19:4b:f7:c0:98:d0:07:e4:cf:02:83:21:2f:d8:90:00:
        16:da:ea:fd:ed:89:1b:ee:b6:6f:38:09:58:59:5b:90:
        67:ca:56:1d:a6:a3:cc:af:3c:d5:ff:63:7a:46:07:ec:
        92:29:86:f8:46:d2:5c:9b:6e:6e:12:89:63:0f:65:93:
        97:67:3a:78:22:6e:ac:bc:4b:8a:47:7c:6c:ca:f7:fc:
        a6:85:af:9d:9a:bf:34:b1:ef:07:db:82:13:23:57:49:
        c5:22:26:95:75:0d:2c:ce:fd:54:e2:53:4e:02:f6:44:
        d7:ba:9b:76:c6:df:92:39:a6:46:66:88:cc:2c:41:9b
    Fingerprint (SHA-256):
        7F:78:11:0D:24:42:95:D1:7A:16:1E:94:F5:CC:5F:EB:6D:95:86:5A:57:BB:60:62:08:42:BF:1D:84:3F:74:B6
    Fingerprint (SHA1):
        A5:46:F0:B0:5B:59:5D:B5:08:1A:12:C5:98:AB:40:94:41:BB:EE:F0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7009: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115864 (0x1e67c018)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed May 10 11:58:36 2017
            Not After : Tue May 10 11:58:36 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:14:72:39:db:43:79:89:1b:4b:f2:e1:88:30:76:df:
                    3e:30:9f:4a:5c:0e:fa:26:6a:a0:c5:d1:72:20:20:89:
                    71:a6:e0:a1:fc:aa:d7:9e:cb:db:c3:9f:2a:c3:02:e5:
                    18:d2:5f:63:a5:c3:7a:83:24:6e:f0:ce:63:0b:58:ed:
                    73:82:ea:db:5a:e2:d3:ab:b9:d7:91:3c:51:03:cf:03:
                    d2:3b:58:24:43:9f:d5:5b:2d:bd:eb:6c:b8:4a:e7:3e:
                    b6:06:fa:84:1f:40:fd:d6:69:5d:19:95:eb:69:36:9b:
                    d7:bd:b8:ba:ff:d2:0b:d1:a0:8d:14:6e:03:aa:d7:7f:
                    6d:10:78:66:03:f7:46:a6:cf:9d:bf:42:08:2b:1a:eb:
                    8b:0a:02:d1:9e:2b:65:1c:f3:4d:80:42:32:3d:77:89:
                    ef:34:c9:57:ce:26:b9:29:d7:17:29:2c:a2:14:19:87:
                    91:57:29:be:31:1a:ec:5d:c6:ab:2f:76:0c:c2:68:2e:
                    d6:e7:28:7e:57:68:38:23:7d:b9:e2:c4:90:a4:29:36:
                    57:a6:b3:b5:b8:19:e5:03:56:5e:95:8b:c9:33:43:fa:
                    b3:ca:32:82:bf:0e:23:ea:f4:64:d7:2d:31:f5:fa:ba:
                    3a:c9:b9:9a:4e:fc:c6:83:af:d8:67:81:72:3a:cd:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:08:1d:ac:c4:d6:36:78:b0:f4:f2:28:8c:4b:0a:11:
        13:39:ba:a3:83:36:d3:2e:62:fb:9c:16:39:76:20:7e:
        02:26:4c:7c:47:4f:2d:82:a5:51:0f:84:f5:a4:e8:45:
        bc:bc:b6:a7:dc:92:f0:46:dc:66:9c:26:b5:a8:1e:fb:
        9b:10:ad:40:c4:7a:d9:81:55:66:11:63:ba:ca:f1:c0:
        74:84:e7:2f:3f:3b:a8:58:37:0f:af:74:19:dd:e5:63:
        60:f1:39:68:1a:72:2c:39:b6:7b:7d:63:71:5d:39:bc:
        71:bf:ab:01:30:79:da:75:ca:52:9d:3b:63:f8:87:da:
        39:cd:05:61:65:43:c0:c0:fb:95:64:56:cb:a3:78:21:
        f4:81:d8:84:51:1d:73:f2:42:62:c3:e3:c3:b0:45:44:
        52:ff:20:7e:e8:fd:21:82:69:0d:b9:c7:22:67:59:ab:
        25:95:0c:44:0b:53:8e:67:3f:59:1b:c4:0d:d7:6a:95:
        87:38:86:a6:0f:2a:c8:5f:e6:44:2b:4e:64:60:8a:15:
        89:94:77:94:04:61:33:36:9c:54:14:f2:fb:ea:70:da:
        31:c4:e8:82:7c:dc:61:83:1b:9b:b0:ea:0d:ed:6b:ff:
        b6:10:97:85:a8:7d:47:83:62:8b:dc:9e:97:00:5b:97
    Fingerprint (SHA-256):
        C2:68:DC:4D:84:ED:57:73:63:75:ED:1C:5C:38:2D:EB:E9:D1:92:84:3A:F7:7B:B0:D4:6E:92:16:F7:9E:A1:3A
    Fingerprint (SHA1):
        16:2B:E0:CA:41:2B:BE:4D:FB:60:4A:E1:7F:4C:5D:3A:EE:F4:86:67
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7010: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115865 (0x1e67c019)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed May 10 11:58:36 2017
            Not After : Tue May 10 11:58:36 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:b2:02:7b:26:67:25:7d:7d:36:6b:eb:51:a1:d6:87:
                    45:5d:3a:dd:8a:19:f7:b0:7b:0b:76:fd:87:03:16:e5:
                    1a:e9:5a:2a:29:be:46:78:51:e0:8b:a8:cf:79:a7:3b:
                    f4:e1:86:dd:36:25:0c:dd:4e:d7:90:5d:14:70:4e:9f:
                    cc:4a:68:49:cf:92:33:6d:64:e6:98:95:74:04:7a:6f:
                    1d:42:86:fe:81:88:c6:71:fc:95:04:39:af:66:d6:08:
                    47:5b:7f:7d:38:7f:b6:46:12:72:a2:d1:fc:ee:f5:14:
                    ac:ff:0a:5e:56:f4:1f:e7:e5:39:e0:18:58:f2:ac:05:
                    1a:e6:f8:72:1f:d8:36:57:9d:df:46:42:76:a1:06:40:
                    05:a7:30:7e:d2:38:1f:7b:a6:ef:7f:cf:bd:e0:03:20:
                    d1:b7:98:8d:28:17:09:bb:43:11:f7:84:9a:17:0f:04:
                    19:b3:a7:1a:5e:62:2d:e5:a0:48:88:aa:ad:b2:29:7c:
                    43:07:bf:e1:bd:b5:9a:98:ec:c8:8c:1f:f1:be:a7:c1:
                    2f:c5:25:ed:63:a4:00:e3:cd:3a:05:99:00:45:fd:eb:
                    ae:c7:77:b6:7f:54:f6:ce:36:e5:5d:3c:15:53:37:45:
                    ef:ef:39:01:db:40:87:44:a3:ca:31:f9:d2:30:7b:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:34:29:1f:16:a1:03:f2:a8:33:3d:89:f2:82:40:79:
        49:47:e5:33:1a:c3:4d:4e:0b:ae:7b:18:9e:e9:5b:f8:
        16:e6:b8:14:29:c9:22:cf:a0:e7:8d:49:7d:e8:63:c5:
        59:d7:43:ca:64:8f:24:e2:0a:da:8b:f8:7b:9d:f7:75:
        98:9d:38:e5:32:38:50:d5:2f:98:2c:52:0b:f2:75:65:
        cb:4a:52:d0:39:cc:c8:bb:c1:a9:71:f1:09:34:c7:45:
        3e:ab:bc:54:3b:5b:2c:e8:83:02:4b:00:f7:70:b2:2f:
        91:9f:a5:1e:c5:ce:9f:59:20:7e:06:81:69:9b:87:ab:
        d5:54:3b:1c:19:51:c6:3d:02:9f:2c:1b:47:26:42:79:
        a2:d2:d8:e1:e1:99:87:bb:67:2c:ed:b6:f2:b4:df:c0:
        36:6b:78:73:d2:43:56:41:58:3f:3b:f2:7a:45:5e:cb:
        0a:33:59:0a:3f:5b:92:fb:7b:94:5a:6f:c3:4e:a2:63:
        2d:7a:6b:14:d0:1e:44:44:26:29:83:b5:6b:00:f3:2d:
        6b:30:b0:8b:30:1e:be:1d:8d:bf:0a:a2:55:a4:95:87:
        a6:5c:1d:ed:8f:13:0b:fe:64:16:b6:97:75:00:1f:44:
        0a:eb:a5:30:e6:14:7f:f9:45:a7:cc:88:04:de:5c:40
    Fingerprint (SHA-256):
        05:DF:85:2C:79:E6:BC:EB:C8:85:50:E9:33:44:BC:4E:85:3D:49:80:61:69:BA:38:71:C4:0F:85:0C:2A:35:19
    Fingerprint (SHA1):
        30:22:96:A7:D5:7B:55:CD:43:AC:B1:9E:F4:61:C9:14:E0:76:22:6E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7011: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115866 (0x1e67c01a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed May 10 11:58:36 2017
            Not After : Tue May 10 11:58:36 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:b6:df:e5:9c:ef:a6:5a:a7:cf:06:a6:45:bf:90:33:
                    e4:05:f9:57:92:21:a0:6a:dc:79:1a:93:a1:5a:41:10:
                    db:d3:1f:ac:36:e2:8b:f1:71:f7:7c:24:40:86:08:64:
                    e1:65:f6:5d:47:55:ea:14:ca:f1:a6:6c:e0:cd:80:67:
                    8c:a6:30:29:ea:aa:eb:5b:a6:85:10:27:c0:ac:24:a5:
                    38:8f:b1:01:bc:02:cb:63:3e:26:d4:a7:c0:fa:ba:47:
                    4e:fc:e5:8c:71:c5:63:74:6b:f7:97:fb:ff:8e:0b:9a:
                    3d:a9:ac:f1:27:1c:53:f1:19:65:07:cf:b7:8e:f7:7b:
                    e3:eb:f5:e7:36:b7:01:e9:26:a0:d9:61:80:67:b2:a7:
                    4d:0b:ed:d2:75:a0:a3:ba:26:76:03:7e:bd:c6:b0:66:
                    e2:70:ec:b5:61:ec:78:3d:01:9c:1a:2e:06:de:77:6a:
                    5b:67:83:c8:6f:53:0a:52:db:15:00:f7:bd:65:90:f7:
                    dd:b7:0f:12:c5:4a:3e:b5:fe:71:f9:06:37:87:70:67:
                    d7:24:3d:60:21:23:de:29:41:07:f4:61:ce:78:28:de:
                    30:03:b6:e6:d0:06:6a:f8:65:9c:ff:e5:68:bb:a3:3e:
                    c7:1e:07:61:81:cf:a4:c4:1a:da:83:d4:d0:bb:5a:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e7:a2:9f:b4:6c:db:3f:cc:0f:37:d7:f2:c6:ae:60:5b:
        53:02:8d:20:fd:fc:4a:fe:0d:c6:60:e6:af:41:a0:ba:
        bc:78:c4:1b:3b:7f:e2:87:d7:0b:35:a3:de:fb:71:d1:
        b9:e6:ab:d0:9d:fe:39:e4:0c:fb:56:be:8d:fc:46:9c:
        00:33:7c:2d:cd:c1:91:ae:78:23:22:ce:fb:71:83:22:
        58:94:59:48:cf:73:40:26:df:ff:45:fa:b2:46:46:9b:
        a8:3c:ab:15:2c:f4:28:a4:1b:0d:0a:f1:9d:84:f5:53:
        aa:46:91:e3:a3:cd:8b:43:7b:99:8b:a8:f7:6b:b2:74:
        22:53:3c:5e:4b:ae:5c:fa:e6:28:c3:45:d1:e0:71:38:
        5e:47:8c:d2:a2:15:7b:5c:4f:59:f6:01:fb:c0:3b:60:
        30:ea:cf:b9:83:29:55:08:8e:fe:8b:e6:ce:1a:08:11:
        57:3a:a3:e1:17:6d:b8:f7:20:6d:e3:a0:fb:d6:f8:9e:
        9b:00:ea:c5:29:af:15:ca:05:ba:d0:69:e5:50:98:d7:
        44:65:1d:1d:65:31:29:9f:20:c9:f4:7f:2e:18:de:25:
        82:bd:90:85:67:78:6f:07:17:85:5b:4d:89:7f:62:dd:
        70:3d:f0:ab:89:7d:2f:ab:57:1d:fa:7c:68:af:ce:91
    Fingerprint (SHA-256):
        AF:12:64:3A:FD:D6:01:96:3F:81:2C:9B:B7:47:B4:09:30:3B:AE:A6:06:90:83:33:33:9D:2C:5B:E5:8C:DD:A4
    Fingerprint (SHA1):
        66:4D:E1:32:3A:EB:C0:D8:E0:81:BE:54:35:27:F8:22:B5:BB:6B:11
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7012: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115867 (0x1e67c01b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed May 10 11:58:36 2017
            Not After : Tue May 10 11:58:36 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:de:23:ac:be:81:6d:5f:1c:53:72:58:66:71:8c:56:
                    98:3b:a0:80:92:c7:1e:ef:4a:f9:92:75:0e:29:87:8a:
                    de:da:88:3c:c2:57:a2:b0:0a:56:9a:b7:94:c7:69:fd:
                    a0:bc:eb:a5:7d:52:2c:08:37:20:9d:52:b8:ca:86:21:
                    bf:ca:c8:c6:2a:70:c6:f5:0a:25:ae:95:32:81:bd:2a:
                    a0:b9:f5:99:6f:ae:52:bc:22:27:5c:71:a0:0c:9d:73:
                    51:26:74:4a:ba:08:5a:fd:22:d6:b9:44:3f:77:0c:40:
                    6b:93:65:86:76:fd:c9:15:17:6b:bb:81:8b:1e:53:6b:
                    15:62:30:c5:cf:35:8a:cd:b0:dd:ae:2b:f8:ff:07:d9:
                    e8:a1:6b:d7:34:ef:6a:aa:9c:a8:97:28:8e:3d:7d:f5:
                    42:e8:c8:62:30:a8:01:af:2e:f2:c4:be:66:4e:34:54:
                    51:41:06:b9:8d:52:89:0b:4c:5c:eb:6b:b5:25:1a:03:
                    d9:c8:d0:31:53:3c:9f:7b:ca:86:3b:17:a7:18:d9:fd:
                    3c:7a:00:4c:12:5b:62:b0:6f:37:fc:fb:77:8f:db:a2:
                    06:f0:a2:d8:d3:c2:d4:78:b2:e2:24:8e:26:a1:7c:55:
                    21:93:bb:ff:74:6f:c0:d0:3c:c6:df:f5:9d:c6:1f:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:06:4c:95:9a:36:d9:ee:c6:8f:5f:da:6c:33:85:e8:
        32:5f:a3:f4:ee:f5:4f:97:e9:fa:ea:a2:a7:04:49:3f:
        53:5f:79:31:5e:c3:53:38:0c:ac:94:95:bb:29:9d:c0:
        d1:98:03:b5:ed:ed:94:5f:43:5e:a0:18:ad:13:8c:f4:
        69:c8:d7:a5:46:44:58:5b:c6:b4:9c:0f:2a:fd:66:73:
        56:d8:5b:df:d4:c5:5f:fe:e9:5f:f6:b4:d1:97:18:60:
        a9:21:76:02:39:78:5a:12:9f:69:0a:62:bb:6e:d2:9e:
        bf:35:f4:bc:ec:22:d3:d1:88:da:ed:64:f7:87:5c:9d:
        ca:fe:88:14:0a:a7:68:97:f4:51:1e:82:ec:d7:51:0b:
        90:93:c9:22:fb:cc:9d:b6:1e:be:be:69:0a:9d:1e:8f:
        19:61:02:86:bf:1a:6c:4e:f1:46:83:b1:54:47:06:ad:
        ba:9d:66:92:2f:9b:fc:83:a9:47:1a:5b:cc:0d:85:d1:
        f4:b7:2f:76:e7:ab:db:9b:ca:20:92:c4:1e:4b:99:45:
        10:e3:59:fb:7b:e5:f8:91:a7:38:3d:a6:88:f7:35:07:
        2c:ff:0b:76:6e:11:fb:4e:39:42:37:75:ad:0c:1e:4a:
        f7:ba:a1:e2:bd:55:14:56:e8:ae:0a:68:b1:72:b3:7e
    Fingerprint (SHA-256):
        55:27:1B:F2:08:43:B8:6D:11:C8:F7:72:B6:81:A3:36:38:3E:39:F8:C2:F9:3D:8B:BB:36:69:BD:86:4E:70:49
    Fingerprint (SHA1):
        A7:06:3C:03:B8:6A:50:06:C8:20:A7:49:26:5B:9F:1D:BC:33:6D:16
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7013: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7014: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115882 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7015: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7016: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7017: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7018: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115883   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7019: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7020: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7021: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7022: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115884   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7023: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7024: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7025: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7026: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510115885   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7027: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7028: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7029: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115882 (0x1e67c02a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:40 2017
            Not After : Tue May 10 11:58:40 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    94:2e:65:d7:9a:d6:5b:e8:82:50:82:f6:9d:94:ee:43:
                    b3:56:a4:3c:9e:9d:fb:12:c1:9a:8e:93:32:27:b7:a9:
                    16:7c:ad:f1:3f:fd:97:b4:59:00:a1:91:29:3f:af:44:
                    d7:2c:d7:6e:c7:26:24:6a:9d:52:47:2c:72:dd:16:d5:
                    95:e7:e0:e0:21:af:26:98:9d:46:6c:76:bf:81:d0:d8:
                    dd:1f:ed:19:fb:ff:8a:25:dd:c4:60:79:63:d0:bc:4e:
                    1e:fa:d8:37:84:cd:a2:35:3a:af:1b:54:2c:c8:87:12:
                    22:70:64:f6:bc:95:f3:fc:46:f2:15:bf:5b:52:ee:ba:
                    d4:ed:d6:d6:3c:bb:0f:0a:de:bf:1c:47:07:70:22:3e:
                    5c:d5:3e:f9:e5:45:8d:05:69:cd:59:85:48:52:92:77:
                    d0:7c:54:09:85:3e:15:ae:57:39:60:92:5a:85:4d:f4:
                    90:d7:77:c4:f7:aa:7d:1f:ad:3a:cd:1a:1a:bc:c4:fa:
                    58:b8:4d:c7:91:d8:81:0d:36:30:3e:c5:37:d3:2e:19:
                    96:92:5a:7c:ff:58:ed:a3:5b:10:35:82:1f:5c:ef:10:
                    b0:ff:98:22:90:1d:2f:79:4b:50:18:f6:f9:55:fe:b8:
                    33:09:f3:64:f0:8e:8e:27:b6:4c:e6:a4:fa:bf:ea:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:95:3e:d6:18:d8:7d:2f:79:f2:20:3f:4c:31:d0:f4:
        9e:88:30:81:ab:28:b7:22:e8:75:88:6b:79:e8:67:68:
        80:30:bb:36:91:07:50:47:a6:8d:f2:77:a6:00:4f:09:
        10:85:50:07:5c:46:ec:b7:25:fa:cb:ee:c1:a7:2c:bf:
        09:a9:c2:59:ef:d8:35:28:d5:ae:7d:4a:36:8e:43:61:
        c4:ae:57:65:10:cc:9d:09:37:98:e7:b8:97:9c:88:80:
        3e:92:dd:14:70:33:2b:87:2d:18:64:86:6e:15:a0:d3:
        bf:47:46:7b:1b:30:eb:f7:76:c7:eb:b0:42:71:b9:5e:
        77:44:4b:b2:b0:36:b2:86:30:a1:3a:68:25:d1:12:e9:
        6b:67:95:6a:5e:bd:75:f3:0a:7a:c7:00:d9:11:07:5b:
        24:d2:ba:d3:3c:46:64:4a:f7:ae:59:a8:e3:fb:05:50:
        39:b0:76:ca:e5:6f:cf:ef:ff:b5:05:92:00:b5:5d:af:
        84:07:15:2b:f6:1e:a2:70:d1:57:b4:3a:55:bd:38:f9:
        4b:4d:ba:c4:fb:f6:2c:84:37:f1:98:40:5e:f3:72:85:
        0f:8d:8d:02:cd:b3:c2:24:cf:32:a8:0a:66:13:5e:7f:
        77:34:ea:c6:cc:48:c2:76:74:8d:62:54:b6:74:89:c2
    Fingerprint (SHA-256):
        DD:5D:AC:2A:4D:F1:8C:E2:AA:5F:BE:9D:F1:96:A2:41:0D:E2:30:0D:07:56:BE:A6:7E:5C:F0:59:78:75:66:80
    Fingerprint (SHA1):
        D5:62:86:39:69:5D:5A:EC:7D:8A:D0:3B:5A:07:97:E8:ED:0E:4D:A2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7030: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7031: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115883 (0x1e67c02b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:41 2017
            Not After : Tue May 10 11:58:41 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:77:d4:b7:fe:0b:a8:c7:e7:e1:f4:e8:2d:4b:94:4c:
                    4b:34:3f:81:dd:ec:a4:f6:e3:6c:6e:f6:fb:08:9a:9c:
                    13:5d:fd:d1:98:52:12:e7:4b:b0:ca:53:be:16:10:e8:
                    15:66:c6:41:8b:9b:e0:9a:95:a6:b0:d1:4f:04:04:93:
                    4f:51:b9:28:4b:8d:34:43:d1:21:4e:6c:e3:13:08:fe:
                    79:68:6c:13:f3:df:46:62:6c:fe:ce:9a:45:a0:79:27:
                    d7:de:80:e9:94:3c:94:02:de:1d:ae:48:f7:d1:6c:fb:
                    c3:c5:86:8b:b0:e8:f1:1d:0f:c3:9c:19:86:ae:ee:e9:
                    e9:a5:e5:96:a8:85:69:3e:16:ed:ff:86:5a:61:98:59:
                    0c:33:65:19:b5:dd:e2:48:fb:67:bc:72:b4:ca:42:da:
                    00:3e:e3:2b:51:cf:c5:ff:6d:cf:c5:7a:69:92:49:19:
                    50:d9:e8:96:11:b4:c2:8f:37:3f:47:4d:82:f7:6b:31:
                    7b:44:6c:ad:58:6c:a6:9a:95:68:ab:bc:62:2d:07:d5:
                    91:46:65:58:f8:de:ed:45:43:31:ca:b6:59:6f:27:e6:
                    e4:6f:95:39:b9:77:8c:21:e0:56:40:27:bb:8e:95:cc:
                    7e:0a:8d:81:f4:6b:e1:63:ec:b6:90:60:1f:2d:b5:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:d5:58:77:e7:a1:a1:94:95:71:b1:ea:93:b0:33:ca:
        86:c8:42:97:6e:4c:17:09:be:47:ab:bc:81:f8:77:0e:
        b9:96:50:ec:48:34:77:00:d2:83:1d:30:6c:91:9a:9c:
        95:6d:f9:dc:b2:68:dc:0a:a5:72:71:d0:d2:11:85:b5:
        f6:86:f5:da:57:8f:5b:b6:2d:db:34:42:3e:fb:b2:24:
        3e:4e:67:db:d2:c9:a6:93:14:25:c7:0e:08:6e:5c:13:
        25:7d:97:e4:b7:3f:cf:59:83:04:e9:7a:9a:df:2d:4e:
        6a:0e:56:34:c8:f7:1e:e2:a1:af:96:70:8e:51:96:3c:
        79:f8:5d:c2:9b:f9:cc:c3:95:57:83:c2:d7:00:aa:54:
        da:c9:59:9c:bf:12:dc:e0:1a:ef:89:d0:e1:fd:b4:bd:
        60:40:46:a2:0b:4f:cc:7e:cb:d7:0d:0f:a3:62:12:72:
        71:74:de:db:3b:d7:ba:23:97:c1:22:8f:ca:70:8d:04:
        35:2e:4b:0c:b2:31:3c:2f:1f:6d:16:9b:fc:92:b4:88:
        ae:34:84:78:7c:a9:17:1c:28:d3:cd:11:70:2d:c9:eb:
        b2:92:1d:f3:7c:10:c3:b4:e2:6f:7d:b5:91:61:f3:b3:
        58:92:75:a8:a1:fa:36:7c:21:74:9a:93:58:58:60:fb
    Fingerprint (SHA-256):
        68:74:9C:2F:AD:26:25:25:53:B6:DB:AF:BD:9C:8B:8B:F0:21:E3:FF:5A:08:B9:E9:86:A0:6B:2F:35:01:A4:9C
    Fingerprint (SHA1):
        5A:6A:76:3A:20:E5:6A:B3:21:BF:35:C3:39:70:BC:73:25:5A:EF:3E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7032: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7033: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115884 (0x1e67c02c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:58:41 2017
            Not After : Tue May 10 11:58:41 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:33:c3:d4:08:cb:0b:aa:f0:d5:2c:ac:1d:2e:99:c9:
                    18:9e:60:d7:fe:82:58:be:0c:3e:66:6b:f6:f6:3c:5d:
                    67:06:c5:8a:91:8a:b3:16:7e:05:fb:ab:bb:8e:0a:0b:
                    0b:21:02:3e:f1:96:e3:d7:aa:a1:5c:bb:2f:da:a1:0a:
                    98:66:3d:dc:6e:ab:e4:50:d1:bc:93:4b:87:49:6d:76:
                    f3:d7:35:07:6b:ed:f7:b8:23:af:ad:00:ab:cd:af:d1:
                    92:b9:36:d2:ba:16:94:7a:e4:1e:45:cf:e6:ee:b0:06:
                    d4:58:a7:4c:e3:a3:e8:12:36:f3:a1:22:01:e1:86:2f:
                    cc:fd:bc:c1:16:7c:d2:13:13:84:38:dd:62:c6:de:06:
                    fa:9f:2b:a1:6d:a5:bd:64:51:43:cc:1b:5e:88:b8:28:
                    24:9c:58:25:1d:51:07:2e:e7:16:43:70:00:3d:a6:76:
                    ab:f3:74:3a:1b:21:a9:bf:f2:24:7b:f0:b8:95:02:43:
                    22:bd:80:d9:ae:ef:f5:c2:86:d1:6d:d4:ec:80:eb:61:
                    43:62:61:c8:64:00:09:c0:f0:d6:14:93:37:3e:78:85:
                    03:10:7d:0a:47:bd:cb:58:61:90:7e:25:70:23:54:47:
                    d4:09:5b:25:5d:fe:91:58:6f:4b:ae:99:4c:8d:b8:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:5b:67:ce:f4:11:f8:3c:4d:d6:5b:ec:c6:19:0f:5e:
        c4:c5:3f:c7:d4:2e:a9:a7:b1:2d:7a:8c:f5:45:06:c8:
        0a:b2:ad:4a:5e:b8:b9:fa:a4:2c:b9:47:d8:9f:e4:77:
        69:47:6e:22:bb:97:d7:ac:56:7e:d5:5f:62:c9:61:cc:
        67:55:f0:75:b8:45:fc:2e:1b:cd:e8:4e:4e:b3:f5:69:
        d3:ad:34:da:f4:51:58:26:b4:89:9f:98:4d:9e:6c:c0:
        06:bb:74:48:96:ca:56:40:a9:9b:42:3b:d3:03:eb:16:
        88:71:3f:e1:00:b6:6b:9a:c4:f3:16:2b:42:22:07:81:
        b3:75:0a:41:e3:68:8c:72:af:9a:b6:8e:b6:48:9f:39:
        43:d5:c3:5d:3c:33:70:12:d7:90:9e:b7:d5:75:fb:76:
        d9:7d:04:cb:49:81:dc:7a:d5:8b:73:0d:0c:df:fd:12:
        f3:24:ad:91:fb:b8:01:16:41:d2:68:25:6c:75:f2:1a:
        97:42:b2:54:ee:25:ef:e6:fd:48:1d:84:83:38:9a:3b:
        2a:ed:dd:1f:97:89:6c:d4:74:a2:3f:3c:22:33:38:fb:
        6a:1e:ea:1d:ec:d3:05:ee:0e:51:db:b7:cc:bb:49:e7:
        26:53:66:33:11:22:22:2a:32:c5:0d:bf:c8:8d:d1:75
    Fingerprint (SHA-256):
        37:9B:5A:FA:CF:64:1A:56:C7:4D:BB:D7:27:45:12:D4:2C:FA:6D:A9:91:A1:1A:93:84:14:16:F5:69:9E:2A:9C
    Fingerprint (SHA1):
        CD:74:43:56:D7:ED:40:7C:D6:55:60:AE:CD:DB:74:AF:FB:9D:39:0D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7034: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7035: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7036: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7037: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7038: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115882 (0x1e67c02a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:40 2017
            Not After : Tue May 10 11:58:40 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    94:2e:65:d7:9a:d6:5b:e8:82:50:82:f6:9d:94:ee:43:
                    b3:56:a4:3c:9e:9d:fb:12:c1:9a:8e:93:32:27:b7:a9:
                    16:7c:ad:f1:3f:fd:97:b4:59:00:a1:91:29:3f:af:44:
                    d7:2c:d7:6e:c7:26:24:6a:9d:52:47:2c:72:dd:16:d5:
                    95:e7:e0:e0:21:af:26:98:9d:46:6c:76:bf:81:d0:d8:
                    dd:1f:ed:19:fb:ff:8a:25:dd:c4:60:79:63:d0:bc:4e:
                    1e:fa:d8:37:84:cd:a2:35:3a:af:1b:54:2c:c8:87:12:
                    22:70:64:f6:bc:95:f3:fc:46:f2:15:bf:5b:52:ee:ba:
                    d4:ed:d6:d6:3c:bb:0f:0a:de:bf:1c:47:07:70:22:3e:
                    5c:d5:3e:f9:e5:45:8d:05:69:cd:59:85:48:52:92:77:
                    d0:7c:54:09:85:3e:15:ae:57:39:60:92:5a:85:4d:f4:
                    90:d7:77:c4:f7:aa:7d:1f:ad:3a:cd:1a:1a:bc:c4:fa:
                    58:b8:4d:c7:91:d8:81:0d:36:30:3e:c5:37:d3:2e:19:
                    96:92:5a:7c:ff:58:ed:a3:5b:10:35:82:1f:5c:ef:10:
                    b0:ff:98:22:90:1d:2f:79:4b:50:18:f6:f9:55:fe:b8:
                    33:09:f3:64:f0:8e:8e:27:b6:4c:e6:a4:fa:bf:ea:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:95:3e:d6:18:d8:7d:2f:79:f2:20:3f:4c:31:d0:f4:
        9e:88:30:81:ab:28:b7:22:e8:75:88:6b:79:e8:67:68:
        80:30:bb:36:91:07:50:47:a6:8d:f2:77:a6:00:4f:09:
        10:85:50:07:5c:46:ec:b7:25:fa:cb:ee:c1:a7:2c:bf:
        09:a9:c2:59:ef:d8:35:28:d5:ae:7d:4a:36:8e:43:61:
        c4:ae:57:65:10:cc:9d:09:37:98:e7:b8:97:9c:88:80:
        3e:92:dd:14:70:33:2b:87:2d:18:64:86:6e:15:a0:d3:
        bf:47:46:7b:1b:30:eb:f7:76:c7:eb:b0:42:71:b9:5e:
        77:44:4b:b2:b0:36:b2:86:30:a1:3a:68:25:d1:12:e9:
        6b:67:95:6a:5e:bd:75:f3:0a:7a:c7:00:d9:11:07:5b:
        24:d2:ba:d3:3c:46:64:4a:f7:ae:59:a8:e3:fb:05:50:
        39:b0:76:ca:e5:6f:cf:ef:ff:b5:05:92:00:b5:5d:af:
        84:07:15:2b:f6:1e:a2:70:d1:57:b4:3a:55:bd:38:f9:
        4b:4d:ba:c4:fb:f6:2c:84:37:f1:98:40:5e:f3:72:85:
        0f:8d:8d:02:cd:b3:c2:24:cf:32:a8:0a:66:13:5e:7f:
        77:34:ea:c6:cc:48:c2:76:74:8d:62:54:b6:74:89:c2
    Fingerprint (SHA-256):
        DD:5D:AC:2A:4D:F1:8C:E2:AA:5F:BE:9D:F1:96:A2:41:0D:E2:30:0D:07:56:BE:A6:7E:5C:F0:59:78:75:66:80
    Fingerprint (SHA1):
        D5:62:86:39:69:5D:5A:EC:7D:8A:D0:3B:5A:07:97:E8:ED:0E:4D:A2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7039: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7040: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115883 (0x1e67c02b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:41 2017
            Not After : Tue May 10 11:58:41 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:77:d4:b7:fe:0b:a8:c7:e7:e1:f4:e8:2d:4b:94:4c:
                    4b:34:3f:81:dd:ec:a4:f6:e3:6c:6e:f6:fb:08:9a:9c:
                    13:5d:fd:d1:98:52:12:e7:4b:b0:ca:53:be:16:10:e8:
                    15:66:c6:41:8b:9b:e0:9a:95:a6:b0:d1:4f:04:04:93:
                    4f:51:b9:28:4b:8d:34:43:d1:21:4e:6c:e3:13:08:fe:
                    79:68:6c:13:f3:df:46:62:6c:fe:ce:9a:45:a0:79:27:
                    d7:de:80:e9:94:3c:94:02:de:1d:ae:48:f7:d1:6c:fb:
                    c3:c5:86:8b:b0:e8:f1:1d:0f:c3:9c:19:86:ae:ee:e9:
                    e9:a5:e5:96:a8:85:69:3e:16:ed:ff:86:5a:61:98:59:
                    0c:33:65:19:b5:dd:e2:48:fb:67:bc:72:b4:ca:42:da:
                    00:3e:e3:2b:51:cf:c5:ff:6d:cf:c5:7a:69:92:49:19:
                    50:d9:e8:96:11:b4:c2:8f:37:3f:47:4d:82:f7:6b:31:
                    7b:44:6c:ad:58:6c:a6:9a:95:68:ab:bc:62:2d:07:d5:
                    91:46:65:58:f8:de:ed:45:43:31:ca:b6:59:6f:27:e6:
                    e4:6f:95:39:b9:77:8c:21:e0:56:40:27:bb:8e:95:cc:
                    7e:0a:8d:81:f4:6b:e1:63:ec:b6:90:60:1f:2d:b5:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:d5:58:77:e7:a1:a1:94:95:71:b1:ea:93:b0:33:ca:
        86:c8:42:97:6e:4c:17:09:be:47:ab:bc:81:f8:77:0e:
        b9:96:50:ec:48:34:77:00:d2:83:1d:30:6c:91:9a:9c:
        95:6d:f9:dc:b2:68:dc:0a:a5:72:71:d0:d2:11:85:b5:
        f6:86:f5:da:57:8f:5b:b6:2d:db:34:42:3e:fb:b2:24:
        3e:4e:67:db:d2:c9:a6:93:14:25:c7:0e:08:6e:5c:13:
        25:7d:97:e4:b7:3f:cf:59:83:04:e9:7a:9a:df:2d:4e:
        6a:0e:56:34:c8:f7:1e:e2:a1:af:96:70:8e:51:96:3c:
        79:f8:5d:c2:9b:f9:cc:c3:95:57:83:c2:d7:00:aa:54:
        da:c9:59:9c:bf:12:dc:e0:1a:ef:89:d0:e1:fd:b4:bd:
        60:40:46:a2:0b:4f:cc:7e:cb:d7:0d:0f:a3:62:12:72:
        71:74:de:db:3b:d7:ba:23:97:c1:22:8f:ca:70:8d:04:
        35:2e:4b:0c:b2:31:3c:2f:1f:6d:16:9b:fc:92:b4:88:
        ae:34:84:78:7c:a9:17:1c:28:d3:cd:11:70:2d:c9:eb:
        b2:92:1d:f3:7c:10:c3:b4:e2:6f:7d:b5:91:61:f3:b3:
        58:92:75:a8:a1:fa:36:7c:21:74:9a:93:58:58:60:fb
    Fingerprint (SHA-256):
        68:74:9C:2F:AD:26:25:25:53:B6:DB:AF:BD:9C:8B:8B:F0:21:E3:FF:5A:08:B9:E9:86:A0:6B:2F:35:01:A4:9C
    Fingerprint (SHA1):
        5A:6A:76:3A:20:E5:6A:B3:21:BF:35:C3:39:70:BC:73:25:5A:EF:3E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7041: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7042: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115884 (0x1e67c02c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:58:41 2017
            Not After : Tue May 10 11:58:41 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:33:c3:d4:08:cb:0b:aa:f0:d5:2c:ac:1d:2e:99:c9:
                    18:9e:60:d7:fe:82:58:be:0c:3e:66:6b:f6:f6:3c:5d:
                    67:06:c5:8a:91:8a:b3:16:7e:05:fb:ab:bb:8e:0a:0b:
                    0b:21:02:3e:f1:96:e3:d7:aa:a1:5c:bb:2f:da:a1:0a:
                    98:66:3d:dc:6e:ab:e4:50:d1:bc:93:4b:87:49:6d:76:
                    f3:d7:35:07:6b:ed:f7:b8:23:af:ad:00:ab:cd:af:d1:
                    92:b9:36:d2:ba:16:94:7a:e4:1e:45:cf:e6:ee:b0:06:
                    d4:58:a7:4c:e3:a3:e8:12:36:f3:a1:22:01:e1:86:2f:
                    cc:fd:bc:c1:16:7c:d2:13:13:84:38:dd:62:c6:de:06:
                    fa:9f:2b:a1:6d:a5:bd:64:51:43:cc:1b:5e:88:b8:28:
                    24:9c:58:25:1d:51:07:2e:e7:16:43:70:00:3d:a6:76:
                    ab:f3:74:3a:1b:21:a9:bf:f2:24:7b:f0:b8:95:02:43:
                    22:bd:80:d9:ae:ef:f5:c2:86:d1:6d:d4:ec:80:eb:61:
                    43:62:61:c8:64:00:09:c0:f0:d6:14:93:37:3e:78:85:
                    03:10:7d:0a:47:bd:cb:58:61:90:7e:25:70:23:54:47:
                    d4:09:5b:25:5d:fe:91:58:6f:4b:ae:99:4c:8d:b8:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:5b:67:ce:f4:11:f8:3c:4d:d6:5b:ec:c6:19:0f:5e:
        c4:c5:3f:c7:d4:2e:a9:a7:b1:2d:7a:8c:f5:45:06:c8:
        0a:b2:ad:4a:5e:b8:b9:fa:a4:2c:b9:47:d8:9f:e4:77:
        69:47:6e:22:bb:97:d7:ac:56:7e:d5:5f:62:c9:61:cc:
        67:55:f0:75:b8:45:fc:2e:1b:cd:e8:4e:4e:b3:f5:69:
        d3:ad:34:da:f4:51:58:26:b4:89:9f:98:4d:9e:6c:c0:
        06:bb:74:48:96:ca:56:40:a9:9b:42:3b:d3:03:eb:16:
        88:71:3f:e1:00:b6:6b:9a:c4:f3:16:2b:42:22:07:81:
        b3:75:0a:41:e3:68:8c:72:af:9a:b6:8e:b6:48:9f:39:
        43:d5:c3:5d:3c:33:70:12:d7:90:9e:b7:d5:75:fb:76:
        d9:7d:04:cb:49:81:dc:7a:d5:8b:73:0d:0c:df:fd:12:
        f3:24:ad:91:fb:b8:01:16:41:d2:68:25:6c:75:f2:1a:
        97:42:b2:54:ee:25:ef:e6:fd:48:1d:84:83:38:9a:3b:
        2a:ed:dd:1f:97:89:6c:d4:74:a2:3f:3c:22:33:38:fb:
        6a:1e:ea:1d:ec:d3:05:ee:0e:51:db:b7:cc:bb:49:e7:
        26:53:66:33:11:22:22:2a:32:c5:0d:bf:c8:8d:d1:75
    Fingerprint (SHA-256):
        37:9B:5A:FA:CF:64:1A:56:C7:4D:BB:D7:27:45:12:D4:2C:FA:6D:A9:91:A1:1A:93:84:14:16:F5:69:9E:2A:9C
    Fingerprint (SHA1):
        CD:74:43:56:D7:ED:40:7C:D6:55:60:AE:CD:DB:74:AF:FB:9D:39:0D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7043: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7044: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7045: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115886 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7046: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7047: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7048: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7049: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115887   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7050: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7051: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7052: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7053: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115888   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7054: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7055: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7056: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7057: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510115889   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7058: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7059: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7060: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7061: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510115890   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7062: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7063: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7064: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115886 (0x1e67c02e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:42 2017
            Not After : Tue May 10 11:58:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:a3:9e:5a:29:ca:92:6a:6f:4e:b7:e1:82:d6:09:8d:
                    3e:87:09:32:22:df:43:42:63:82:8b:ce:a1:4a:0d:e0:
                    70:54:d2:a0:e0:d8:c3:8f:8e:6b:97:92:76:0b:70:4c:
                    4c:ac:91:f1:6b:2f:c6:6c:4f:78:c3:55:8d:73:54:b1:
                    4d:83:97:80:6c:e2:6f:38:92:8f:97:9e:04:af:bf:87:
                    71:7a:72:4e:89:72:7e:72:c8:7f:8f:a7:9d:a2:ee:2c:
                    a1:f8:e1:7c:4f:fe:30:3f:24:aa:cd:01:0a:77:f2:e6:
                    0c:be:64:1f:0c:23:ea:66:50:df:87:8f:ef:3d:ca:25:
                    c1:ff:20:c5:25:1d:24:7b:a5:04:f7:6b:b6:3c:a8:53:
                    fe:07:72:a0:61:53:92:f4:f6:72:d7:d7:f7:ba:32:be:
                    73:a2:ec:9e:16:ff:f4:02:55:21:a7:7b:22:df:4c:f3:
                    a8:64:a6:b4:64:30:8b:2b:08:8f:33:fe:4f:a1:b1:b7:
                    35:7c:52:8b:83:01:0d:3f:39:d5:85:b5:de:72:8a:ff:
                    b3:f1:eb:7e:6c:8b:8f:fa:72:00:89:97:6a:4e:40:36:
                    69:f9:6d:3e:dd:12:56:df:e4:9d:1b:fa:c1:6c:c2:59:
                    25:18:0a:f1:24:ba:e3:53:a8:10:d7:23:25:e8:e1:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:4d:8a:74:14:b0:92:81:9d:b0:a6:ff:fe:47:eb:50:
        f2:a4:b9:c6:0f:73:f0:09:11:b1:36:6a:cc:ff:6c:71:
        9f:29:03:49:6b:b4:d0:0f:df:d6:da:ec:99:6f:db:59:
        22:c4:95:78:4c:98:eb:b2:f4:66:d8:24:c2:d6:80:7d:
        21:85:47:d3:e9:f7:c9:b7:2f:ac:15:c7:4b:84:06:bd:
        e1:2f:eb:4e:81:4b:de:07:d8:f3:85:15:bf:a1:85:32:
        8f:d0:e6:df:1e:68:65:c4:4c:7c:cf:aa:85:ed:33:0c:
        ef:4b:85:b0:bc:8f:9c:18:01:5c:bc:08:e6:c2:57:a0:
        83:f7:90:fa:a6:19:91:83:14:7e:78:17:a0:8f:1b:b5:
        52:76:82:be:11:31:4e:e5:e8:58:78:90:75:1c:87:43:
        24:4d:1c:f8:99:78:a8:46:c1:c3:b5:77:ad:ef:c2:9d:
        94:a5:b2:d8:bd:94:03:99:f7:26:d1:f0:93:d2:4f:33:
        4d:4e:d3:53:5e:0f:7e:db:1d:97:66:d7:ae:a2:9a:ff:
        9b:cf:04:4c:0e:99:7a:61:41:9d:4c:1a:5a:5c:1a:0d:
        91:4e:b9:37:eb:22:f6:89:ec:94:8b:39:cf:13:54:a2:
        66:fd:b4:e5:92:52:07:90:cb:1d:aa:f7:a2:40:74:5b
    Fingerprint (SHA-256):
        9B:B9:D2:3F:E6:46:DB:44:65:C9:1A:17:76:EF:3A:76:97:78:2D:0B:2A:5F:07:A0:6D:F4:F2:38:74:22:2C:7E
    Fingerprint (SHA1):
        23:63:96:A7:B0:4A:36:00:FA:F6:2A:87:5D:B1:18:06:E7:C5:DE:84
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7065: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7066: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115887 (0x1e67c02f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:43 2017
            Not After : Tue May 10 11:58:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:c7:2f:f8:01:87:75:44:f7:d1:e2:f9:80:c2:a0:7a:
                    f8:0e:b5:4e:79:6a:ac:23:c8:e2:94:7f:60:74:63:b4:
                    e4:7d:0b:2f:41:53:88:3c:15:62:f8:fe:88:23:ad:ae:
                    03:4f:0d:43:7e:10:24:61:40:a0:93:2d:97:0e:94:fa:
                    3c:5e:02:1a:14:4e:19:9b:0f:1f:d0:e6:91:3e:d1:19:
                    bb:9e:12:14:83:c1:b4:e8:ec:78:6f:ce:97:6a:77:78:
                    f9:70:e3:e1:2e:01:d6:da:c1:58:06:8f:24:92:d8:01:
                    8a:6e:16:86:b6:d3:1b:13:72:23:81:c6:ef:b4:c1:2c:
                    d6:7d:0a:86:44:07:8f:73:1a:a2:20:a0:53:a5:3c:6a:
                    ef:0a:dd:e2:d7:20:ab:44:ff:7d:03:6d:4a:f7:96:ab:
                    81:9c:d2:80:0d:93:9f:7e:e1:f0:1a:fd:37:7b:a0:70:
                    d9:38:54:5e:e8:6d:eb:36:41:36:28:83:03:76:97:ef:
                    68:6f:c6:01:3b:5b:7a:b0:2b:15:4f:52:fc:da:ed:c6:
                    75:d2:68:ec:e4:76:95:16:de:0e:c8:4a:66:e4:b5:7c:
                    ea:73:46:18:6f:07:a2:86:1c:e2:eb:9a:a6:40:18:8f:
                    aa:a7:a7:74:3c:b1:88:b6:32:73:d5:a1:ca:67:a6:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:d5:70:82:0c:52:3c:30:a0:f7:f5:7f:78:13:2e:01:
        f0:75:b7:f1:1a:6c:61:fa:16:73:3e:da:0a:cf:a5:ec:
        b2:cb:a2:ca:0a:0e:f3:97:58:b6:04:ca:f5:11:0a:7a:
        a8:68:59:8e:5e:9f:d4:c6:75:6b:3d:c9:5d:38:04:ad:
        6c:28:90:99:b5:7b:75:5e:c2:08:6b:c2:7c:1c:cd:06:
        0e:54:2a:1e:ab:3d:34:5e:1d:7d:eb:e8:b4:d1:cc:6e:
        37:25:8a:ce:d3:7e:a2:51:f7:0d:8e:5c:66:13:ce:2f:
        41:2e:d5:5a:ad:72:58:dc:87:4b:57:12:0c:82:2e:a2:
        a6:99:fd:f6:51:63:b5:2b:10:f0:16:82:cc:58:50:ec:
        e9:87:e7:91:8d:dd:3e:76:ff:54:87:04:31:58:c9:40:
        c1:9c:93:39:43:c8:4b:58:4d:6b:bf:99:81:76:cd:55:
        35:07:f5:2c:df:9e:0f:c6:eb:a2:74:22:5c:69:fa:56:
        49:e6:ce:2a:4e:e7:bb:b9:be:76:15:6d:54:b4:49:8c:
        a5:7a:33:69:cb:25:ec:4a:5c:bf:88:da:33:7e:b8:76:
        50:36:e9:68:9e:74:e2:d7:01:6b:96:75:51:e3:af:b8:
        7c:ca:e6:51:9d:f4:b0:58:3a:ef:e6:50:5b:86:9a:ba
    Fingerprint (SHA-256):
        10:CE:C0:E1:E6:09:ED:60:A7:12:0D:F6:F6:CE:73:68:79:74:28:61:89:D0:23:F9:60:20:48:9B:CA:94:6E:87
    Fingerprint (SHA1):
        5F:A7:43:5B:FA:97:53:E0:95:EC:FA:89:4C:09:DC:4A:4D:FF:B4:CA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7067: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7068: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115888 (0x1e67c030)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:58:43 2017
            Not After : Tue May 10 11:58:43 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:b0:62:93:52:0d:20:99:79:3f:f1:f3:28:03:b6:fe:
                    d8:5c:ba:64:f4:db:83:f9:32:48:67:95:7f:04:fd:2f:
                    09:29:fd:47:8e:d0:41:88:69:4b:3f:50:4c:9a:32:25:
                    21:a4:0e:a5:72:25:2b:9e:42:f3:28:2d:dd:fe:5c:6d:
                    61:77:41:43:4a:a1:03:05:5b:a9:38:61:48:f6:13:85:
                    eb:cf:1e:d2:e7:46:61:e6:85:66:ce:50:55:c6:33:04:
                    ba:aa:1b:1f:2f:c3:9b:12:fa:38:d8:18:bc:b2:55:8a:
                    80:c8:f3:5a:44:bc:ac:97:dc:dd:6b:8a:60:1c:00:2b:
                    5d:bc:6b:c3:be:60:9c:66:3b:d9:88:13:39:54:71:f3:
                    32:e9:18:2c:35:a2:66:f9:34:fe:88:2b:50:58:74:fe:
                    57:9e:05:db:09:79:c9:42:e6:34:d9:2b:72:e6:e8:7b:
                    b7:46:b1:6a:31:76:a7:8c:70:21:2a:21:4c:0a:7f:df:
                    da:07:85:05:13:30:b3:8c:90:3a:a5:00:cc:71:56:8e:
                    dd:15:6d:71:c9:da:b3:55:58:e1:a8:2a:61:b7:95:5e:
                    b2:61:06:91:87:42:39:8c:e5:74:ef:5d:b6:cc:20:14:
                    40:5f:4c:ff:1d:1b:f1:82:30:9b:a7:40:00:8d:f6:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:47:14:71:06:52:24:85:e4:73:4f:07:b3:48:71:1b:
        e4:8e:e0:76:e4:e6:13:c2:70:64:fb:99:cc:4b:d3:28:
        ab:41:5a:2d:a2:2e:5d:94:21:ae:0a:5f:1b:bb:4d:32:
        01:17:04:6f:59:a5:0f:6b:76:35:38:da:7d:6b:fb:cc:
        77:b2:78:a0:fc:24:6d:0e:17:13:f9:03:8b:12:f7:b4:
        e5:b3:f5:7b:48:3c:16:ec:0b:5e:16:06:3c:f0:f6:0b:
        ec:03:e7:94:91:4e:49:f0:03:94:9b:d7:60:ba:bf:e1:
        e0:9b:17:31:7f:dc:13:13:c8:8e:ac:d9:29:81:43:87:
        e2:fe:72:a1:d6:53:a4:66:5e:70:51:7c:72:0e:01:6b:
        d9:fe:a7:2f:eb:01:ab:db:b8:75:5e:e0:cc:7f:18:95:
        9a:ab:48:c4:ee:28:dd:b4:e4:d5:3b:b5:d9:3d:25:66:
        48:d7:38:7a:36:26:86:f4:ce:f8:77:13:a0:88:65:b6:
        16:8c:ac:1d:7e:48:83:4a:34:8a:e6:ca:66:67:48:84:
        5b:44:da:cc:04:bd:7f:c3:5a:2d:f5:6a:23:19:e5:4d:
        be:7b:41:32:0c:3d:1a:50:6d:90:85:a5:be:e1:d5:c5:
        34:82:bb:e6:f8:1d:f2:69:f9:71:76:27:60:7d:c4:13
    Fingerprint (SHA-256):
        5D:46:4C:22:0D:A6:DC:61:D3:F4:3D:A3:E1:05:A2:AB:E9:23:1C:20:92:6F:45:D6:70:2D:D4:96:1F:E4:7C:4B
    Fingerprint (SHA1):
        D0:6D:25:1F:52:9D:BF:00:4E:F2:87:E5:62:EF:9C:4A:7C:54:A1:6A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7069: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7070: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7071: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7072: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7073: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115886 (0x1e67c02e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:42 2017
            Not After : Tue May 10 11:58:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:a3:9e:5a:29:ca:92:6a:6f:4e:b7:e1:82:d6:09:8d:
                    3e:87:09:32:22:df:43:42:63:82:8b:ce:a1:4a:0d:e0:
                    70:54:d2:a0:e0:d8:c3:8f:8e:6b:97:92:76:0b:70:4c:
                    4c:ac:91:f1:6b:2f:c6:6c:4f:78:c3:55:8d:73:54:b1:
                    4d:83:97:80:6c:e2:6f:38:92:8f:97:9e:04:af:bf:87:
                    71:7a:72:4e:89:72:7e:72:c8:7f:8f:a7:9d:a2:ee:2c:
                    a1:f8:e1:7c:4f:fe:30:3f:24:aa:cd:01:0a:77:f2:e6:
                    0c:be:64:1f:0c:23:ea:66:50:df:87:8f:ef:3d:ca:25:
                    c1:ff:20:c5:25:1d:24:7b:a5:04:f7:6b:b6:3c:a8:53:
                    fe:07:72:a0:61:53:92:f4:f6:72:d7:d7:f7:ba:32:be:
                    73:a2:ec:9e:16:ff:f4:02:55:21:a7:7b:22:df:4c:f3:
                    a8:64:a6:b4:64:30:8b:2b:08:8f:33:fe:4f:a1:b1:b7:
                    35:7c:52:8b:83:01:0d:3f:39:d5:85:b5:de:72:8a:ff:
                    b3:f1:eb:7e:6c:8b:8f:fa:72:00:89:97:6a:4e:40:36:
                    69:f9:6d:3e:dd:12:56:df:e4:9d:1b:fa:c1:6c:c2:59:
                    25:18:0a:f1:24:ba:e3:53:a8:10:d7:23:25:e8:e1:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:4d:8a:74:14:b0:92:81:9d:b0:a6:ff:fe:47:eb:50:
        f2:a4:b9:c6:0f:73:f0:09:11:b1:36:6a:cc:ff:6c:71:
        9f:29:03:49:6b:b4:d0:0f:df:d6:da:ec:99:6f:db:59:
        22:c4:95:78:4c:98:eb:b2:f4:66:d8:24:c2:d6:80:7d:
        21:85:47:d3:e9:f7:c9:b7:2f:ac:15:c7:4b:84:06:bd:
        e1:2f:eb:4e:81:4b:de:07:d8:f3:85:15:bf:a1:85:32:
        8f:d0:e6:df:1e:68:65:c4:4c:7c:cf:aa:85:ed:33:0c:
        ef:4b:85:b0:bc:8f:9c:18:01:5c:bc:08:e6:c2:57:a0:
        83:f7:90:fa:a6:19:91:83:14:7e:78:17:a0:8f:1b:b5:
        52:76:82:be:11:31:4e:e5:e8:58:78:90:75:1c:87:43:
        24:4d:1c:f8:99:78:a8:46:c1:c3:b5:77:ad:ef:c2:9d:
        94:a5:b2:d8:bd:94:03:99:f7:26:d1:f0:93:d2:4f:33:
        4d:4e:d3:53:5e:0f:7e:db:1d:97:66:d7:ae:a2:9a:ff:
        9b:cf:04:4c:0e:99:7a:61:41:9d:4c:1a:5a:5c:1a:0d:
        91:4e:b9:37:eb:22:f6:89:ec:94:8b:39:cf:13:54:a2:
        66:fd:b4:e5:92:52:07:90:cb:1d:aa:f7:a2:40:74:5b
    Fingerprint (SHA-256):
        9B:B9:D2:3F:E6:46:DB:44:65:C9:1A:17:76:EF:3A:76:97:78:2D:0B:2A:5F:07:A0:6D:F4:F2:38:74:22:2C:7E
    Fingerprint (SHA1):
        23:63:96:A7:B0:4A:36:00:FA:F6:2A:87:5D:B1:18:06:E7:C5:DE:84
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7074: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7075: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115887 (0x1e67c02f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:43 2017
            Not After : Tue May 10 11:58:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:c7:2f:f8:01:87:75:44:f7:d1:e2:f9:80:c2:a0:7a:
                    f8:0e:b5:4e:79:6a:ac:23:c8:e2:94:7f:60:74:63:b4:
                    e4:7d:0b:2f:41:53:88:3c:15:62:f8:fe:88:23:ad:ae:
                    03:4f:0d:43:7e:10:24:61:40:a0:93:2d:97:0e:94:fa:
                    3c:5e:02:1a:14:4e:19:9b:0f:1f:d0:e6:91:3e:d1:19:
                    bb:9e:12:14:83:c1:b4:e8:ec:78:6f:ce:97:6a:77:78:
                    f9:70:e3:e1:2e:01:d6:da:c1:58:06:8f:24:92:d8:01:
                    8a:6e:16:86:b6:d3:1b:13:72:23:81:c6:ef:b4:c1:2c:
                    d6:7d:0a:86:44:07:8f:73:1a:a2:20:a0:53:a5:3c:6a:
                    ef:0a:dd:e2:d7:20:ab:44:ff:7d:03:6d:4a:f7:96:ab:
                    81:9c:d2:80:0d:93:9f:7e:e1:f0:1a:fd:37:7b:a0:70:
                    d9:38:54:5e:e8:6d:eb:36:41:36:28:83:03:76:97:ef:
                    68:6f:c6:01:3b:5b:7a:b0:2b:15:4f:52:fc:da:ed:c6:
                    75:d2:68:ec:e4:76:95:16:de:0e:c8:4a:66:e4:b5:7c:
                    ea:73:46:18:6f:07:a2:86:1c:e2:eb:9a:a6:40:18:8f:
                    aa:a7:a7:74:3c:b1:88:b6:32:73:d5:a1:ca:67:a6:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:d5:70:82:0c:52:3c:30:a0:f7:f5:7f:78:13:2e:01:
        f0:75:b7:f1:1a:6c:61:fa:16:73:3e:da:0a:cf:a5:ec:
        b2:cb:a2:ca:0a:0e:f3:97:58:b6:04:ca:f5:11:0a:7a:
        a8:68:59:8e:5e:9f:d4:c6:75:6b:3d:c9:5d:38:04:ad:
        6c:28:90:99:b5:7b:75:5e:c2:08:6b:c2:7c:1c:cd:06:
        0e:54:2a:1e:ab:3d:34:5e:1d:7d:eb:e8:b4:d1:cc:6e:
        37:25:8a:ce:d3:7e:a2:51:f7:0d:8e:5c:66:13:ce:2f:
        41:2e:d5:5a:ad:72:58:dc:87:4b:57:12:0c:82:2e:a2:
        a6:99:fd:f6:51:63:b5:2b:10:f0:16:82:cc:58:50:ec:
        e9:87:e7:91:8d:dd:3e:76:ff:54:87:04:31:58:c9:40:
        c1:9c:93:39:43:c8:4b:58:4d:6b:bf:99:81:76:cd:55:
        35:07:f5:2c:df:9e:0f:c6:eb:a2:74:22:5c:69:fa:56:
        49:e6:ce:2a:4e:e7:bb:b9:be:76:15:6d:54:b4:49:8c:
        a5:7a:33:69:cb:25:ec:4a:5c:bf:88:da:33:7e:b8:76:
        50:36:e9:68:9e:74:e2:d7:01:6b:96:75:51:e3:af:b8:
        7c:ca:e6:51:9d:f4:b0:58:3a:ef:e6:50:5b:86:9a:ba
    Fingerprint (SHA-256):
        10:CE:C0:E1:E6:09:ED:60:A7:12:0D:F6:F6:CE:73:68:79:74:28:61:89:D0:23:F9:60:20:48:9B:CA:94:6E:87
    Fingerprint (SHA1):
        5F:A7:43:5B:FA:97:53:E0:95:EC:FA:89:4C:09:DC:4A:4D:FF:B4:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7076: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7077: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115888 (0x1e67c030)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:58:43 2017
            Not After : Tue May 10 11:58:43 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:b0:62:93:52:0d:20:99:79:3f:f1:f3:28:03:b6:fe:
                    d8:5c:ba:64:f4:db:83:f9:32:48:67:95:7f:04:fd:2f:
                    09:29:fd:47:8e:d0:41:88:69:4b:3f:50:4c:9a:32:25:
                    21:a4:0e:a5:72:25:2b:9e:42:f3:28:2d:dd:fe:5c:6d:
                    61:77:41:43:4a:a1:03:05:5b:a9:38:61:48:f6:13:85:
                    eb:cf:1e:d2:e7:46:61:e6:85:66:ce:50:55:c6:33:04:
                    ba:aa:1b:1f:2f:c3:9b:12:fa:38:d8:18:bc:b2:55:8a:
                    80:c8:f3:5a:44:bc:ac:97:dc:dd:6b:8a:60:1c:00:2b:
                    5d:bc:6b:c3:be:60:9c:66:3b:d9:88:13:39:54:71:f3:
                    32:e9:18:2c:35:a2:66:f9:34:fe:88:2b:50:58:74:fe:
                    57:9e:05:db:09:79:c9:42:e6:34:d9:2b:72:e6:e8:7b:
                    b7:46:b1:6a:31:76:a7:8c:70:21:2a:21:4c:0a:7f:df:
                    da:07:85:05:13:30:b3:8c:90:3a:a5:00:cc:71:56:8e:
                    dd:15:6d:71:c9:da:b3:55:58:e1:a8:2a:61:b7:95:5e:
                    b2:61:06:91:87:42:39:8c:e5:74:ef:5d:b6:cc:20:14:
                    40:5f:4c:ff:1d:1b:f1:82:30:9b:a7:40:00:8d:f6:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:47:14:71:06:52:24:85:e4:73:4f:07:b3:48:71:1b:
        e4:8e:e0:76:e4:e6:13:c2:70:64:fb:99:cc:4b:d3:28:
        ab:41:5a:2d:a2:2e:5d:94:21:ae:0a:5f:1b:bb:4d:32:
        01:17:04:6f:59:a5:0f:6b:76:35:38:da:7d:6b:fb:cc:
        77:b2:78:a0:fc:24:6d:0e:17:13:f9:03:8b:12:f7:b4:
        e5:b3:f5:7b:48:3c:16:ec:0b:5e:16:06:3c:f0:f6:0b:
        ec:03:e7:94:91:4e:49:f0:03:94:9b:d7:60:ba:bf:e1:
        e0:9b:17:31:7f:dc:13:13:c8:8e:ac:d9:29:81:43:87:
        e2:fe:72:a1:d6:53:a4:66:5e:70:51:7c:72:0e:01:6b:
        d9:fe:a7:2f:eb:01:ab:db:b8:75:5e:e0:cc:7f:18:95:
        9a:ab:48:c4:ee:28:dd:b4:e4:d5:3b:b5:d9:3d:25:66:
        48:d7:38:7a:36:26:86:f4:ce:f8:77:13:a0:88:65:b6:
        16:8c:ac:1d:7e:48:83:4a:34:8a:e6:ca:66:67:48:84:
        5b:44:da:cc:04:bd:7f:c3:5a:2d:f5:6a:23:19:e5:4d:
        be:7b:41:32:0c:3d:1a:50:6d:90:85:a5:be:e1:d5:c5:
        34:82:bb:e6:f8:1d:f2:69:f9:71:76:27:60:7d:c4:13
    Fingerprint (SHA-256):
        5D:46:4C:22:0D:A6:DC:61:D3:F4:3D:A3:E1:05:A2:AB:E9:23:1C:20:92:6F:45:D6:70:2D:D4:96:1F:E4:7C:4B
    Fingerprint (SHA1):
        D0:6D:25:1F:52:9D:BF:00:4E:F2:87:E5:62:EF:9C:4A:7C:54:A1:6A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7078: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7079: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115886 (0x1e67c02e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:42 2017
            Not After : Tue May 10 11:58:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:a3:9e:5a:29:ca:92:6a:6f:4e:b7:e1:82:d6:09:8d:
                    3e:87:09:32:22:df:43:42:63:82:8b:ce:a1:4a:0d:e0:
                    70:54:d2:a0:e0:d8:c3:8f:8e:6b:97:92:76:0b:70:4c:
                    4c:ac:91:f1:6b:2f:c6:6c:4f:78:c3:55:8d:73:54:b1:
                    4d:83:97:80:6c:e2:6f:38:92:8f:97:9e:04:af:bf:87:
                    71:7a:72:4e:89:72:7e:72:c8:7f:8f:a7:9d:a2:ee:2c:
                    a1:f8:e1:7c:4f:fe:30:3f:24:aa:cd:01:0a:77:f2:e6:
                    0c:be:64:1f:0c:23:ea:66:50:df:87:8f:ef:3d:ca:25:
                    c1:ff:20:c5:25:1d:24:7b:a5:04:f7:6b:b6:3c:a8:53:
                    fe:07:72:a0:61:53:92:f4:f6:72:d7:d7:f7:ba:32:be:
                    73:a2:ec:9e:16:ff:f4:02:55:21:a7:7b:22:df:4c:f3:
                    a8:64:a6:b4:64:30:8b:2b:08:8f:33:fe:4f:a1:b1:b7:
                    35:7c:52:8b:83:01:0d:3f:39:d5:85:b5:de:72:8a:ff:
                    b3:f1:eb:7e:6c:8b:8f:fa:72:00:89:97:6a:4e:40:36:
                    69:f9:6d:3e:dd:12:56:df:e4:9d:1b:fa:c1:6c:c2:59:
                    25:18:0a:f1:24:ba:e3:53:a8:10:d7:23:25:e8:e1:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:4d:8a:74:14:b0:92:81:9d:b0:a6:ff:fe:47:eb:50:
        f2:a4:b9:c6:0f:73:f0:09:11:b1:36:6a:cc:ff:6c:71:
        9f:29:03:49:6b:b4:d0:0f:df:d6:da:ec:99:6f:db:59:
        22:c4:95:78:4c:98:eb:b2:f4:66:d8:24:c2:d6:80:7d:
        21:85:47:d3:e9:f7:c9:b7:2f:ac:15:c7:4b:84:06:bd:
        e1:2f:eb:4e:81:4b:de:07:d8:f3:85:15:bf:a1:85:32:
        8f:d0:e6:df:1e:68:65:c4:4c:7c:cf:aa:85:ed:33:0c:
        ef:4b:85:b0:bc:8f:9c:18:01:5c:bc:08:e6:c2:57:a0:
        83:f7:90:fa:a6:19:91:83:14:7e:78:17:a0:8f:1b:b5:
        52:76:82:be:11:31:4e:e5:e8:58:78:90:75:1c:87:43:
        24:4d:1c:f8:99:78:a8:46:c1:c3:b5:77:ad:ef:c2:9d:
        94:a5:b2:d8:bd:94:03:99:f7:26:d1:f0:93:d2:4f:33:
        4d:4e:d3:53:5e:0f:7e:db:1d:97:66:d7:ae:a2:9a:ff:
        9b:cf:04:4c:0e:99:7a:61:41:9d:4c:1a:5a:5c:1a:0d:
        91:4e:b9:37:eb:22:f6:89:ec:94:8b:39:cf:13:54:a2:
        66:fd:b4:e5:92:52:07:90:cb:1d:aa:f7:a2:40:74:5b
    Fingerprint (SHA-256):
        9B:B9:D2:3F:E6:46:DB:44:65:C9:1A:17:76:EF:3A:76:97:78:2D:0B:2A:5F:07:A0:6D:F4:F2:38:74:22:2C:7E
    Fingerprint (SHA1):
        23:63:96:A7:B0:4A:36:00:FA:F6:2A:87:5D:B1:18:06:E7:C5:DE:84
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7080: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115886 (0x1e67c02e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:42 2017
            Not After : Tue May 10 11:58:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:a3:9e:5a:29:ca:92:6a:6f:4e:b7:e1:82:d6:09:8d:
                    3e:87:09:32:22:df:43:42:63:82:8b:ce:a1:4a:0d:e0:
                    70:54:d2:a0:e0:d8:c3:8f:8e:6b:97:92:76:0b:70:4c:
                    4c:ac:91:f1:6b:2f:c6:6c:4f:78:c3:55:8d:73:54:b1:
                    4d:83:97:80:6c:e2:6f:38:92:8f:97:9e:04:af:bf:87:
                    71:7a:72:4e:89:72:7e:72:c8:7f:8f:a7:9d:a2:ee:2c:
                    a1:f8:e1:7c:4f:fe:30:3f:24:aa:cd:01:0a:77:f2:e6:
                    0c:be:64:1f:0c:23:ea:66:50:df:87:8f:ef:3d:ca:25:
                    c1:ff:20:c5:25:1d:24:7b:a5:04:f7:6b:b6:3c:a8:53:
                    fe:07:72:a0:61:53:92:f4:f6:72:d7:d7:f7:ba:32:be:
                    73:a2:ec:9e:16:ff:f4:02:55:21:a7:7b:22:df:4c:f3:
                    a8:64:a6:b4:64:30:8b:2b:08:8f:33:fe:4f:a1:b1:b7:
                    35:7c:52:8b:83:01:0d:3f:39:d5:85:b5:de:72:8a:ff:
                    b3:f1:eb:7e:6c:8b:8f:fa:72:00:89:97:6a:4e:40:36:
                    69:f9:6d:3e:dd:12:56:df:e4:9d:1b:fa:c1:6c:c2:59:
                    25:18:0a:f1:24:ba:e3:53:a8:10:d7:23:25:e8:e1:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:4d:8a:74:14:b0:92:81:9d:b0:a6:ff:fe:47:eb:50:
        f2:a4:b9:c6:0f:73:f0:09:11:b1:36:6a:cc:ff:6c:71:
        9f:29:03:49:6b:b4:d0:0f:df:d6:da:ec:99:6f:db:59:
        22:c4:95:78:4c:98:eb:b2:f4:66:d8:24:c2:d6:80:7d:
        21:85:47:d3:e9:f7:c9:b7:2f:ac:15:c7:4b:84:06:bd:
        e1:2f:eb:4e:81:4b:de:07:d8:f3:85:15:bf:a1:85:32:
        8f:d0:e6:df:1e:68:65:c4:4c:7c:cf:aa:85:ed:33:0c:
        ef:4b:85:b0:bc:8f:9c:18:01:5c:bc:08:e6:c2:57:a0:
        83:f7:90:fa:a6:19:91:83:14:7e:78:17:a0:8f:1b:b5:
        52:76:82:be:11:31:4e:e5:e8:58:78:90:75:1c:87:43:
        24:4d:1c:f8:99:78:a8:46:c1:c3:b5:77:ad:ef:c2:9d:
        94:a5:b2:d8:bd:94:03:99:f7:26:d1:f0:93:d2:4f:33:
        4d:4e:d3:53:5e:0f:7e:db:1d:97:66:d7:ae:a2:9a:ff:
        9b:cf:04:4c:0e:99:7a:61:41:9d:4c:1a:5a:5c:1a:0d:
        91:4e:b9:37:eb:22:f6:89:ec:94:8b:39:cf:13:54:a2:
        66:fd:b4:e5:92:52:07:90:cb:1d:aa:f7:a2:40:74:5b
    Fingerprint (SHA-256):
        9B:B9:D2:3F:E6:46:DB:44:65:C9:1A:17:76:EF:3A:76:97:78:2D:0B:2A:5F:07:A0:6D:F4:F2:38:74:22:2C:7E
    Fingerprint (SHA1):
        23:63:96:A7:B0:4A:36:00:FA:F6:2A:87:5D:B1:18:06:E7:C5:DE:84
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7081: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115887 (0x1e67c02f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:43 2017
            Not After : Tue May 10 11:58:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:c7:2f:f8:01:87:75:44:f7:d1:e2:f9:80:c2:a0:7a:
                    f8:0e:b5:4e:79:6a:ac:23:c8:e2:94:7f:60:74:63:b4:
                    e4:7d:0b:2f:41:53:88:3c:15:62:f8:fe:88:23:ad:ae:
                    03:4f:0d:43:7e:10:24:61:40:a0:93:2d:97:0e:94:fa:
                    3c:5e:02:1a:14:4e:19:9b:0f:1f:d0:e6:91:3e:d1:19:
                    bb:9e:12:14:83:c1:b4:e8:ec:78:6f:ce:97:6a:77:78:
                    f9:70:e3:e1:2e:01:d6:da:c1:58:06:8f:24:92:d8:01:
                    8a:6e:16:86:b6:d3:1b:13:72:23:81:c6:ef:b4:c1:2c:
                    d6:7d:0a:86:44:07:8f:73:1a:a2:20:a0:53:a5:3c:6a:
                    ef:0a:dd:e2:d7:20:ab:44:ff:7d:03:6d:4a:f7:96:ab:
                    81:9c:d2:80:0d:93:9f:7e:e1:f0:1a:fd:37:7b:a0:70:
                    d9:38:54:5e:e8:6d:eb:36:41:36:28:83:03:76:97:ef:
                    68:6f:c6:01:3b:5b:7a:b0:2b:15:4f:52:fc:da:ed:c6:
                    75:d2:68:ec:e4:76:95:16:de:0e:c8:4a:66:e4:b5:7c:
                    ea:73:46:18:6f:07:a2:86:1c:e2:eb:9a:a6:40:18:8f:
                    aa:a7:a7:74:3c:b1:88:b6:32:73:d5:a1:ca:67:a6:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:d5:70:82:0c:52:3c:30:a0:f7:f5:7f:78:13:2e:01:
        f0:75:b7:f1:1a:6c:61:fa:16:73:3e:da:0a:cf:a5:ec:
        b2:cb:a2:ca:0a:0e:f3:97:58:b6:04:ca:f5:11:0a:7a:
        a8:68:59:8e:5e:9f:d4:c6:75:6b:3d:c9:5d:38:04:ad:
        6c:28:90:99:b5:7b:75:5e:c2:08:6b:c2:7c:1c:cd:06:
        0e:54:2a:1e:ab:3d:34:5e:1d:7d:eb:e8:b4:d1:cc:6e:
        37:25:8a:ce:d3:7e:a2:51:f7:0d:8e:5c:66:13:ce:2f:
        41:2e:d5:5a:ad:72:58:dc:87:4b:57:12:0c:82:2e:a2:
        a6:99:fd:f6:51:63:b5:2b:10:f0:16:82:cc:58:50:ec:
        e9:87:e7:91:8d:dd:3e:76:ff:54:87:04:31:58:c9:40:
        c1:9c:93:39:43:c8:4b:58:4d:6b:bf:99:81:76:cd:55:
        35:07:f5:2c:df:9e:0f:c6:eb:a2:74:22:5c:69:fa:56:
        49:e6:ce:2a:4e:e7:bb:b9:be:76:15:6d:54:b4:49:8c:
        a5:7a:33:69:cb:25:ec:4a:5c:bf:88:da:33:7e:b8:76:
        50:36:e9:68:9e:74:e2:d7:01:6b:96:75:51:e3:af:b8:
        7c:ca:e6:51:9d:f4:b0:58:3a:ef:e6:50:5b:86:9a:ba
    Fingerprint (SHA-256):
        10:CE:C0:E1:E6:09:ED:60:A7:12:0D:F6:F6:CE:73:68:79:74:28:61:89:D0:23:F9:60:20:48:9B:CA:94:6E:87
    Fingerprint (SHA1):
        5F:A7:43:5B:FA:97:53:E0:95:EC:FA:89:4C:09:DC:4A:4D:FF:B4:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7082: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115887 (0x1e67c02f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:58:43 2017
            Not After : Tue May 10 11:58:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:c7:2f:f8:01:87:75:44:f7:d1:e2:f9:80:c2:a0:7a:
                    f8:0e:b5:4e:79:6a:ac:23:c8:e2:94:7f:60:74:63:b4:
                    e4:7d:0b:2f:41:53:88:3c:15:62:f8:fe:88:23:ad:ae:
                    03:4f:0d:43:7e:10:24:61:40:a0:93:2d:97:0e:94:fa:
                    3c:5e:02:1a:14:4e:19:9b:0f:1f:d0:e6:91:3e:d1:19:
                    bb:9e:12:14:83:c1:b4:e8:ec:78:6f:ce:97:6a:77:78:
                    f9:70:e3:e1:2e:01:d6:da:c1:58:06:8f:24:92:d8:01:
                    8a:6e:16:86:b6:d3:1b:13:72:23:81:c6:ef:b4:c1:2c:
                    d6:7d:0a:86:44:07:8f:73:1a:a2:20:a0:53:a5:3c:6a:
                    ef:0a:dd:e2:d7:20:ab:44:ff:7d:03:6d:4a:f7:96:ab:
                    81:9c:d2:80:0d:93:9f:7e:e1:f0:1a:fd:37:7b:a0:70:
                    d9:38:54:5e:e8:6d:eb:36:41:36:28:83:03:76:97:ef:
                    68:6f:c6:01:3b:5b:7a:b0:2b:15:4f:52:fc:da:ed:c6:
                    75:d2:68:ec:e4:76:95:16:de:0e:c8:4a:66:e4:b5:7c:
                    ea:73:46:18:6f:07:a2:86:1c:e2:eb:9a:a6:40:18:8f:
                    aa:a7:a7:74:3c:b1:88:b6:32:73:d5:a1:ca:67:a6:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:d5:70:82:0c:52:3c:30:a0:f7:f5:7f:78:13:2e:01:
        f0:75:b7:f1:1a:6c:61:fa:16:73:3e:da:0a:cf:a5:ec:
        b2:cb:a2:ca:0a:0e:f3:97:58:b6:04:ca:f5:11:0a:7a:
        a8:68:59:8e:5e:9f:d4:c6:75:6b:3d:c9:5d:38:04:ad:
        6c:28:90:99:b5:7b:75:5e:c2:08:6b:c2:7c:1c:cd:06:
        0e:54:2a:1e:ab:3d:34:5e:1d:7d:eb:e8:b4:d1:cc:6e:
        37:25:8a:ce:d3:7e:a2:51:f7:0d:8e:5c:66:13:ce:2f:
        41:2e:d5:5a:ad:72:58:dc:87:4b:57:12:0c:82:2e:a2:
        a6:99:fd:f6:51:63:b5:2b:10:f0:16:82:cc:58:50:ec:
        e9:87:e7:91:8d:dd:3e:76:ff:54:87:04:31:58:c9:40:
        c1:9c:93:39:43:c8:4b:58:4d:6b:bf:99:81:76:cd:55:
        35:07:f5:2c:df:9e:0f:c6:eb:a2:74:22:5c:69:fa:56:
        49:e6:ce:2a:4e:e7:bb:b9:be:76:15:6d:54:b4:49:8c:
        a5:7a:33:69:cb:25:ec:4a:5c:bf:88:da:33:7e:b8:76:
        50:36:e9:68:9e:74:e2:d7:01:6b:96:75:51:e3:af:b8:
        7c:ca:e6:51:9d:f4:b0:58:3a:ef:e6:50:5b:86:9a:ba
    Fingerprint (SHA-256):
        10:CE:C0:E1:E6:09:ED:60:A7:12:0D:F6:F6:CE:73:68:79:74:28:61:89:D0:23:F9:60:20:48:9B:CA:94:6E:87
    Fingerprint (SHA1):
        5F:A7:43:5B:FA:97:53:E0:95:EC:FA:89:4C:09:DC:4A:4D:FF:B4:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7083: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115888 (0x1e67c030)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:58:43 2017
            Not After : Tue May 10 11:58:43 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:b0:62:93:52:0d:20:99:79:3f:f1:f3:28:03:b6:fe:
                    d8:5c:ba:64:f4:db:83:f9:32:48:67:95:7f:04:fd:2f:
                    09:29:fd:47:8e:d0:41:88:69:4b:3f:50:4c:9a:32:25:
                    21:a4:0e:a5:72:25:2b:9e:42:f3:28:2d:dd:fe:5c:6d:
                    61:77:41:43:4a:a1:03:05:5b:a9:38:61:48:f6:13:85:
                    eb:cf:1e:d2:e7:46:61:e6:85:66:ce:50:55:c6:33:04:
                    ba:aa:1b:1f:2f:c3:9b:12:fa:38:d8:18:bc:b2:55:8a:
                    80:c8:f3:5a:44:bc:ac:97:dc:dd:6b:8a:60:1c:00:2b:
                    5d:bc:6b:c3:be:60:9c:66:3b:d9:88:13:39:54:71:f3:
                    32:e9:18:2c:35:a2:66:f9:34:fe:88:2b:50:58:74:fe:
                    57:9e:05:db:09:79:c9:42:e6:34:d9:2b:72:e6:e8:7b:
                    b7:46:b1:6a:31:76:a7:8c:70:21:2a:21:4c:0a:7f:df:
                    da:07:85:05:13:30:b3:8c:90:3a:a5:00:cc:71:56:8e:
                    dd:15:6d:71:c9:da:b3:55:58:e1:a8:2a:61:b7:95:5e:
                    b2:61:06:91:87:42:39:8c:e5:74:ef:5d:b6:cc:20:14:
                    40:5f:4c:ff:1d:1b:f1:82:30:9b:a7:40:00:8d:f6:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:47:14:71:06:52:24:85:e4:73:4f:07:b3:48:71:1b:
        e4:8e:e0:76:e4:e6:13:c2:70:64:fb:99:cc:4b:d3:28:
        ab:41:5a:2d:a2:2e:5d:94:21:ae:0a:5f:1b:bb:4d:32:
        01:17:04:6f:59:a5:0f:6b:76:35:38:da:7d:6b:fb:cc:
        77:b2:78:a0:fc:24:6d:0e:17:13:f9:03:8b:12:f7:b4:
        e5:b3:f5:7b:48:3c:16:ec:0b:5e:16:06:3c:f0:f6:0b:
        ec:03:e7:94:91:4e:49:f0:03:94:9b:d7:60:ba:bf:e1:
        e0:9b:17:31:7f:dc:13:13:c8:8e:ac:d9:29:81:43:87:
        e2:fe:72:a1:d6:53:a4:66:5e:70:51:7c:72:0e:01:6b:
        d9:fe:a7:2f:eb:01:ab:db:b8:75:5e:e0:cc:7f:18:95:
        9a:ab:48:c4:ee:28:dd:b4:e4:d5:3b:b5:d9:3d:25:66:
        48:d7:38:7a:36:26:86:f4:ce:f8:77:13:a0:88:65:b6:
        16:8c:ac:1d:7e:48:83:4a:34:8a:e6:ca:66:67:48:84:
        5b:44:da:cc:04:bd:7f:c3:5a:2d:f5:6a:23:19:e5:4d:
        be:7b:41:32:0c:3d:1a:50:6d:90:85:a5:be:e1:d5:c5:
        34:82:bb:e6:f8:1d:f2:69:f9:71:76:27:60:7d:c4:13
    Fingerprint (SHA-256):
        5D:46:4C:22:0D:A6:DC:61:D3:F4:3D:A3:E1:05:A2:AB:E9:23:1C:20:92:6F:45:D6:70:2D:D4:96:1F:E4:7C:4B
    Fingerprint (SHA1):
        D0:6D:25:1F:52:9D:BF:00:4E:F2:87:E5:62:EF:9C:4A:7C:54:A1:6A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7084: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115888 (0x1e67c030)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:58:43 2017
            Not After : Tue May 10 11:58:43 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:b0:62:93:52:0d:20:99:79:3f:f1:f3:28:03:b6:fe:
                    d8:5c:ba:64:f4:db:83:f9:32:48:67:95:7f:04:fd:2f:
                    09:29:fd:47:8e:d0:41:88:69:4b:3f:50:4c:9a:32:25:
                    21:a4:0e:a5:72:25:2b:9e:42:f3:28:2d:dd:fe:5c:6d:
                    61:77:41:43:4a:a1:03:05:5b:a9:38:61:48:f6:13:85:
                    eb:cf:1e:d2:e7:46:61:e6:85:66:ce:50:55:c6:33:04:
                    ba:aa:1b:1f:2f:c3:9b:12:fa:38:d8:18:bc:b2:55:8a:
                    80:c8:f3:5a:44:bc:ac:97:dc:dd:6b:8a:60:1c:00:2b:
                    5d:bc:6b:c3:be:60:9c:66:3b:d9:88:13:39:54:71:f3:
                    32:e9:18:2c:35:a2:66:f9:34:fe:88:2b:50:58:74:fe:
                    57:9e:05:db:09:79:c9:42:e6:34:d9:2b:72:e6:e8:7b:
                    b7:46:b1:6a:31:76:a7:8c:70:21:2a:21:4c:0a:7f:df:
                    da:07:85:05:13:30:b3:8c:90:3a:a5:00:cc:71:56:8e:
                    dd:15:6d:71:c9:da:b3:55:58:e1:a8:2a:61:b7:95:5e:
                    b2:61:06:91:87:42:39:8c:e5:74:ef:5d:b6:cc:20:14:
                    40:5f:4c:ff:1d:1b:f1:82:30:9b:a7:40:00:8d:f6:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:47:14:71:06:52:24:85:e4:73:4f:07:b3:48:71:1b:
        e4:8e:e0:76:e4:e6:13:c2:70:64:fb:99:cc:4b:d3:28:
        ab:41:5a:2d:a2:2e:5d:94:21:ae:0a:5f:1b:bb:4d:32:
        01:17:04:6f:59:a5:0f:6b:76:35:38:da:7d:6b:fb:cc:
        77:b2:78:a0:fc:24:6d:0e:17:13:f9:03:8b:12:f7:b4:
        e5:b3:f5:7b:48:3c:16:ec:0b:5e:16:06:3c:f0:f6:0b:
        ec:03:e7:94:91:4e:49:f0:03:94:9b:d7:60:ba:bf:e1:
        e0:9b:17:31:7f:dc:13:13:c8:8e:ac:d9:29:81:43:87:
        e2:fe:72:a1:d6:53:a4:66:5e:70:51:7c:72:0e:01:6b:
        d9:fe:a7:2f:eb:01:ab:db:b8:75:5e:e0:cc:7f:18:95:
        9a:ab:48:c4:ee:28:dd:b4:e4:d5:3b:b5:d9:3d:25:66:
        48:d7:38:7a:36:26:86:f4:ce:f8:77:13:a0:88:65:b6:
        16:8c:ac:1d:7e:48:83:4a:34:8a:e6:ca:66:67:48:84:
        5b:44:da:cc:04:bd:7f:c3:5a:2d:f5:6a:23:19:e5:4d:
        be:7b:41:32:0c:3d:1a:50:6d:90:85:a5:be:e1:d5:c5:
        34:82:bb:e6:f8:1d:f2:69:f9:71:76:27:60:7d:c4:13
    Fingerprint (SHA-256):
        5D:46:4C:22:0D:A6:DC:61:D3:F4:3D:A3:E1:05:A2:AB:E9:23:1C:20:92:6F:45:D6:70:2D:D4:96:1F:E4:7C:4B
    Fingerprint (SHA1):
        D0:6D:25:1F:52:9D:BF:00:4E:F2:87:E5:62:EF:9C:4A:7C:54:A1:6A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7085: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7086: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115891 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7087: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7088: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7089: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7090: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510115892   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7091: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7092: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7093: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7094: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115893   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7095: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7096: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7097: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7098: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 510115894   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7099: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7100: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7101: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7102: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510115895   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7103: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7104: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7105: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7106: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510115896   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7107: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7108: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #7109: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7110: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 510115897   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7111: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7112: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7113: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #7114: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #7115: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7116: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #7117: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115891 (0x1e67c033)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:44 2017
            Not After : Tue May 10 11:58:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:38:a0:84:5f:b8:1b:66:94:d0:bc:37:80:71:fa:be:
                    21:61:6c:3b:a0:1a:23:08:68:23:67:a6:ef:63:a9:a9:
                    a6:3a:ba:38:e7:b1:d8:0c:ef:58:fc:8a:ba:8b:13:09:
                    dc:e6:bf:eb:17:1b:86:db:e9:5b:82:2e:af:a0:bf:13:
                    7c:4d:9a:74:23:2e:6d:86:c7:d4:ed:e1:2a:4b:c1:78:
                    fb:9e:fa:e6:9e:c0:d0:d0:0f:fe:ea:a6:01:e6:62:e8:
                    f9:c6:32:f1:24:97:4d:3c:41:30:90:9e:6b:eb:42:15:
                    98:2a:33:72:e8:01:cc:d4:d3:1a:c1:c4:e4:b8:34:16:
                    46:73:e2:61:e0:08:36:8c:2a:34:95:4f:ff:bd:3c:39:
                    18:2a:4d:0d:42:d8:d8:6b:f8:4b:e1:7a:40:13:b5:b1:
                    de:55:89:69:f0:ce:60:3d:fb:9c:e7:c2:73:6b:44:9c:
                    2c:d2:07:57:45:68:5f:76:d9:39:89:c8:74:aa:4f:78:
                    cd:55:a2:8b:ff:4a:49:0b:15:c5:82:22:d5:b4:4b:e2:
                    a1:0e:e9:7e:7b:50:d8:f7:7a:3c:96:2f:1e:d8:83:76:
                    ce:ef:50:18:e0:6e:70:ff:17:ac:d6:e2:6a:2a:e3:c0:
                    db:b8:7a:96:25:db:26:86:1b:88:93:ad:ea:27:bf:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:f7:df:a7:c1:c2:71:4d:6a:41:61:ee:87:45:d3:75:
        0f:ad:25:1f:fe:c7:0d:ed:4b:0e:f7:da:01:3f:d5:0f:
        da:df:d7:d9:48:61:8b:e1:ee:6b:13:10:a9:89:83:58:
        03:dc:75:0b:9b:a3:8b:ea:c1:14:77:3e:31:01:ac:2e:
        41:97:64:2b:8e:e1:d2:22:5b:39:ef:04:2d:57:72:cf:
        cf:3c:0f:6a:20:0d:68:fd:12:6e:b4:f4:46:ba:da:33:
        9c:00:25:5c:be:76:88:70:40:72:34:83:77:96:a5:eb:
        1d:54:a5:3c:0d:cb:89:a2:60:47:a3:6d:22:0a:72:e2:
        67:c5:23:fa:e9:6b:26:42:41:d6:5f:3b:91:23:8a:a8:
        ce:2e:b7:17:47:48:9a:52:85:b9:c2:48:93:ef:d5:ae:
        72:fc:94:f2:fe:00:27:c8:13:22:ec:1e:96:b5:7d:fb:
        5a:62:45:79:6d:a1:8d:c5:04:9b:c5:85:16:5a:04:dc:
        77:64:8b:30:9a:8e:2f:98:e3:e2:12:3d:7d:cf:20:33:
        aa:c5:de:45:5f:50:fd:ab:cd:01:30:e7:08:a0:a7:ea:
        cd:3a:71:ea:c9:3c:8b:dc:48:73:99:f3:39:7e:49:79:
        60:a7:6f:74:32:14:ec:1d:6f:b2:16:00:10:4b:bd:9b
    Fingerprint (SHA-256):
        86:6B:F2:A0:32:10:B6:26:F7:B3:0B:AF:10:76:9D:19:D9:8D:FB:F9:C4:00:80:C6:BE:0A:C6:73:D7:B4:75:EE
    Fingerprint (SHA1):
        1F:A2:8A:6F:6D:42:C8:EF:18:1D:BB:7E:68:C3:D2:4E:F2:82:D7:5F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7118: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7119: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7120: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7121: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115891 (0x1e67c033)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:44 2017
            Not After : Tue May 10 11:58:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:38:a0:84:5f:b8:1b:66:94:d0:bc:37:80:71:fa:be:
                    21:61:6c:3b:a0:1a:23:08:68:23:67:a6:ef:63:a9:a9:
                    a6:3a:ba:38:e7:b1:d8:0c:ef:58:fc:8a:ba:8b:13:09:
                    dc:e6:bf:eb:17:1b:86:db:e9:5b:82:2e:af:a0:bf:13:
                    7c:4d:9a:74:23:2e:6d:86:c7:d4:ed:e1:2a:4b:c1:78:
                    fb:9e:fa:e6:9e:c0:d0:d0:0f:fe:ea:a6:01:e6:62:e8:
                    f9:c6:32:f1:24:97:4d:3c:41:30:90:9e:6b:eb:42:15:
                    98:2a:33:72:e8:01:cc:d4:d3:1a:c1:c4:e4:b8:34:16:
                    46:73:e2:61:e0:08:36:8c:2a:34:95:4f:ff:bd:3c:39:
                    18:2a:4d:0d:42:d8:d8:6b:f8:4b:e1:7a:40:13:b5:b1:
                    de:55:89:69:f0:ce:60:3d:fb:9c:e7:c2:73:6b:44:9c:
                    2c:d2:07:57:45:68:5f:76:d9:39:89:c8:74:aa:4f:78:
                    cd:55:a2:8b:ff:4a:49:0b:15:c5:82:22:d5:b4:4b:e2:
                    a1:0e:e9:7e:7b:50:d8:f7:7a:3c:96:2f:1e:d8:83:76:
                    ce:ef:50:18:e0:6e:70:ff:17:ac:d6:e2:6a:2a:e3:c0:
                    db:b8:7a:96:25:db:26:86:1b:88:93:ad:ea:27:bf:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:f7:df:a7:c1:c2:71:4d:6a:41:61:ee:87:45:d3:75:
        0f:ad:25:1f:fe:c7:0d:ed:4b:0e:f7:da:01:3f:d5:0f:
        da:df:d7:d9:48:61:8b:e1:ee:6b:13:10:a9:89:83:58:
        03:dc:75:0b:9b:a3:8b:ea:c1:14:77:3e:31:01:ac:2e:
        41:97:64:2b:8e:e1:d2:22:5b:39:ef:04:2d:57:72:cf:
        cf:3c:0f:6a:20:0d:68:fd:12:6e:b4:f4:46:ba:da:33:
        9c:00:25:5c:be:76:88:70:40:72:34:83:77:96:a5:eb:
        1d:54:a5:3c:0d:cb:89:a2:60:47:a3:6d:22:0a:72:e2:
        67:c5:23:fa:e9:6b:26:42:41:d6:5f:3b:91:23:8a:a8:
        ce:2e:b7:17:47:48:9a:52:85:b9:c2:48:93:ef:d5:ae:
        72:fc:94:f2:fe:00:27:c8:13:22:ec:1e:96:b5:7d:fb:
        5a:62:45:79:6d:a1:8d:c5:04:9b:c5:85:16:5a:04:dc:
        77:64:8b:30:9a:8e:2f:98:e3:e2:12:3d:7d:cf:20:33:
        aa:c5:de:45:5f:50:fd:ab:cd:01:30:e7:08:a0:a7:ea:
        cd:3a:71:ea:c9:3c:8b:dc:48:73:99:f3:39:7e:49:79:
        60:a7:6f:74:32:14:ec:1d:6f:b2:16:00:10:4b:bd:9b
    Fingerprint (SHA-256):
        86:6B:F2:A0:32:10:B6:26:F7:B3:0B:AF:10:76:9D:19:D9:8D:FB:F9:C4:00:80:C6:BE:0A:C6:73:D7:B4:75:EE
    Fingerprint (SHA1):
        1F:A2:8A:6F:6D:42:C8:EF:18:1D:BB:7E:68:C3:D2:4E:F2:82:D7:5F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7122: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7123: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7124: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115898 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7125: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7126: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7127: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7128: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510115899   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7129: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7130: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #7131: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7132: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 510115900   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7133: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7134: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #7135: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7136: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 510115901   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7137: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7138: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7139: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7140: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 510115902   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7141: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7142: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #7143: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7144: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 510115903   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7145: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7146: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #7147: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7148: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 510115904   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7149: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7150: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7151: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7152: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 510115905   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7153: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7154: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #7155: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7156: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 510115906   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7157: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7158: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #7159: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7160: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 510115907   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7161: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7162: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7163: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7164: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 510115908   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7165: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7166: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #7167: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7168: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 510115909   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7169: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7170: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #7171: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7172: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 510115910   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7173: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7174: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7175: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7176: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 510115911   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7177: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7178: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #7179: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7180: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 510115912   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7181: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7182: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #7183: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7184: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 510115913   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7185: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7186: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #7187: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7188: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 510115914   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7189: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7190: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #7191: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7192: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 510115915   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7193: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7194: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #7195: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7196: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 510115916   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7197: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7198: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #7199: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7200: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 510115917   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7201: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7202: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #7203: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7204: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 510115918   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7205: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7206: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #7207: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7208: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 510115919   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7209: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7210: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #7211: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7212: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 510115920   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7213: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7214: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #7215: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7216: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 510115921   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7217: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7218: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #7219: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7220: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 510115922   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7221: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7222: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #7223: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7224: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 510115923   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7225: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7226: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #7227: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7228: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 510115924   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7229: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7230: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #7231: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7232: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 510115925   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7233: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7234: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #7235: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7236: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 510115926   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7237: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7238: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #7239: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7240: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 510115927   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7241: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7242: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7243: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115898 (0x1e67c03a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:47 2017
            Not After : Tue May 10 11:58:47 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:b7:73:1c:dd:f9:ea:c4:8e:3d:d2:3a:99:ee:f5:32:
                    24:00:d4:d4:ff:6f:32:e0:f2:73:0e:d3:56:2c:a5:4b:
                    db:6f:4e:e9:3a:a8:d9:94:d7:03:24:2f:76:11:ef:22:
                    93:45:cf:3d:90:bb:6c:91:04:3d:e2:17:79:d9:5e:67:
                    ea:72:53:f9:6f:3d:b5:37:d7:c6:02:5f:30:b3:46:cd:
                    db:81:13:4d:ba:c2:bb:da:42:83:28:00:31:d2:18:af:
                    fa:dc:6e:57:09:47:39:83:84:aa:54:9f:3a:48:12:a5:
                    42:58:a4:1b:82:68:31:db:d5:20:74:6f:81:64:fc:8f:
                    3c:a9:be:99:86:db:15:dc:f2:b1:03:b6:9c:4f:a6:00:
                    00:17:33:79:57:34:9b:77:04:78:9f:ff:b5:11:4d:23:
                    68:1f:2b:79:f3:ee:33:ac:17:5e:67:d8:63:ef:20:62:
                    dc:4b:7f:3f:7c:c0:7d:f5:6a:85:09:69:9e:aa:f3:80:
                    9a:62:58:30:c0:fb:1e:9e:82:88:3d:41:71:16:59:00:
                    4e:ec:14:08:2d:17:72:57:f1:cc:37:87:37:9f:e7:29:
                    d2:c8:04:3d:b0:40:3d:ff:17:d0:80:6c:b0:74:bd:3a:
                    dc:87:7f:10:25:63:36:be:00:d0:79:3e:ea:70:e9:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:c5:ee:24:2a:54:65:a7:93:8a:16:01:2f:99:a9:cf:
        4c:ae:75:24:11:ed:57:de:74:e4:d3:f3:bf:47:fb:8c:
        24:7a:0a:68:2f:ff:47:2f:92:cf:e7:f4:2c:67:a8:0c:
        40:93:79:87:37:a4:3c:6a:69:96:10:9e:69:4e:2a:0e:
        e3:75:0e:1d:ce:11:4f:01:aa:e8:91:59:26:77:cd:de:
        26:3e:e9:e8:98:48:69:eb:dc:cb:e2:cd:67:ad:ad:9c:
        71:d9:dd:cf:f6:5f:1d:f6:a4:79:97:62:cc:cf:61:ac:
        13:d8:dd:a3:60:c4:d3:aa:8b:d9:c9:4a:99:8c:4a:f9:
        93:c2:dc:0c:d6:d5:db:94:6a:22:e9:8e:82:70:9e:d4:
        99:64:fc:ef:cd:db:b5:fe:e6:4d:5d:88:e7:f1:1d:59:
        3a:99:2f:d7:bb:7e:11:5c:6e:3e:25:24:d9:a0:ab:02:
        db:f5:73:7b:c7:3d:fb:85:17:7c:93:f7:75:63:17:b8:
        c7:ac:da:f4:a6:90:53:29:c3:72:0c:bb:e2:01:5a:6b:
        2f:74:34:b0:87:7b:01:54:64:53:eb:eb:40:94:81:1f:
        53:62:e9:5e:e7:86:07:d6:e4:46:c6:67:14:0d:e5:a9:
        17:48:b8:9a:d2:52:35:a7:d1:d3:99:32:0e:b7:ca:12
    Fingerprint (SHA-256):
        0B:2C:D5:CF:6E:25:9F:8F:7C:10:20:1D:CB:A6:45:62:85:65:80:30:E4:EA:E0:C6:17:D4:34:72:9A:0F:2D:F1
    Fingerprint (SHA1):
        78:CE:36:8E:D5:46:8A:C7:22:B6:29:8A:81:D0:FE:67:27:68:F6:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7244: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7245: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115898 (0x1e67c03a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:47 2017
            Not After : Tue May 10 11:58:47 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:b7:73:1c:dd:f9:ea:c4:8e:3d:d2:3a:99:ee:f5:32:
                    24:00:d4:d4:ff:6f:32:e0:f2:73:0e:d3:56:2c:a5:4b:
                    db:6f:4e:e9:3a:a8:d9:94:d7:03:24:2f:76:11:ef:22:
                    93:45:cf:3d:90:bb:6c:91:04:3d:e2:17:79:d9:5e:67:
                    ea:72:53:f9:6f:3d:b5:37:d7:c6:02:5f:30:b3:46:cd:
                    db:81:13:4d:ba:c2:bb:da:42:83:28:00:31:d2:18:af:
                    fa:dc:6e:57:09:47:39:83:84:aa:54:9f:3a:48:12:a5:
                    42:58:a4:1b:82:68:31:db:d5:20:74:6f:81:64:fc:8f:
                    3c:a9:be:99:86:db:15:dc:f2:b1:03:b6:9c:4f:a6:00:
                    00:17:33:79:57:34:9b:77:04:78:9f:ff:b5:11:4d:23:
                    68:1f:2b:79:f3:ee:33:ac:17:5e:67:d8:63:ef:20:62:
                    dc:4b:7f:3f:7c:c0:7d:f5:6a:85:09:69:9e:aa:f3:80:
                    9a:62:58:30:c0:fb:1e:9e:82:88:3d:41:71:16:59:00:
                    4e:ec:14:08:2d:17:72:57:f1:cc:37:87:37:9f:e7:29:
                    d2:c8:04:3d:b0:40:3d:ff:17:d0:80:6c:b0:74:bd:3a:
                    dc:87:7f:10:25:63:36:be:00:d0:79:3e:ea:70:e9:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:c5:ee:24:2a:54:65:a7:93:8a:16:01:2f:99:a9:cf:
        4c:ae:75:24:11:ed:57:de:74:e4:d3:f3:bf:47:fb:8c:
        24:7a:0a:68:2f:ff:47:2f:92:cf:e7:f4:2c:67:a8:0c:
        40:93:79:87:37:a4:3c:6a:69:96:10:9e:69:4e:2a:0e:
        e3:75:0e:1d:ce:11:4f:01:aa:e8:91:59:26:77:cd:de:
        26:3e:e9:e8:98:48:69:eb:dc:cb:e2:cd:67:ad:ad:9c:
        71:d9:dd:cf:f6:5f:1d:f6:a4:79:97:62:cc:cf:61:ac:
        13:d8:dd:a3:60:c4:d3:aa:8b:d9:c9:4a:99:8c:4a:f9:
        93:c2:dc:0c:d6:d5:db:94:6a:22:e9:8e:82:70:9e:d4:
        99:64:fc:ef:cd:db:b5:fe:e6:4d:5d:88:e7:f1:1d:59:
        3a:99:2f:d7:bb:7e:11:5c:6e:3e:25:24:d9:a0:ab:02:
        db:f5:73:7b:c7:3d:fb:85:17:7c:93:f7:75:63:17:b8:
        c7:ac:da:f4:a6:90:53:29:c3:72:0c:bb:e2:01:5a:6b:
        2f:74:34:b0:87:7b:01:54:64:53:eb:eb:40:94:81:1f:
        53:62:e9:5e:e7:86:07:d6:e4:46:c6:67:14:0d:e5:a9:
        17:48:b8:9a:d2:52:35:a7:d1:d3:99:32:0e:b7:ca:12
    Fingerprint (SHA-256):
        0B:2C:D5:CF:6E:25:9F:8F:7C:10:20:1D:CB:A6:45:62:85:65:80:30:E4:EA:E0:C6:17:D4:34:72:9A:0F:2D:F1
    Fingerprint (SHA1):
        78:CE:36:8E:D5:46:8A:C7:22:B6:29:8A:81:D0:FE:67:27:68:F6:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7246: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7247: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7248: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7249: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115898 (0x1e67c03a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:47 2017
            Not After : Tue May 10 11:58:47 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:b7:73:1c:dd:f9:ea:c4:8e:3d:d2:3a:99:ee:f5:32:
                    24:00:d4:d4:ff:6f:32:e0:f2:73:0e:d3:56:2c:a5:4b:
                    db:6f:4e:e9:3a:a8:d9:94:d7:03:24:2f:76:11:ef:22:
                    93:45:cf:3d:90:bb:6c:91:04:3d:e2:17:79:d9:5e:67:
                    ea:72:53:f9:6f:3d:b5:37:d7:c6:02:5f:30:b3:46:cd:
                    db:81:13:4d:ba:c2:bb:da:42:83:28:00:31:d2:18:af:
                    fa:dc:6e:57:09:47:39:83:84:aa:54:9f:3a:48:12:a5:
                    42:58:a4:1b:82:68:31:db:d5:20:74:6f:81:64:fc:8f:
                    3c:a9:be:99:86:db:15:dc:f2:b1:03:b6:9c:4f:a6:00:
                    00:17:33:79:57:34:9b:77:04:78:9f:ff:b5:11:4d:23:
                    68:1f:2b:79:f3:ee:33:ac:17:5e:67:d8:63:ef:20:62:
                    dc:4b:7f:3f:7c:c0:7d:f5:6a:85:09:69:9e:aa:f3:80:
                    9a:62:58:30:c0:fb:1e:9e:82:88:3d:41:71:16:59:00:
                    4e:ec:14:08:2d:17:72:57:f1:cc:37:87:37:9f:e7:29:
                    d2:c8:04:3d:b0:40:3d:ff:17:d0:80:6c:b0:74:bd:3a:
                    dc:87:7f:10:25:63:36:be:00:d0:79:3e:ea:70:e9:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:c5:ee:24:2a:54:65:a7:93:8a:16:01:2f:99:a9:cf:
        4c:ae:75:24:11:ed:57:de:74:e4:d3:f3:bf:47:fb:8c:
        24:7a:0a:68:2f:ff:47:2f:92:cf:e7:f4:2c:67:a8:0c:
        40:93:79:87:37:a4:3c:6a:69:96:10:9e:69:4e:2a:0e:
        e3:75:0e:1d:ce:11:4f:01:aa:e8:91:59:26:77:cd:de:
        26:3e:e9:e8:98:48:69:eb:dc:cb:e2:cd:67:ad:ad:9c:
        71:d9:dd:cf:f6:5f:1d:f6:a4:79:97:62:cc:cf:61:ac:
        13:d8:dd:a3:60:c4:d3:aa:8b:d9:c9:4a:99:8c:4a:f9:
        93:c2:dc:0c:d6:d5:db:94:6a:22:e9:8e:82:70:9e:d4:
        99:64:fc:ef:cd:db:b5:fe:e6:4d:5d:88:e7:f1:1d:59:
        3a:99:2f:d7:bb:7e:11:5c:6e:3e:25:24:d9:a0:ab:02:
        db:f5:73:7b:c7:3d:fb:85:17:7c:93:f7:75:63:17:b8:
        c7:ac:da:f4:a6:90:53:29:c3:72:0c:bb:e2:01:5a:6b:
        2f:74:34:b0:87:7b:01:54:64:53:eb:eb:40:94:81:1f:
        53:62:e9:5e:e7:86:07:d6:e4:46:c6:67:14:0d:e5:a9:
        17:48:b8:9a:d2:52:35:a7:d1:d3:99:32:0e:b7:ca:12
    Fingerprint (SHA-256):
        0B:2C:D5:CF:6E:25:9F:8F:7C:10:20:1D:CB:A6:45:62:85:65:80:30:E4:EA:E0:C6:17:D4:34:72:9A:0F:2D:F1
    Fingerprint (SHA1):
        78:CE:36:8E:D5:46:8A:C7:22:B6:29:8A:81:D0:FE:67:27:68:F6:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7250: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7251: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7252: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7253: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115898 (0x1e67c03a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:47 2017
            Not After : Tue May 10 11:58:47 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:b7:73:1c:dd:f9:ea:c4:8e:3d:d2:3a:99:ee:f5:32:
                    24:00:d4:d4:ff:6f:32:e0:f2:73:0e:d3:56:2c:a5:4b:
                    db:6f:4e:e9:3a:a8:d9:94:d7:03:24:2f:76:11:ef:22:
                    93:45:cf:3d:90:bb:6c:91:04:3d:e2:17:79:d9:5e:67:
                    ea:72:53:f9:6f:3d:b5:37:d7:c6:02:5f:30:b3:46:cd:
                    db:81:13:4d:ba:c2:bb:da:42:83:28:00:31:d2:18:af:
                    fa:dc:6e:57:09:47:39:83:84:aa:54:9f:3a:48:12:a5:
                    42:58:a4:1b:82:68:31:db:d5:20:74:6f:81:64:fc:8f:
                    3c:a9:be:99:86:db:15:dc:f2:b1:03:b6:9c:4f:a6:00:
                    00:17:33:79:57:34:9b:77:04:78:9f:ff:b5:11:4d:23:
                    68:1f:2b:79:f3:ee:33:ac:17:5e:67:d8:63:ef:20:62:
                    dc:4b:7f:3f:7c:c0:7d:f5:6a:85:09:69:9e:aa:f3:80:
                    9a:62:58:30:c0:fb:1e:9e:82:88:3d:41:71:16:59:00:
                    4e:ec:14:08:2d:17:72:57:f1:cc:37:87:37:9f:e7:29:
                    d2:c8:04:3d:b0:40:3d:ff:17:d0:80:6c:b0:74:bd:3a:
                    dc:87:7f:10:25:63:36:be:00:d0:79:3e:ea:70:e9:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:c5:ee:24:2a:54:65:a7:93:8a:16:01:2f:99:a9:cf:
        4c:ae:75:24:11:ed:57:de:74:e4:d3:f3:bf:47:fb:8c:
        24:7a:0a:68:2f:ff:47:2f:92:cf:e7:f4:2c:67:a8:0c:
        40:93:79:87:37:a4:3c:6a:69:96:10:9e:69:4e:2a:0e:
        e3:75:0e:1d:ce:11:4f:01:aa:e8:91:59:26:77:cd:de:
        26:3e:e9:e8:98:48:69:eb:dc:cb:e2:cd:67:ad:ad:9c:
        71:d9:dd:cf:f6:5f:1d:f6:a4:79:97:62:cc:cf:61:ac:
        13:d8:dd:a3:60:c4:d3:aa:8b:d9:c9:4a:99:8c:4a:f9:
        93:c2:dc:0c:d6:d5:db:94:6a:22:e9:8e:82:70:9e:d4:
        99:64:fc:ef:cd:db:b5:fe:e6:4d:5d:88:e7:f1:1d:59:
        3a:99:2f:d7:bb:7e:11:5c:6e:3e:25:24:d9:a0:ab:02:
        db:f5:73:7b:c7:3d:fb:85:17:7c:93:f7:75:63:17:b8:
        c7:ac:da:f4:a6:90:53:29:c3:72:0c:bb:e2:01:5a:6b:
        2f:74:34:b0:87:7b:01:54:64:53:eb:eb:40:94:81:1f:
        53:62:e9:5e:e7:86:07:d6:e4:46:c6:67:14:0d:e5:a9:
        17:48:b8:9a:d2:52:35:a7:d1:d3:99:32:0e:b7:ca:12
    Fingerprint (SHA-256):
        0B:2C:D5:CF:6E:25:9F:8F:7C:10:20:1D:CB:A6:45:62:85:65:80:30:E4:EA:E0:C6:17:D4:34:72:9A:0F:2D:F1
    Fingerprint (SHA1):
        78:CE:36:8E:D5:46:8A:C7:22:B6:29:8A:81:D0:FE:67:27:68:F6:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7254: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115898 (0x1e67c03a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:47 2017
            Not After : Tue May 10 11:58:47 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:b7:73:1c:dd:f9:ea:c4:8e:3d:d2:3a:99:ee:f5:32:
                    24:00:d4:d4:ff:6f:32:e0:f2:73:0e:d3:56:2c:a5:4b:
                    db:6f:4e:e9:3a:a8:d9:94:d7:03:24:2f:76:11:ef:22:
                    93:45:cf:3d:90:bb:6c:91:04:3d:e2:17:79:d9:5e:67:
                    ea:72:53:f9:6f:3d:b5:37:d7:c6:02:5f:30:b3:46:cd:
                    db:81:13:4d:ba:c2:bb:da:42:83:28:00:31:d2:18:af:
                    fa:dc:6e:57:09:47:39:83:84:aa:54:9f:3a:48:12:a5:
                    42:58:a4:1b:82:68:31:db:d5:20:74:6f:81:64:fc:8f:
                    3c:a9:be:99:86:db:15:dc:f2:b1:03:b6:9c:4f:a6:00:
                    00:17:33:79:57:34:9b:77:04:78:9f:ff:b5:11:4d:23:
                    68:1f:2b:79:f3:ee:33:ac:17:5e:67:d8:63:ef:20:62:
                    dc:4b:7f:3f:7c:c0:7d:f5:6a:85:09:69:9e:aa:f3:80:
                    9a:62:58:30:c0:fb:1e:9e:82:88:3d:41:71:16:59:00:
                    4e:ec:14:08:2d:17:72:57:f1:cc:37:87:37:9f:e7:29:
                    d2:c8:04:3d:b0:40:3d:ff:17:d0:80:6c:b0:74:bd:3a:
                    dc:87:7f:10:25:63:36:be:00:d0:79:3e:ea:70:e9:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:c5:ee:24:2a:54:65:a7:93:8a:16:01:2f:99:a9:cf:
        4c:ae:75:24:11:ed:57:de:74:e4:d3:f3:bf:47:fb:8c:
        24:7a:0a:68:2f:ff:47:2f:92:cf:e7:f4:2c:67:a8:0c:
        40:93:79:87:37:a4:3c:6a:69:96:10:9e:69:4e:2a:0e:
        e3:75:0e:1d:ce:11:4f:01:aa:e8:91:59:26:77:cd:de:
        26:3e:e9:e8:98:48:69:eb:dc:cb:e2:cd:67:ad:ad:9c:
        71:d9:dd:cf:f6:5f:1d:f6:a4:79:97:62:cc:cf:61:ac:
        13:d8:dd:a3:60:c4:d3:aa:8b:d9:c9:4a:99:8c:4a:f9:
        93:c2:dc:0c:d6:d5:db:94:6a:22:e9:8e:82:70:9e:d4:
        99:64:fc:ef:cd:db:b5:fe:e6:4d:5d:88:e7:f1:1d:59:
        3a:99:2f:d7:bb:7e:11:5c:6e:3e:25:24:d9:a0:ab:02:
        db:f5:73:7b:c7:3d:fb:85:17:7c:93:f7:75:63:17:b8:
        c7:ac:da:f4:a6:90:53:29:c3:72:0c:bb:e2:01:5a:6b:
        2f:74:34:b0:87:7b:01:54:64:53:eb:eb:40:94:81:1f:
        53:62:e9:5e:e7:86:07:d6:e4:46:c6:67:14:0d:e5:a9:
        17:48:b8:9a:d2:52:35:a7:d1:d3:99:32:0e:b7:ca:12
    Fingerprint (SHA-256):
        0B:2C:D5:CF:6E:25:9F:8F:7C:10:20:1D:CB:A6:45:62:85:65:80:30:E4:EA:E0:C6:17:D4:34:72:9A:0F:2D:F1
    Fingerprint (SHA1):
        78:CE:36:8E:D5:46:8A:C7:22:B6:29:8A:81:D0:FE:67:27:68:F6:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7255: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7256: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115898 (0x1e67c03a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:47 2017
            Not After : Tue May 10 11:58:47 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:b7:73:1c:dd:f9:ea:c4:8e:3d:d2:3a:99:ee:f5:32:
                    24:00:d4:d4:ff:6f:32:e0:f2:73:0e:d3:56:2c:a5:4b:
                    db:6f:4e:e9:3a:a8:d9:94:d7:03:24:2f:76:11:ef:22:
                    93:45:cf:3d:90:bb:6c:91:04:3d:e2:17:79:d9:5e:67:
                    ea:72:53:f9:6f:3d:b5:37:d7:c6:02:5f:30:b3:46:cd:
                    db:81:13:4d:ba:c2:bb:da:42:83:28:00:31:d2:18:af:
                    fa:dc:6e:57:09:47:39:83:84:aa:54:9f:3a:48:12:a5:
                    42:58:a4:1b:82:68:31:db:d5:20:74:6f:81:64:fc:8f:
                    3c:a9:be:99:86:db:15:dc:f2:b1:03:b6:9c:4f:a6:00:
                    00:17:33:79:57:34:9b:77:04:78:9f:ff:b5:11:4d:23:
                    68:1f:2b:79:f3:ee:33:ac:17:5e:67:d8:63:ef:20:62:
                    dc:4b:7f:3f:7c:c0:7d:f5:6a:85:09:69:9e:aa:f3:80:
                    9a:62:58:30:c0:fb:1e:9e:82:88:3d:41:71:16:59:00:
                    4e:ec:14:08:2d:17:72:57:f1:cc:37:87:37:9f:e7:29:
                    d2:c8:04:3d:b0:40:3d:ff:17:d0:80:6c:b0:74:bd:3a:
                    dc:87:7f:10:25:63:36:be:00:d0:79:3e:ea:70:e9:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:c5:ee:24:2a:54:65:a7:93:8a:16:01:2f:99:a9:cf:
        4c:ae:75:24:11:ed:57:de:74:e4:d3:f3:bf:47:fb:8c:
        24:7a:0a:68:2f:ff:47:2f:92:cf:e7:f4:2c:67:a8:0c:
        40:93:79:87:37:a4:3c:6a:69:96:10:9e:69:4e:2a:0e:
        e3:75:0e:1d:ce:11:4f:01:aa:e8:91:59:26:77:cd:de:
        26:3e:e9:e8:98:48:69:eb:dc:cb:e2:cd:67:ad:ad:9c:
        71:d9:dd:cf:f6:5f:1d:f6:a4:79:97:62:cc:cf:61:ac:
        13:d8:dd:a3:60:c4:d3:aa:8b:d9:c9:4a:99:8c:4a:f9:
        93:c2:dc:0c:d6:d5:db:94:6a:22:e9:8e:82:70:9e:d4:
        99:64:fc:ef:cd:db:b5:fe:e6:4d:5d:88:e7:f1:1d:59:
        3a:99:2f:d7:bb:7e:11:5c:6e:3e:25:24:d9:a0:ab:02:
        db:f5:73:7b:c7:3d:fb:85:17:7c:93:f7:75:63:17:b8:
        c7:ac:da:f4:a6:90:53:29:c3:72:0c:bb:e2:01:5a:6b:
        2f:74:34:b0:87:7b:01:54:64:53:eb:eb:40:94:81:1f:
        53:62:e9:5e:e7:86:07:d6:e4:46:c6:67:14:0d:e5:a9:
        17:48:b8:9a:d2:52:35:a7:d1:d3:99:32:0e:b7:ca:12
    Fingerprint (SHA-256):
        0B:2C:D5:CF:6E:25:9F:8F:7C:10:20:1D:CB:A6:45:62:85:65:80:30:E4:EA:E0:C6:17:D4:34:72:9A:0F:2D:F1
    Fingerprint (SHA1):
        78:CE:36:8E:D5:46:8A:C7:22:B6:29:8A:81:D0:FE:67:27:68:F6:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7257: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7258: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7259: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7260: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115898 (0x1e67c03a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:47 2017
            Not After : Tue May 10 11:58:47 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:b7:73:1c:dd:f9:ea:c4:8e:3d:d2:3a:99:ee:f5:32:
                    24:00:d4:d4:ff:6f:32:e0:f2:73:0e:d3:56:2c:a5:4b:
                    db:6f:4e:e9:3a:a8:d9:94:d7:03:24:2f:76:11:ef:22:
                    93:45:cf:3d:90:bb:6c:91:04:3d:e2:17:79:d9:5e:67:
                    ea:72:53:f9:6f:3d:b5:37:d7:c6:02:5f:30:b3:46:cd:
                    db:81:13:4d:ba:c2:bb:da:42:83:28:00:31:d2:18:af:
                    fa:dc:6e:57:09:47:39:83:84:aa:54:9f:3a:48:12:a5:
                    42:58:a4:1b:82:68:31:db:d5:20:74:6f:81:64:fc:8f:
                    3c:a9:be:99:86:db:15:dc:f2:b1:03:b6:9c:4f:a6:00:
                    00:17:33:79:57:34:9b:77:04:78:9f:ff:b5:11:4d:23:
                    68:1f:2b:79:f3:ee:33:ac:17:5e:67:d8:63:ef:20:62:
                    dc:4b:7f:3f:7c:c0:7d:f5:6a:85:09:69:9e:aa:f3:80:
                    9a:62:58:30:c0:fb:1e:9e:82:88:3d:41:71:16:59:00:
                    4e:ec:14:08:2d:17:72:57:f1:cc:37:87:37:9f:e7:29:
                    d2:c8:04:3d:b0:40:3d:ff:17:d0:80:6c:b0:74:bd:3a:
                    dc:87:7f:10:25:63:36:be:00:d0:79:3e:ea:70:e9:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:c5:ee:24:2a:54:65:a7:93:8a:16:01:2f:99:a9:cf:
        4c:ae:75:24:11:ed:57:de:74:e4:d3:f3:bf:47:fb:8c:
        24:7a:0a:68:2f:ff:47:2f:92:cf:e7:f4:2c:67:a8:0c:
        40:93:79:87:37:a4:3c:6a:69:96:10:9e:69:4e:2a:0e:
        e3:75:0e:1d:ce:11:4f:01:aa:e8:91:59:26:77:cd:de:
        26:3e:e9:e8:98:48:69:eb:dc:cb:e2:cd:67:ad:ad:9c:
        71:d9:dd:cf:f6:5f:1d:f6:a4:79:97:62:cc:cf:61:ac:
        13:d8:dd:a3:60:c4:d3:aa:8b:d9:c9:4a:99:8c:4a:f9:
        93:c2:dc:0c:d6:d5:db:94:6a:22:e9:8e:82:70:9e:d4:
        99:64:fc:ef:cd:db:b5:fe:e6:4d:5d:88:e7:f1:1d:59:
        3a:99:2f:d7:bb:7e:11:5c:6e:3e:25:24:d9:a0:ab:02:
        db:f5:73:7b:c7:3d:fb:85:17:7c:93:f7:75:63:17:b8:
        c7:ac:da:f4:a6:90:53:29:c3:72:0c:bb:e2:01:5a:6b:
        2f:74:34:b0:87:7b:01:54:64:53:eb:eb:40:94:81:1f:
        53:62:e9:5e:e7:86:07:d6:e4:46:c6:67:14:0d:e5:a9:
        17:48:b8:9a:d2:52:35:a7:d1:d3:99:32:0e:b7:ca:12
    Fingerprint (SHA-256):
        0B:2C:D5:CF:6E:25:9F:8F:7C:10:20:1D:CB:A6:45:62:85:65:80:30:E4:EA:E0:C6:17:D4:34:72:9A:0F:2D:F1
    Fingerprint (SHA1):
        78:CE:36:8E:D5:46:8A:C7:22:B6:29:8A:81:D0:FE:67:27:68:F6:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7261: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115898 (0x1e67c03a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:47 2017
            Not After : Tue May 10 11:58:47 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:b7:73:1c:dd:f9:ea:c4:8e:3d:d2:3a:99:ee:f5:32:
                    24:00:d4:d4:ff:6f:32:e0:f2:73:0e:d3:56:2c:a5:4b:
                    db:6f:4e:e9:3a:a8:d9:94:d7:03:24:2f:76:11:ef:22:
                    93:45:cf:3d:90:bb:6c:91:04:3d:e2:17:79:d9:5e:67:
                    ea:72:53:f9:6f:3d:b5:37:d7:c6:02:5f:30:b3:46:cd:
                    db:81:13:4d:ba:c2:bb:da:42:83:28:00:31:d2:18:af:
                    fa:dc:6e:57:09:47:39:83:84:aa:54:9f:3a:48:12:a5:
                    42:58:a4:1b:82:68:31:db:d5:20:74:6f:81:64:fc:8f:
                    3c:a9:be:99:86:db:15:dc:f2:b1:03:b6:9c:4f:a6:00:
                    00:17:33:79:57:34:9b:77:04:78:9f:ff:b5:11:4d:23:
                    68:1f:2b:79:f3:ee:33:ac:17:5e:67:d8:63:ef:20:62:
                    dc:4b:7f:3f:7c:c0:7d:f5:6a:85:09:69:9e:aa:f3:80:
                    9a:62:58:30:c0:fb:1e:9e:82:88:3d:41:71:16:59:00:
                    4e:ec:14:08:2d:17:72:57:f1:cc:37:87:37:9f:e7:29:
                    d2:c8:04:3d:b0:40:3d:ff:17:d0:80:6c:b0:74:bd:3a:
                    dc:87:7f:10:25:63:36:be:00:d0:79:3e:ea:70:e9:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:c5:ee:24:2a:54:65:a7:93:8a:16:01:2f:99:a9:cf:
        4c:ae:75:24:11:ed:57:de:74:e4:d3:f3:bf:47:fb:8c:
        24:7a:0a:68:2f:ff:47:2f:92:cf:e7:f4:2c:67:a8:0c:
        40:93:79:87:37:a4:3c:6a:69:96:10:9e:69:4e:2a:0e:
        e3:75:0e:1d:ce:11:4f:01:aa:e8:91:59:26:77:cd:de:
        26:3e:e9:e8:98:48:69:eb:dc:cb:e2:cd:67:ad:ad:9c:
        71:d9:dd:cf:f6:5f:1d:f6:a4:79:97:62:cc:cf:61:ac:
        13:d8:dd:a3:60:c4:d3:aa:8b:d9:c9:4a:99:8c:4a:f9:
        93:c2:dc:0c:d6:d5:db:94:6a:22:e9:8e:82:70:9e:d4:
        99:64:fc:ef:cd:db:b5:fe:e6:4d:5d:88:e7:f1:1d:59:
        3a:99:2f:d7:bb:7e:11:5c:6e:3e:25:24:d9:a0:ab:02:
        db:f5:73:7b:c7:3d:fb:85:17:7c:93:f7:75:63:17:b8:
        c7:ac:da:f4:a6:90:53:29:c3:72:0c:bb:e2:01:5a:6b:
        2f:74:34:b0:87:7b:01:54:64:53:eb:eb:40:94:81:1f:
        53:62:e9:5e:e7:86:07:d6:e4:46:c6:67:14:0d:e5:a9:
        17:48:b8:9a:d2:52:35:a7:d1:d3:99:32:0e:b7:ca:12
    Fingerprint (SHA-256):
        0B:2C:D5:CF:6E:25:9F:8F:7C:10:20:1D:CB:A6:45:62:85:65:80:30:E4:EA:E0:C6:17:D4:34:72:9A:0F:2D:F1
    Fingerprint (SHA1):
        78:CE:36:8E:D5:46:8A:C7:22:B6:29:8A:81:D0:FE:67:27:68:F6:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7262: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115898 (0x1e67c03a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:47 2017
            Not After : Tue May 10 11:58:47 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:b7:73:1c:dd:f9:ea:c4:8e:3d:d2:3a:99:ee:f5:32:
                    24:00:d4:d4:ff:6f:32:e0:f2:73:0e:d3:56:2c:a5:4b:
                    db:6f:4e:e9:3a:a8:d9:94:d7:03:24:2f:76:11:ef:22:
                    93:45:cf:3d:90:bb:6c:91:04:3d:e2:17:79:d9:5e:67:
                    ea:72:53:f9:6f:3d:b5:37:d7:c6:02:5f:30:b3:46:cd:
                    db:81:13:4d:ba:c2:bb:da:42:83:28:00:31:d2:18:af:
                    fa:dc:6e:57:09:47:39:83:84:aa:54:9f:3a:48:12:a5:
                    42:58:a4:1b:82:68:31:db:d5:20:74:6f:81:64:fc:8f:
                    3c:a9:be:99:86:db:15:dc:f2:b1:03:b6:9c:4f:a6:00:
                    00:17:33:79:57:34:9b:77:04:78:9f:ff:b5:11:4d:23:
                    68:1f:2b:79:f3:ee:33:ac:17:5e:67:d8:63:ef:20:62:
                    dc:4b:7f:3f:7c:c0:7d:f5:6a:85:09:69:9e:aa:f3:80:
                    9a:62:58:30:c0:fb:1e:9e:82:88:3d:41:71:16:59:00:
                    4e:ec:14:08:2d:17:72:57:f1:cc:37:87:37:9f:e7:29:
                    d2:c8:04:3d:b0:40:3d:ff:17:d0:80:6c:b0:74:bd:3a:
                    dc:87:7f:10:25:63:36:be:00:d0:79:3e:ea:70:e9:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:c5:ee:24:2a:54:65:a7:93:8a:16:01:2f:99:a9:cf:
        4c:ae:75:24:11:ed:57:de:74:e4:d3:f3:bf:47:fb:8c:
        24:7a:0a:68:2f:ff:47:2f:92:cf:e7:f4:2c:67:a8:0c:
        40:93:79:87:37:a4:3c:6a:69:96:10:9e:69:4e:2a:0e:
        e3:75:0e:1d:ce:11:4f:01:aa:e8:91:59:26:77:cd:de:
        26:3e:e9:e8:98:48:69:eb:dc:cb:e2:cd:67:ad:ad:9c:
        71:d9:dd:cf:f6:5f:1d:f6:a4:79:97:62:cc:cf:61:ac:
        13:d8:dd:a3:60:c4:d3:aa:8b:d9:c9:4a:99:8c:4a:f9:
        93:c2:dc:0c:d6:d5:db:94:6a:22:e9:8e:82:70:9e:d4:
        99:64:fc:ef:cd:db:b5:fe:e6:4d:5d:88:e7:f1:1d:59:
        3a:99:2f:d7:bb:7e:11:5c:6e:3e:25:24:d9:a0:ab:02:
        db:f5:73:7b:c7:3d:fb:85:17:7c:93:f7:75:63:17:b8:
        c7:ac:da:f4:a6:90:53:29:c3:72:0c:bb:e2:01:5a:6b:
        2f:74:34:b0:87:7b:01:54:64:53:eb:eb:40:94:81:1f:
        53:62:e9:5e:e7:86:07:d6:e4:46:c6:67:14:0d:e5:a9:
        17:48:b8:9a:d2:52:35:a7:d1:d3:99:32:0e:b7:ca:12
    Fingerprint (SHA-256):
        0B:2C:D5:CF:6E:25:9F:8F:7C:10:20:1D:CB:A6:45:62:85:65:80:30:E4:EA:E0:C6:17:D4:34:72:9A:0F:2D:F1
    Fingerprint (SHA1):
        78:CE:36:8E:D5:46:8A:C7:22:B6:29:8A:81:D0:FE:67:27:68:F6:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7263: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115898 (0x1e67c03a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:47 2017
            Not After : Tue May 10 11:58:47 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:b7:73:1c:dd:f9:ea:c4:8e:3d:d2:3a:99:ee:f5:32:
                    24:00:d4:d4:ff:6f:32:e0:f2:73:0e:d3:56:2c:a5:4b:
                    db:6f:4e:e9:3a:a8:d9:94:d7:03:24:2f:76:11:ef:22:
                    93:45:cf:3d:90:bb:6c:91:04:3d:e2:17:79:d9:5e:67:
                    ea:72:53:f9:6f:3d:b5:37:d7:c6:02:5f:30:b3:46:cd:
                    db:81:13:4d:ba:c2:bb:da:42:83:28:00:31:d2:18:af:
                    fa:dc:6e:57:09:47:39:83:84:aa:54:9f:3a:48:12:a5:
                    42:58:a4:1b:82:68:31:db:d5:20:74:6f:81:64:fc:8f:
                    3c:a9:be:99:86:db:15:dc:f2:b1:03:b6:9c:4f:a6:00:
                    00:17:33:79:57:34:9b:77:04:78:9f:ff:b5:11:4d:23:
                    68:1f:2b:79:f3:ee:33:ac:17:5e:67:d8:63:ef:20:62:
                    dc:4b:7f:3f:7c:c0:7d:f5:6a:85:09:69:9e:aa:f3:80:
                    9a:62:58:30:c0:fb:1e:9e:82:88:3d:41:71:16:59:00:
                    4e:ec:14:08:2d:17:72:57:f1:cc:37:87:37:9f:e7:29:
                    d2:c8:04:3d:b0:40:3d:ff:17:d0:80:6c:b0:74:bd:3a:
                    dc:87:7f:10:25:63:36:be:00:d0:79:3e:ea:70:e9:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:c5:ee:24:2a:54:65:a7:93:8a:16:01:2f:99:a9:cf:
        4c:ae:75:24:11:ed:57:de:74:e4:d3:f3:bf:47:fb:8c:
        24:7a:0a:68:2f:ff:47:2f:92:cf:e7:f4:2c:67:a8:0c:
        40:93:79:87:37:a4:3c:6a:69:96:10:9e:69:4e:2a:0e:
        e3:75:0e:1d:ce:11:4f:01:aa:e8:91:59:26:77:cd:de:
        26:3e:e9:e8:98:48:69:eb:dc:cb:e2:cd:67:ad:ad:9c:
        71:d9:dd:cf:f6:5f:1d:f6:a4:79:97:62:cc:cf:61:ac:
        13:d8:dd:a3:60:c4:d3:aa:8b:d9:c9:4a:99:8c:4a:f9:
        93:c2:dc:0c:d6:d5:db:94:6a:22:e9:8e:82:70:9e:d4:
        99:64:fc:ef:cd:db:b5:fe:e6:4d:5d:88:e7:f1:1d:59:
        3a:99:2f:d7:bb:7e:11:5c:6e:3e:25:24:d9:a0:ab:02:
        db:f5:73:7b:c7:3d:fb:85:17:7c:93:f7:75:63:17:b8:
        c7:ac:da:f4:a6:90:53:29:c3:72:0c:bb:e2:01:5a:6b:
        2f:74:34:b0:87:7b:01:54:64:53:eb:eb:40:94:81:1f:
        53:62:e9:5e:e7:86:07:d6:e4:46:c6:67:14:0d:e5:a9:
        17:48:b8:9a:d2:52:35:a7:d1:d3:99:32:0e:b7:ca:12
    Fingerprint (SHA-256):
        0B:2C:D5:CF:6E:25:9F:8F:7C:10:20:1D:CB:A6:45:62:85:65:80:30:E4:EA:E0:C6:17:D4:34:72:9A:0F:2D:F1
    Fingerprint (SHA1):
        78:CE:36:8E:D5:46:8A:C7:22:B6:29:8A:81:D0:FE:67:27:68:F6:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7264: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115898 (0x1e67c03a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:47 2017
            Not After : Tue May 10 11:58:47 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:b7:73:1c:dd:f9:ea:c4:8e:3d:d2:3a:99:ee:f5:32:
                    24:00:d4:d4:ff:6f:32:e0:f2:73:0e:d3:56:2c:a5:4b:
                    db:6f:4e:e9:3a:a8:d9:94:d7:03:24:2f:76:11:ef:22:
                    93:45:cf:3d:90:bb:6c:91:04:3d:e2:17:79:d9:5e:67:
                    ea:72:53:f9:6f:3d:b5:37:d7:c6:02:5f:30:b3:46:cd:
                    db:81:13:4d:ba:c2:bb:da:42:83:28:00:31:d2:18:af:
                    fa:dc:6e:57:09:47:39:83:84:aa:54:9f:3a:48:12:a5:
                    42:58:a4:1b:82:68:31:db:d5:20:74:6f:81:64:fc:8f:
                    3c:a9:be:99:86:db:15:dc:f2:b1:03:b6:9c:4f:a6:00:
                    00:17:33:79:57:34:9b:77:04:78:9f:ff:b5:11:4d:23:
                    68:1f:2b:79:f3:ee:33:ac:17:5e:67:d8:63:ef:20:62:
                    dc:4b:7f:3f:7c:c0:7d:f5:6a:85:09:69:9e:aa:f3:80:
                    9a:62:58:30:c0:fb:1e:9e:82:88:3d:41:71:16:59:00:
                    4e:ec:14:08:2d:17:72:57:f1:cc:37:87:37:9f:e7:29:
                    d2:c8:04:3d:b0:40:3d:ff:17:d0:80:6c:b0:74:bd:3a:
                    dc:87:7f:10:25:63:36:be:00:d0:79:3e:ea:70:e9:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:c5:ee:24:2a:54:65:a7:93:8a:16:01:2f:99:a9:cf:
        4c:ae:75:24:11:ed:57:de:74:e4:d3:f3:bf:47:fb:8c:
        24:7a:0a:68:2f:ff:47:2f:92:cf:e7:f4:2c:67:a8:0c:
        40:93:79:87:37:a4:3c:6a:69:96:10:9e:69:4e:2a:0e:
        e3:75:0e:1d:ce:11:4f:01:aa:e8:91:59:26:77:cd:de:
        26:3e:e9:e8:98:48:69:eb:dc:cb:e2:cd:67:ad:ad:9c:
        71:d9:dd:cf:f6:5f:1d:f6:a4:79:97:62:cc:cf:61:ac:
        13:d8:dd:a3:60:c4:d3:aa:8b:d9:c9:4a:99:8c:4a:f9:
        93:c2:dc:0c:d6:d5:db:94:6a:22:e9:8e:82:70:9e:d4:
        99:64:fc:ef:cd:db:b5:fe:e6:4d:5d:88:e7:f1:1d:59:
        3a:99:2f:d7:bb:7e:11:5c:6e:3e:25:24:d9:a0:ab:02:
        db:f5:73:7b:c7:3d:fb:85:17:7c:93:f7:75:63:17:b8:
        c7:ac:da:f4:a6:90:53:29:c3:72:0c:bb:e2:01:5a:6b:
        2f:74:34:b0:87:7b:01:54:64:53:eb:eb:40:94:81:1f:
        53:62:e9:5e:e7:86:07:d6:e4:46:c6:67:14:0d:e5:a9:
        17:48:b8:9a:d2:52:35:a7:d1:d3:99:32:0e:b7:ca:12
    Fingerprint (SHA-256):
        0B:2C:D5:CF:6E:25:9F:8F:7C:10:20:1D:CB:A6:45:62:85:65:80:30:E4:EA:E0:C6:17:D4:34:72:9A:0F:2D:F1
    Fingerprint (SHA1):
        78:CE:36:8E:D5:46:8A:C7:22:B6:29:8A:81:D0:FE:67:27:68:F6:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7265: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115898 (0x1e67c03a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:58:47 2017
            Not After : Tue May 10 11:58:47 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:b7:73:1c:dd:f9:ea:c4:8e:3d:d2:3a:99:ee:f5:32:
                    24:00:d4:d4:ff:6f:32:e0:f2:73:0e:d3:56:2c:a5:4b:
                    db:6f:4e:e9:3a:a8:d9:94:d7:03:24:2f:76:11:ef:22:
                    93:45:cf:3d:90:bb:6c:91:04:3d:e2:17:79:d9:5e:67:
                    ea:72:53:f9:6f:3d:b5:37:d7:c6:02:5f:30:b3:46:cd:
                    db:81:13:4d:ba:c2:bb:da:42:83:28:00:31:d2:18:af:
                    fa:dc:6e:57:09:47:39:83:84:aa:54:9f:3a:48:12:a5:
                    42:58:a4:1b:82:68:31:db:d5:20:74:6f:81:64:fc:8f:
                    3c:a9:be:99:86:db:15:dc:f2:b1:03:b6:9c:4f:a6:00:
                    00:17:33:79:57:34:9b:77:04:78:9f:ff:b5:11:4d:23:
                    68:1f:2b:79:f3:ee:33:ac:17:5e:67:d8:63:ef:20:62:
                    dc:4b:7f:3f:7c:c0:7d:f5:6a:85:09:69:9e:aa:f3:80:
                    9a:62:58:30:c0:fb:1e:9e:82:88:3d:41:71:16:59:00:
                    4e:ec:14:08:2d:17:72:57:f1:cc:37:87:37:9f:e7:29:
                    d2:c8:04:3d:b0:40:3d:ff:17:d0:80:6c:b0:74:bd:3a:
                    dc:87:7f:10:25:63:36:be:00:d0:79:3e:ea:70:e9:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:c5:ee:24:2a:54:65:a7:93:8a:16:01:2f:99:a9:cf:
        4c:ae:75:24:11:ed:57:de:74:e4:d3:f3:bf:47:fb:8c:
        24:7a:0a:68:2f:ff:47:2f:92:cf:e7:f4:2c:67:a8:0c:
        40:93:79:87:37:a4:3c:6a:69:96:10:9e:69:4e:2a:0e:
        e3:75:0e:1d:ce:11:4f:01:aa:e8:91:59:26:77:cd:de:
        26:3e:e9:e8:98:48:69:eb:dc:cb:e2:cd:67:ad:ad:9c:
        71:d9:dd:cf:f6:5f:1d:f6:a4:79:97:62:cc:cf:61:ac:
        13:d8:dd:a3:60:c4:d3:aa:8b:d9:c9:4a:99:8c:4a:f9:
        93:c2:dc:0c:d6:d5:db:94:6a:22:e9:8e:82:70:9e:d4:
        99:64:fc:ef:cd:db:b5:fe:e6:4d:5d:88:e7:f1:1d:59:
        3a:99:2f:d7:bb:7e:11:5c:6e:3e:25:24:d9:a0:ab:02:
        db:f5:73:7b:c7:3d:fb:85:17:7c:93:f7:75:63:17:b8:
        c7:ac:da:f4:a6:90:53:29:c3:72:0c:bb:e2:01:5a:6b:
        2f:74:34:b0:87:7b:01:54:64:53:eb:eb:40:94:81:1f:
        53:62:e9:5e:e7:86:07:d6:e4:46:c6:67:14:0d:e5:a9:
        17:48:b8:9a:d2:52:35:a7:d1:d3:99:32:0e:b7:ca:12
    Fingerprint (SHA-256):
        0B:2C:D5:CF:6E:25:9F:8F:7C:10:20:1D:CB:A6:45:62:85:65:80:30:E4:EA:E0:C6:17:D4:34:72:9A:0F:2D:F1
    Fingerprint (SHA1):
        78:CE:36:8E:D5:46:8A:C7:22:B6:29:8A:81:D0:FE:67:27:68:F6:D8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7266: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7267: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7268: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115928 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7269: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7270: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #7271: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7272: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 510115929   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7273: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7274: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #7275: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7276: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 510115930   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7277: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7278: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #7279: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7280: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 510115931   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7281: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7282: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #7283: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7284: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 510115932   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7285: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7286: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #7287: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7288: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 510115933   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7289: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7290: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #7291: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7292: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 510115934   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7293: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7294: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7295: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115928 (0x1e67c058)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:01 2017
            Not After : Tue May 10 11:59:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:40:8d:12:9b:0e:b3:fd:cf:57:17:ab:39:0b:57:f9:
                    cf:a7:9f:5b:02:04:c4:8e:1b:09:8c:3f:9f:02:db:d6:
                    6c:c4:bd:cd:3c:05:ed:76:ca:b8:ce:e4:89:e8:bc:e7:
                    a0:64:50:0a:4b:55:42:53:36:72:7e:fb:2b:46:2f:c4:
                    30:23:46:45:22:96:f5:87:37:d5:9a:3e:63:9e:79:af:
                    ad:40:e6:83:ca:4a:43:3c:a3:3b:f5:a6:d1:fd:c7:19:
                    5c:63:af:8f:36:7c:02:ba:10:33:71:3e:27:a4:e0:b3:
                    8a:99:f5:03:b5:4e:94:5d:e0:c7:12:31:a5:bd:99:54:
                    d6:8e:90:3b:05:e8:24:fe:68:b6:d2:27:f0:7d:27:d8:
                    2c:11:64:54:ed:92:63:2a:cc:49:cc:a2:b2:cf:2e:74:
                    5d:c2:9c:d0:1b:49:b2:cf:b8:db:c0:08:69:6b:35:a6:
                    08:f0:72:ff:55:f9:bc:59:6d:5d:9e:5a:2f:51:76:d0:
                    0a:a9:70:90:04:18:c6:2c:a5:c7:de:a1:39:99:70:6a:
                    3e:3a:89:a0:b1:43:0d:9c:95:c3:00:17:4a:f4:e8:44:
                    d1:40:e7:95:ba:6e:e8:31:87:bc:c4:b2:eb:67:ab:11:
                    ba:6e:45:bf:cb:7e:a4:f6:30:26:f3:7f:e3:dd:53:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:0c:be:84:9b:f8:c9:4d:26:a7:41:98:4a:e7:09:19:
        a9:1e:23:0e:34:71:7b:99:e1:6f:67:9b:28:82:7e:4d:
        4b:6d:81:2e:33:77:c4:a9:76:5f:e5:42:0b:0b:7f:37:
        62:a0:d0:d8:43:7d:7a:71:58:0d:09:89:c0:6e:66:c2:
        1f:26:de:b6:19:90:ae:4e:2c:ad:c3:b8:0f:80:3b:31:
        f6:87:8c:d2:81:4c:c2:74:b3:16:f6:ae:64:75:85:0c:
        14:b2:16:58:11:4b:09:e8:98:3b:db:b2:a1:bd:21:98:
        03:30:78:ca:f1:61:01:ff:53:0d:f3:e2:41:ba:35:9f:
        11:d5:05:b5:86:36:f8:3b:c7:5e:59:bd:d0:49:b2:ed:
        4a:08:c9:88:22:0f:98:2c:72:4e:1b:9d:4f:ab:d0:16:
        85:c8:25:7b:29:cf:bd:d0:64:0d:bf:3a:76:a5:ee:a9:
        2f:61:d5:b3:d1:1d:1c:bc:69:9f:d5:11:37:94:da:be:
        5c:67:a0:26:47:31:72:d6:f7:f8:60:d1:d0:d1:c5:bc:
        43:8a:a0:6c:20:d8:eb:10:a7:46:43:82:3e:21:79:1e:
        9f:60:99:b2:f3:99:ec:e0:44:27:3d:45:58:02:8f:93:
        21:f2:c2:a9:d4:92:4f:a3:26:fa:61:4d:ce:c8:6b:e5
    Fingerprint (SHA-256):
        56:F8:ED:80:81:39:97:86:92:98:77:5E:E3:8F:1E:EA:6B:3B:4C:2E:F7:15:F8:1D:EA:49:25:EF:E1:9D:84:FA
    Fingerprint (SHA1):
        13:FB:98:CA:A9:E2:10:80:F6:55:D8:E3:F8:11:54:64:90:8B:DA:E3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7296: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7297: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7298: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7299: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115928 (0x1e67c058)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:01 2017
            Not After : Tue May 10 11:59:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:40:8d:12:9b:0e:b3:fd:cf:57:17:ab:39:0b:57:f9:
                    cf:a7:9f:5b:02:04:c4:8e:1b:09:8c:3f:9f:02:db:d6:
                    6c:c4:bd:cd:3c:05:ed:76:ca:b8:ce:e4:89:e8:bc:e7:
                    a0:64:50:0a:4b:55:42:53:36:72:7e:fb:2b:46:2f:c4:
                    30:23:46:45:22:96:f5:87:37:d5:9a:3e:63:9e:79:af:
                    ad:40:e6:83:ca:4a:43:3c:a3:3b:f5:a6:d1:fd:c7:19:
                    5c:63:af:8f:36:7c:02:ba:10:33:71:3e:27:a4:e0:b3:
                    8a:99:f5:03:b5:4e:94:5d:e0:c7:12:31:a5:bd:99:54:
                    d6:8e:90:3b:05:e8:24:fe:68:b6:d2:27:f0:7d:27:d8:
                    2c:11:64:54:ed:92:63:2a:cc:49:cc:a2:b2:cf:2e:74:
                    5d:c2:9c:d0:1b:49:b2:cf:b8:db:c0:08:69:6b:35:a6:
                    08:f0:72:ff:55:f9:bc:59:6d:5d:9e:5a:2f:51:76:d0:
                    0a:a9:70:90:04:18:c6:2c:a5:c7:de:a1:39:99:70:6a:
                    3e:3a:89:a0:b1:43:0d:9c:95:c3:00:17:4a:f4:e8:44:
                    d1:40:e7:95:ba:6e:e8:31:87:bc:c4:b2:eb:67:ab:11:
                    ba:6e:45:bf:cb:7e:a4:f6:30:26:f3:7f:e3:dd:53:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:0c:be:84:9b:f8:c9:4d:26:a7:41:98:4a:e7:09:19:
        a9:1e:23:0e:34:71:7b:99:e1:6f:67:9b:28:82:7e:4d:
        4b:6d:81:2e:33:77:c4:a9:76:5f:e5:42:0b:0b:7f:37:
        62:a0:d0:d8:43:7d:7a:71:58:0d:09:89:c0:6e:66:c2:
        1f:26:de:b6:19:90:ae:4e:2c:ad:c3:b8:0f:80:3b:31:
        f6:87:8c:d2:81:4c:c2:74:b3:16:f6:ae:64:75:85:0c:
        14:b2:16:58:11:4b:09:e8:98:3b:db:b2:a1:bd:21:98:
        03:30:78:ca:f1:61:01:ff:53:0d:f3:e2:41:ba:35:9f:
        11:d5:05:b5:86:36:f8:3b:c7:5e:59:bd:d0:49:b2:ed:
        4a:08:c9:88:22:0f:98:2c:72:4e:1b:9d:4f:ab:d0:16:
        85:c8:25:7b:29:cf:bd:d0:64:0d:bf:3a:76:a5:ee:a9:
        2f:61:d5:b3:d1:1d:1c:bc:69:9f:d5:11:37:94:da:be:
        5c:67:a0:26:47:31:72:d6:f7:f8:60:d1:d0:d1:c5:bc:
        43:8a:a0:6c:20:d8:eb:10:a7:46:43:82:3e:21:79:1e:
        9f:60:99:b2:f3:99:ec:e0:44:27:3d:45:58:02:8f:93:
        21:f2:c2:a9:d4:92:4f:a3:26:fa:61:4d:ce:c8:6b:e5
    Fingerprint (SHA-256):
        56:F8:ED:80:81:39:97:86:92:98:77:5E:E3:8F:1E:EA:6B:3B:4C:2E:F7:15:F8:1D:EA:49:25:EF:E1:9D:84:FA
    Fingerprint (SHA1):
        13:FB:98:CA:A9:E2:10:80:F6:55:D8:E3:F8:11:54:64:90:8B:DA:E3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7300: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7301: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7302: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7303: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115935 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7304: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7305: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7306: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7307: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115936   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7308: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7309: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7310: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7311: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115937   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7312: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7313: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7314: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7315: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510115938   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7316: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7317: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7318: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7319: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7320: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7321: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115935 (0x1e67c05f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:03 2017
            Not After : Tue May 10 11:59:03 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:94:f3:0a:09:32:87:9e:b1:17:67:a5:df:e2:f3:76:
                    a3:2d:52:35:2b:0b:8c:49:70:55:72:75:d5:cc:0f:2c:
                    90:48:52:35:7d:31:d6:6d:2e:48:e3:c2:eb:04:9b:80:
                    70:42:2c:c5:2a:34:c7:6f:bf:76:08:9c:30:a1:d3:3e:
                    e5:36:44:a2:51:2e:b1:67:98:41:41:a4:2b:e0:0e:e0:
                    75:d2:b2:cc:4b:f5:5c:79:db:a2:97:f0:77:46:e6:94:
                    bf:28:c2:4a:2b:82:55:20:35:7a:35:a6:68:2e:19:34:
                    fa:ab:ae:e1:3d:1d:b6:b5:a1:69:74:78:bc:ab:66:7b:
                    50:c4:1d:f4:4b:2b:e1:74:a1:3b:77:f3:b9:4b:5d:62:
                    9b:c1:8e:ea:2f:28:41:f3:0f:71:bf:61:3f:90:5b:5d:
                    5c:09:2b:bd:45:f0:9d:1a:88:09:f1:a2:c2:ad:47:96:
                    b2:93:fd:d8:1c:77:b6:af:a2:b9:4a:fc:82:54:ea:d1:
                    d2:87:c4:f2:f9:36:66:a7:de:07:cb:89:99:e3:3f:6a:
                    8f:01:fa:2b:1d:5a:78:0e:db:b4:96:29:9f:f1:c4:e0:
                    b3:2d:b2:f0:b6:29:2d:fa:3f:05:8c:4d:3e:37:40:31:
                    c1:12:97:d0:2c:38:57:99:53:88:90:3c:eb:48:21:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:82:36:33:64:f9:8b:f6:7c:42:4a:a2:64:ad:1a:34:
        78:0c:d9:b4:9e:0a:49:80:3d:6c:ef:4e:a4:4d:5e:a0:
        60:84:93:8a:32:45:60:df:d9:f1:39:7f:ad:e2:d0:fc:
        7f:00:3f:7e:73:27:93:76:04:dc:48:30:a1:54:39:c9:
        45:80:eb:59:78:03:57:fa:10:12:f6:ab:19:69:da:14:
        0a:c1:f6:e1:6f:ab:b3:31:34:24:f0:e9:72:e9:29:71:
        59:ff:40:a2:30:56:56:7b:5f:aa:05:82:f2:4f:dd:3b:
        6b:68:8b:76:13:f4:25:70:78:fb:7f:3f:10:cc:4e:cc:
        6f:8d:51:82:27:17:3f:c6:3c:aa:96:04:52:8a:e8:f9:
        74:44:06:48:7e:fe:69:9c:7b:42:d0:95:12:51:73:4c:
        c1:48:ee:78:54:0c:82:e0:5f:2e:5d:06:20:92:ca:f5:
        95:20:6c:8e:0c:9d:66:25:0d:f4:4c:b2:c1:6c:bd:3f:
        f1:d8:98:e7:ee:e4:3f:0c:9e:d7:7d:d5:62:93:3c:87:
        bf:1d:ae:68:e9:ed:c8:91:53:9e:52:52:6b:6c:91:47:
        54:61:96:44:82:43:13:7d:51:aa:cf:f1:dd:bf:74:fa:
        f1:e9:a6:e1:c2:c4:0c:af:08:7d:a9:35:ab:b1:81:37
    Fingerprint (SHA-256):
        9E:AD:75:C3:52:D9:26:5D:82:2F:17:EF:A3:72:29:BC:82:BC:E5:E7:F5:E9:9A:D5:5D:AA:F4:7E:08:05:6E:23
    Fingerprint (SHA1):
        25:25:28:EB:03:F2:1F:8A:86:13:03:B4:D3:34:8D:D8:63:E7:DD:4E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7322: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7323: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7324: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115936 (0x1e67c060)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:04 2017
            Not After : Tue May 10 11:59:04 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:4f:c6:a3:3c:86:e7:98:db:16:f6:56:b9:09:b2:fe:
                    45:ec:71:36:3f:14:1d:5d:57:97:b5:a2:e9:9a:1c:40:
                    2c:94:81:93:f5:b2:3c:3f:6b:1e:20:1a:ec:55:36:a7:
                    78:4b:72:f5:b1:b0:22:e7:d8:52:e7:b7:f8:c4:06:15:
                    3e:fa:f0:a0:1a:76:46:f6:7b:9f:5e:07:be:b9:ef:b4:
                    93:7b:35:69:08:d8:c4:8c:bc:f2:20:39:2c:f5:f7:a3:
                    6e:b6:a5:e3:1e:bf:ba:3d:4c:54:ec:5b:2b:de:d5:6b:
                    de:4f:39:4f:4a:f9:c9:6f:a7:6f:cd:c3:d2:1b:2e:e3:
                    12:69:eb:1d:66:29:d3:45:a1:94:b7:d5:f0:e2:45:bf:
                    a7:0d:03:04:bf:51:db:26:5f:b5:3a:e3:25:9c:d6:c9:
                    78:b7:e9:16:97:20:fe:41:0f:c8:d2:0d:86:67:3c:71:
                    46:73:90:1f:80:e6:63:94:39:ab:01:b9:55:aa:34:92:
                    52:cf:7f:86:3b:59:c5:8b:d0:d3:43:4f:18:15:af:3b:
                    1d:2e:43:e5:d4:49:99:ef:2c:22:c4:ba:dd:66:08:72:
                    2a:19:79:cc:3f:93:2d:b5:50:ed:a3:c7:43:ae:33:80:
                    54:0b:d6:7f:50:7a:f5:4e:8f:70:1a:ac:3f:c3:94:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:2d:18:7c:81:e8:c9:07:00:86:98:88:00:86:5d:c1:
        6a:a3:fc:63:aa:24:46:70:11:7f:45:1c:54:48:d7:93:
        74:b1:c2:68:ff:58:bb:27:38:2c:47:69:22:de:2d:d2:
        f7:fb:56:82:b9:f0:7b:57:a4:a6:0c:83:14:99:2d:88:
        9c:72:2d:94:fc:48:c7:32:bd:7e:a7:89:53:d4:c2:d0:
        4b:d9:87:70:aa:df:25:ab:9c:9d:2f:59:82:d8:27:74:
        1d:f1:f9:d1:35:21:76:1f:63:4d:2f:39:75:22:84:d6:
        16:38:e1:03:a9:9a:2c:98:10:1f:35:32:a5:74:d2:d8:
        4f:34:04:6d:0f:84:e1:22:15:e7:e8:76:d9:cc:69:01:
        1c:3e:57:7a:3c:dd:7b:57:d0:29:51:ec:3e:15:8f:3e:
        65:56:ac:d7:14:14:fc:74:67:cb:2a:6e:1b:26:04:75:
        1a:4e:7e:cb:16:f7:c4:1a:1d:b2:a4:61:10:51:e2:ce:
        f4:f8:b7:7f:4b:ae:ed:e1:67:c6:b9:1c:7a:b7:1e:fd:
        73:60:87:75:a5:62:45:1c:83:73:88:20:d0:33:22:7b:
        63:4e:5c:05:86:db:c5:3d:bc:54:c4:6e:8a:22:1e:b3:
        50:93:43:3f:28:6f:27:f8:68:6f:00:ea:08:06:4e:96
    Fingerprint (SHA-256):
        15:41:64:15:4B:B8:72:E2:69:D0:76:44:B9:C1:B7:60:BC:64:A7:72:11:9A:96:7D:16:8D:0D:47:E4:72:31:01
    Fingerprint (SHA1):
        01:2B:60:AA:A2:39:F1:62:F9:C9:2E:30:DB:9F:C1:CE:08:8E:96:0A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7325: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7326: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115937 (0x1e67c061)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:59:04 2017
            Not After : Tue May 10 11:59:04 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:5b:0d:d8:3a:b7:b3:ca:48:a5:01:f8:09:07:99:1f:
                    fb:c4:3b:dc:b2:4e:f9:3b:28:83:aa:77:77:98:29:ab:
                    0b:40:23:07:dd:b2:c2:55:54:7a:b3:d7:82:5f:f5:cd:
                    b6:cb:7b:09:3c:b5:79:7d:7c:4f:fb:52:6e:a6:47:43:
                    9d:4d:ab:25:d3:93:92:bb:7f:ed:29:05:36:b2:45:3c:
                    62:dd:83:9d:eb:ce:30:64:ea:70:cf:fd:1e:7c:5f:0d:
                    0f:6b:c7:f6:2d:8a:5f:7e:63:98:5b:67:8a:b3:49:26:
                    dd:b4:94:e0:14:fd:5c:3f:14:9d:7a:83:e9:b8:cf:b2:
                    a3:86:19:45:92:e4:f0:0d:1e:1f:f9:0d:fd:c3:49:a2:
                    29:40:e4:53:ac:77:15:b3:d3:85:1c:b3:52:e9:ba:fd:
                    e1:a9:4b:e5:0f:ad:96:ee:78:d3:1c:bc:91:32:ac:95:
                    e9:96:3c:2b:c4:51:15:3b:48:06:11:32:2d:1f:c8:61:
                    81:5c:39:d5:01:a3:1f:a9:5e:e2:28:76:bb:b2:39:96:
                    77:8f:2c:47:80:aa:62:1a:82:ae:ad:99:b3:32:72:f4:
                    e0:85:35:4e:3c:25:82:d7:a5:46:26:92:3c:6e:07:21:
                    fa:2c:1f:90:44:8b:91:82:17:4b:b4:91:bd:27:41:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bc:10:95:24:a5:ed:c4:85:9b:65:e3:c4:c9:f2:eb:ad:
        f5:aa:9c:74:c8:99:2d:81:ae:6b:be:45:c9:4c:10:26:
        87:a6:bb:21:30:ac:7c:e3:98:93:a3:12:5f:5d:e1:a8:
        4c:e6:94:cb:ed:f8:f4:d4:d8:e9:d0:ba:e6:09:56:db:
        b0:58:ae:ea:86:b8:39:89:7e:9e:6c:96:25:41:e8:6d:
        9e:a6:9c:44:75:9d:c8:71:0b:71:83:07:b1:1e:8e:48:
        07:d5:41:66:6b:a3:14:52:be:94:ee:4a:18:c8:d8:cd:
        47:31:d3:ee:b4:f5:47:da:a3:7d:98:5f:2c:65:ac:6f:
        df:cd:3e:8d:fd:e7:2d:1a:b0:73:82:94:ef:c2:21:41:
        33:c4:78:34:90:f3:d4:47:02:b9:97:80:a7:4e:ce:84:
        af:7b:2f:91:1e:e8:76:2a:44:d8:2c:a4:92:a1:83:77:
        5f:e2:65:52:3d:6a:b1:8a:0b:7c:3f:c8:e2:55:ac:f8:
        c6:0c:e3:f1:f7:b9:6d:c2:7b:2d:66:0b:0b:12:db:68:
        5c:54:be:97:24:8b:6a:ac:c3:fb:07:b3:b6:a8:31:6c:
        91:3a:66:ae:be:f8:b7:49:f0:00:b8:d4:6e:38:46:b9:
        26:d2:ea:fc:09:22:7c:a2:b2:df:3c:f1:10:ec:15:0b
    Fingerprint (SHA-256):
        40:28:AB:67:EC:10:FB:BA:E0:9C:21:43:46:BC:B8:16:93:AE:11:4F:11:A8:AA:7A:47:9B:DC:6D:75:7F:13:1B
    Fingerprint (SHA1):
        AD:3D:79:B8:10:DA:E1:DD:88:5C:D4:E6:47:A9:90:90:10:89:64:A8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7327: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7328: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115939 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7329: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7330: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7331: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7332: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115940   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7333: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7334: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7335: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7336: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115941   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7337: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7338: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7339: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7340: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 510115942   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7341: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7342: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7343: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7344: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 510115943   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7345: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7346: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7347: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7348: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7349: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7350: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #7351: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115939 (0x1e67c063)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:05 2017
            Not After : Tue May 10 11:59:05 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:0a:3f:fd:7b:f6:1f:da:bd:11:44:84:8c:a1:1d:5f:
                    3c:cb:0a:05:8c:4b:cf:b9:76:b4:35:61:89:a0:ee:a3:
                    5b:bc:7f:74:9f:98:e4:98:56:c9:85:e9:49:a1:67:f7:
                    20:8b:e2:fd:b0:3d:2d:2e:d4:6a:c9:d6:94:b9:44:7e:
                    ab:93:cc:d6:03:44:27:ac:1d:cc:d7:f6:0b:71:87:4a:
                    01:21:e3:b4:eb:fb:2d:15:0c:ba:08:d0:4c:f9:2a:2d:
                    55:9a:6d:11:c6:df:44:0d:84:2b:89:77:79:d6:3f:36:
                    52:23:b5:9e:00:53:73:8e:98:89:7a:4e:e1:fe:b0:44:
                    39:5d:7f:f6:80:6f:21:83:e3:37:c1:15:af:4b:c5:5b:
                    14:c9:f0:07:13:3a:26:75:3c:e0:aa:03:81:fb:c8:6e:
                    9b:b3:f8:c5:e0:3f:5c:48:2b:5e:c1:cf:1d:bb:d0:8d:
                    7d:ef:96:a0:4d:a3:09:34:52:d7:c3:23:de:4a:b2:ad:
                    10:30:10:c9:be:46:27:d1:fb:58:72:47:6e:84:a9:ab:
                    d6:3e:c6:e2:b3:32:f1:53:20:6c:54:af:76:6c:f6:6d:
                    4c:cc:22:30:82:15:a8:9a:96:63:94:7a:c1:3e:d6:dd:
                    50:37:55:bc:21:1c:c3:54:d7:7e:2b:9f:f2:15:49:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c5:45:c9:02:c7:b0:3b:01:94:61:7c:61:11:21:b5:57:
        53:f4:69:7c:18:59:ce:f7:11:e8:9d:92:1b:96:b6:7d:
        35:5b:e2:9d:38:0a:d5:92:c6:7d:a8:77:98:90:c6:4d:
        a4:cd:81:dd:21:d7:51:bd:fc:3f:0c:c8:78:af:93:19:
        94:48:9e:8c:cf:eb:f8:22:a4:da:0b:34:48:80:a1:d0:
        b1:14:3b:6c:c1:28:8e:be:0e:0f:43:b8:a9:59:3f:2c:
        5f:6f:89:b0:be:7e:a2:a8:e6:a4:6b:9a:00:84:30:86:
        14:5e:5d:e2:89:c0:40:21:ec:89:82:84:fc:c7:a2:f3:
        c2:3e:d1:af:b0:01:f2:ec:f6:40:39:11:9e:04:be:e5:
        5f:dc:18:7e:99:74:4c:66:a0:b8:9d:78:90:89:9f:d7:
        d7:62:b6:9a:ea:80:75:d1:8b:4d:c3:0d:4a:17:e8:95:
        d7:d7:2e:cb:13:20:03:01:71:a7:fd:15:92:f4:8b:cf:
        9a:52:2b:2b:dd:ea:4a:b1:42:ea:a2:a1:92:78:9c:eb:
        30:55:3f:9b:14:c7:36:5e:6b:df:61:7e:bc:2b:22:43:
        ea:7a:5e:56:f1:36:d7:7e:77:0f:c2:c8:ba:ea:be:5f:
        ce:3a:0a:e2:bf:f4:c4:f6:dc:77:de:ae:e3:d5:b5:16
    Fingerprint (SHA-256):
        0F:1B:62:55:9B:B5:03:6F:75:34:C0:57:56:BD:69:AC:46:F8:10:DE:2F:EC:97:01:6A:93:2B:8B:20:6B:A7:64
    Fingerprint (SHA1):
        7C:9F:48:D2:86:7C:BB:62:3D:54:F8:DC:5D:90:16:4E:7A:42:EC:DE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7352: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7353: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115940 (0x1e67c064)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:05 2017
            Not After : Tue May 10 11:59:05 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:ee:6c:57:25:b4:f7:49:5a:07:01:42:a6:5d:6b:ef:
                    fe:2a:46:13:3f:f9:ce:25:7e:92:ba:14:9c:6e:0d:09:
                    d5:0b:b5:13:da:8f:02:8a:14:0f:cd:12:f0:50:e0:5c:
                    85:e9:c9:9f:b6:f6:0e:3a:47:7e:31:10:e3:eb:a2:de:
                    4d:8b:fa:8f:43:61:6f:b4:b5:3a:1b:7b:a7:82:c1:ae:
                    fb:ec:ee:62:63:48:99:55:12:16:5e:26:2a:a6:cb:d5:
                    91:d0:87:87:9f:c9:e2:6e:5b:16:cf:47:63:af:36:7d:
                    dd:cf:af:f1:6d:24:ca:14:88:f7:56:79:4d:2a:a9:f0:
                    1a:1d:d1:34:35:66:cc:5f:7d:7f:ed:99:b5:f8:63:b4:
                    41:34:9f:b4:fa:e7:f0:3d:44:26:f9:19:75:61:6d:8b:
                    f2:39:7a:63:1c:62:7a:18:93:d1:21:32:6c:46:e6:99:
                    71:32:51:fe:9d:30:97:0d:9d:84:49:64:34:39:5a:9a:
                    5a:37:8a:a8:a5:85:fe:e5:6f:01:17:7d:15:d3:ae:fb:
                    9e:0e:f0:48:60:10:cb:af:a6:25:16:a2:5b:7d:e5:91:
                    9b:31:c1:c8:ce:1d:e5:ee:92:4b:ed:1e:4d:81:9d:0a:
                    e4:dc:b3:ac:cf:8e:c3:8b:e8:0b:88:fb:9c:f6:5a:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:74:42:bf:d0:4e:c8:2b:98:c3:e5:a8:d1:31:be:92:
        e5:a7:ac:c6:59:da:1f:a9:3f:64:97:01:a7:d3:b6:97:
        9a:b3:b3:4a:32:79:b8:a2:d9:35:db:85:2e:73:d2:9a:
        c6:6d:de:2d:35:6a:7a:78:1f:ab:03:3d:1e:df:40:cb:
        a8:53:d0:a6:45:6f:e0:e2:1d:3e:67:f2:ff:1f:af:f1:
        1c:0c:48:ee:3d:31:41:46:c7:4a:09:1f:57:3e:7e:b0:
        a9:1d:26:d4:32:4e:0f:dc:cc:21:ec:cf:11:17:12:29:
        1a:dd:73:f8:7d:19:5c:00:72:17:20:23:d0:3f:f7:d9:
        8c:b8:33:78:76:96:74:06:95:4b:41:4c:49:9b:1c:6f:
        cb:0f:10:1c:45:bb:e2:79:7b:79:ee:9e:12:02:77:a8:
        38:5a:de:90:fb:3c:1b:1c:e7:62:bd:16:3a:c6:72:a9:
        70:46:bc:77:0a:72:08:23:f3:c6:be:1b:5d:0b:f0:1f:
        21:a5:1b:7e:51:82:a6:cc:73:3e:91:8f:87:fb:93:0c:
        ae:b2:a3:dd:46:d3:e3:ac:08:5e:44:40:52:b4:91:9b:
        2e:8a:bf:47:1a:25:be:49:e9:25:34:97:4a:4e:23:72:
        dd:78:95:07:21:9e:3b:f6:35:b1:06:11:4d:b8:57:93
    Fingerprint (SHA-256):
        FB:26:BC:D9:4E:CE:F0:8B:11:65:5B:E1:90:15:10:E6:BE:BA:95:91:AC:A9:21:6C:E6:CC:05:CF:E6:72:18:CE
    Fingerprint (SHA1):
        80:BE:40:EF:E9:EF:DE:86:0A:B3:82:03:B7:B0:EB:4B:C0:C4:FD:12
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7354: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7355: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7356: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115941 (0x1e67c065)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:59:06 2017
            Not After : Tue May 10 11:59:06 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:43:40:19:60:ce:49:bb:c0:91:93:4e:f6:6a:e1:e6:
                    bd:af:37:60:b3:73:2f:21:74:53:f5:7f:7e:a5:4c:d7:
                    bd:66:13:5f:92:2b:99:6f:f3:4f:76:d4:f7:db:00:6f:
                    c2:57:ad:04:91:b3:b1:c4:b8:8d:0f:c5:96:dc:88:ac:
                    2a:59:8c:c2:30:01:c9:62:8f:f4:fb:b7:cc:c3:69:21:
                    5f:ce:a8:3e:9d:00:0b:e0:a5:44:0e:f3:17:e5:dd:9c:
                    c7:d5:56:25:f0:0d:c9:23:70:db:d1:e5:45:0b:b0:05:
                    93:48:be:bf:ed:ee:ab:aa:0b:fe:db:22:b8:96:fa:df:
                    65:0d:4c:1d:af:d2:00:65:2c:e3:b0:8b:50:23:25:10:
                    86:23:6a:ed:76:1d:13:c8:64:18:d6:4b:af:07:82:33:
                    bd:5a:13:02:1f:82:42:a8:4c:3e:0c:fc:48:50:b9:fb:
                    4a:1d:da:6c:c1:29:56:36:39:08:90:52:f0:60:67:5c:
                    7c:54:ac:39:f9:48:fa:dd:82:21:32:d1:e2:79:17:9d:
                    b2:38:ef:aa:2c:79:89:e4:2e:79:7e:2b:0a:7e:0b:f9:
                    49:56:5a:dc:f8:43:db:2b:1b:4f:3a:05:66:59:c0:c4:
                    e1:b9:1a:5f:be:83:c1:33:cd:16:ac:ad:28:c9:70:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:a6:42:13:5a:07:7b:11:b7:74:72:8a:59:a6:ab:86:
        f6:dd:b2:92:7b:d4:db:c1:f8:6a:43:3d:87:20:6d:37:
        69:8f:75:45:6d:3e:fb:95:fb:11:52:a9:01:cd:7f:3b:
        6b:27:13:d3:ac:7e:cb:94:ba:7f:4d:38:4a:dc:2f:6f:
        00:f9:66:0c:d3:8b:97:cb:8e:cc:ca:8f:c6:cc:f9:a7:
        26:54:65:77:72:34:b3:a8:23:00:19:b8:53:6f:eb:33:
        29:16:f1:9c:c0:80:1b:98:f7:72:11:92:d0:81:18:1c:
        3d:9b:d2:18:97:76:4a:81:e4:2b:b0:f0:0a:42:22:fd:
        5a:34:3a:a0:d2:d6:b9:cd:bc:b6:82:92:2e:44:ce:1d:
        33:5f:01:8c:99:7d:4c:64:c5:c3:93:e1:a6:ef:d5:4c:
        f2:97:46:f5:cc:e4:ca:9c:a8:02:59:9c:a2:e7:09:49:
        d2:99:13:36:a3:ec:29:b6:60:0a:fb:74:c0:3b:12:44:
        ac:da:bd:cf:8f:95:96:3a:0a:15:21:ed:9d:ed:ec:6d:
        00:5e:ef:f3:24:7b:6f:4c:70:72:8f:7b:67:26:07:bc:
        36:29:ff:54:2a:39:8c:ab:31:98:d6:14:e0:a5:e0:56:
        d1:31:7b:90:cf:ad:dc:ab:d3:95:98:1c:55:1e:78:70
    Fingerprint (SHA-256):
        6B:C1:5A:F2:02:CD:62:4A:3E:92:87:75:80:93:64:CD:31:81:53:CF:5C:16:AC:AD:C1:8F:9D:D5:59:36:9D:67
    Fingerprint (SHA1):
        B4:06:D4:1C:BD:3C:8F:E1:74:69:F4:22:5B:AE:23:51:05:92:56:00
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7357: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7358: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115944 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7359: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7360: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7361: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7362: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115945   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7363: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7364: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7365: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7366: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115946   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA1Root-510115723.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7367: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7368: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7369: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7370: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510115947   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7371: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7372: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #7373: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115944 (0x1e67c068)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:07 2017
            Not After : Tue May 10 11:59:07 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:5e:ec:be:a3:53:95:be:67:19:b6:bc:8e:01:72:cf:
                    f0:48:14:03:d0:d7:63:25:0e:44:6c:c8:6f:62:b1:61:
                    50:6e:ed:71:fc:0d:e1:40:28:30:ac:6e:c2:0c:51:43:
                    ef:0a:e5:af:c6:1d:54:be:d7:3e:c7:dd:8f:24:07:d8:
                    14:0c:92:46:aa:92:04:20:ae:a9:09:f3:ef:f2:c6:7b:
                    72:8e:fa:4d:ab:3a:d6:8b:46:ed:81:e8:98:65:da:4b:
                    24:43:6e:28:97:dd:d2:dc:cf:01:49:6d:04:a5:78:93:
                    9b:d8:0b:bb:df:43:64:4e:a5:47:08:60:0d:6f:ab:8d:
                    3c:0b:39:1b:c3:f0:57:8f:0a:47:1f:7e:04:f2:fe:5b:
                    da:1f:12:88:ab:2f:21:a4:32:f7:1f:9f:4c:e9:75:d1:
                    27:31:4b:87:7d:16:c0:02:9b:84:53:74:3b:98:3e:cb:
                    98:64:d8:3d:d7:aa:6a:93:8f:da:39:d9:ea:8d:4e:64:
                    57:05:2d:90:a1:3a:2a:84:8c:0d:ae:ce:87:00:b3:1d:
                    04:0a:78:8d:9a:49:2c:51:e8:93:cc:8d:d0:f9:8e:cf:
                    b3:9c:1d:48:91:83:9d:dd:be:53:4d:49:74:3a:52:de:
                    cc:d9:d2:29:8d:83:f9:37:05:20:3f:6b:29:5a:c6:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:fc:4a:73:0f:b8:80:d5:44:de:40:e7:e1:6b:33:a4:
        a9:b6:b2:15:3a:ff:6b:6e:d0:36:f5:bd:fd:2d:69:f1:
        c3:79:da:2f:a0:d3:b1:b4:11:ca:e7:61:50:d4:bc:28:
        59:88:50:b0:b5:7b:3b:8a:d4:44:75:06:92:56:4b:10:
        d0:a8:01:d0:c0:0a:b3:e2:31:40:60:85:39:f1:d3:bf:
        a5:84:7a:2e:ea:91:43:0e:4e:8f:30:a7:58:81:46:a1:
        02:4f:7f:10:84:dd:76:07:01:e4:18:54:4c:9a:31:dc:
        d1:84:4c:8c:bb:b2:28:60:6a:e9:da:6e:8f:9c:6b:d5:
        45:0e:98:bb:ee:8c:f3:28:f7:78:22:13:51:02:86:56:
        d2:75:63:b4:54:01:b2:b8:22:f1:41:11:b2:27:7c:40:
        57:e4:bf:74:9c:6b:ec:2c:7f:8a:d1:78:4d:b3:bd:1b:
        05:f4:c4:bb:61:8f:a6:07:02:1b:4d:e4:47:aa:88:4a:
        09:b9:2f:3d:64:44:0e:0a:7f:06:b2:13:c1:97:82:de:
        e9:4c:88:83:b2:4e:07:a1:b9:8a:05:98:8f:d6:29:ed:
        2e:1b:21:76:ea:41:88:ae:3c:3b:cd:03:4b:66:7e:53:
        03:9a:5e:05:cc:e5:ee:40:d6:98:57:69:98:ba:12:23
    Fingerprint (SHA-256):
        D6:34:66:EE:5A:E4:D0:6A:5B:10:66:B2:F4:8C:B8:78:EC:69:E2:A5:AF:C3:54:2C:53:F8:48:F4:BD:15:39:58
    Fingerprint (SHA1):
        1B:1E:FC:C4:E7:00:1C:3C:D7:34:C4:A5:5A:9C:A6:9D:E3:C0:7B:03
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7374: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7375: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115948 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7376: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7377: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7378: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115949 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7379: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7380: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7381: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7382: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510115950 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7383: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7384: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510115951 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7385: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7386: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7387: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7388: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7389: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510115952   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-Bridge-510115724.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7390: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7391: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7392: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7393: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115953   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7394: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7395: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7396: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7397: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115949 (0x1e67c06d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:59:09 2017
            Not After : Tue May 10 11:59:09 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:3a:78:ca:3e:9a:6e:39:31:c3:c0:a4:c8:33:85:c9:
                    68:d6:de:53:6b:e4:eb:41:14:7c:2d:67:06:32:6e:e8:
                    d2:5e:a4:98:68:cb:5b:18:f0:c8:eb:74:9c:33:aa:c3:
                    a6:f7:e3:28:46:8e:90:3a:5a:b4:24:b3:76:90:ff:84:
                    b1:ab:2f:09:76:2f:10:0d:bf:e5:39:12:1e:ef:69:d2:
                    9e:49:de:4f:00:33:42:2a:6c:c6:81:ec:65:9e:ad:57:
                    27:af:f8:a4:e3:9f:aa:1d:ad:a5:e2:98:e2:54:ca:e6:
                    f4:6c:d3:9a:df:7b:34:a3:83:53:4b:cf:21:4d:be:a9:
                    09:21:e2:c6:c1:37:dc:65:2f:01:d8:3e:31:37:12:fe:
                    80:1c:1f:3c:a4:4e:19:30:8e:cf:90:48:a2:f7:e7:0c:
                    e3:d3:a2:42:6d:2e:0b:30:c2:e6:71:e3:47:a6:e2:d5:
                    fb:ad:29:0b:65:96:70:ac:f9:8f:a1:3f:f4:74:65:b9:
                    85:2b:9c:22:57:10:ea:39:03:5e:65:4c:99:2e:cf:ae:
                    45:b1:9d:49:38:b2:77:58:bd:af:fd:8c:da:7b:62:97:
                    0a:b5:eb:73:9d:73:a6:96:cd:a9:fe:db:98:b0:fe:e6:
                    d7:a0:1a:16:27:96:16:8a:f8:ce:7f:74:dd:ae:ea:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:fd:54:1d:14:a5:90:ea:d5:0b:df:b9:96:b5:af:b4:
        42:89:f7:fe:15:9c:da:6a:a6:58:2d:25:a9:d1:25:a1:
        11:d7:63:41:73:42:77:53:56:2c:83:65:24:b3:91:f0:
        35:e6:82:95:07:67:7f:81:be:a6:d5:11:93:81:9e:a7:
        dd:88:fd:32:e1:ac:c8:2d:c4:f2:d6:b6:6f:f4:6a:2f:
        93:f4:04:b7:59:31:8f:1f:d3:9d:f5:f2:25:20:54:3d:
        13:a2:75:66:7f:a3:ae:20:d0:da:a8:a4:48:bd:3f:99:
        15:dd:f3:30:0f:16:6c:4a:af:9e:6e:dc:dd:c2:c2:00:
        af:10:75:1f:c4:b7:c1:ce:97:b4:e3:4a:49:aa:34:1e:
        20:ea:b9:5f:eb:71:3e:2f:89:09:94:4d:7e:9f:d5:d4:
        24:1a:4b:7b:1d:56:b6:b0:6c:c0:1b:a1:cc:8c:cb:59:
        ed:20:e1:5b:ce:b1:87:bd:d7:34:8b:66:ca:7a:b4:fb:
        89:a8:4f:49:f3:91:0b:40:ff:ca:ae:40:d4:d8:d6:3f:
        56:ed:ac:d5:cf:dc:e1:be:4d:3d:23:d9:2f:f5:d1:15:
        b5:16:8e:03:a2:33:3f:93:3b:f5:2e:06:8f:1e:a8:53:
        8d:be:5a:d7:7d:ed:9e:f9:25:b6:5c:28:6d:b4:5b:30
    Fingerprint (SHA-256):
        21:70:4D:CA:06:7F:D5:64:5E:B3:71:DF:8E:D7:34:91:1A:4F:E2:40:23:65:0C:40:EF:47:59:4C:11:8F:12:B3
    Fingerprint (SHA1):
        1A:B5:6C:83:99:2A:7D:B0:66:53:7C:C9:87:E4:F7:70:94:3E:21:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7398: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115949 (0x1e67c06d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:59:09 2017
            Not After : Tue May 10 11:59:09 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:3a:78:ca:3e:9a:6e:39:31:c3:c0:a4:c8:33:85:c9:
                    68:d6:de:53:6b:e4:eb:41:14:7c:2d:67:06:32:6e:e8:
                    d2:5e:a4:98:68:cb:5b:18:f0:c8:eb:74:9c:33:aa:c3:
                    a6:f7:e3:28:46:8e:90:3a:5a:b4:24:b3:76:90:ff:84:
                    b1:ab:2f:09:76:2f:10:0d:bf:e5:39:12:1e:ef:69:d2:
                    9e:49:de:4f:00:33:42:2a:6c:c6:81:ec:65:9e:ad:57:
                    27:af:f8:a4:e3:9f:aa:1d:ad:a5:e2:98:e2:54:ca:e6:
                    f4:6c:d3:9a:df:7b:34:a3:83:53:4b:cf:21:4d:be:a9:
                    09:21:e2:c6:c1:37:dc:65:2f:01:d8:3e:31:37:12:fe:
                    80:1c:1f:3c:a4:4e:19:30:8e:cf:90:48:a2:f7:e7:0c:
                    e3:d3:a2:42:6d:2e:0b:30:c2:e6:71:e3:47:a6:e2:d5:
                    fb:ad:29:0b:65:96:70:ac:f9:8f:a1:3f:f4:74:65:b9:
                    85:2b:9c:22:57:10:ea:39:03:5e:65:4c:99:2e:cf:ae:
                    45:b1:9d:49:38:b2:77:58:bd:af:fd:8c:da:7b:62:97:
                    0a:b5:eb:73:9d:73:a6:96:cd:a9:fe:db:98:b0:fe:e6:
                    d7:a0:1a:16:27:96:16:8a:f8:ce:7f:74:dd:ae:ea:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:fd:54:1d:14:a5:90:ea:d5:0b:df:b9:96:b5:af:b4:
        42:89:f7:fe:15:9c:da:6a:a6:58:2d:25:a9:d1:25:a1:
        11:d7:63:41:73:42:77:53:56:2c:83:65:24:b3:91:f0:
        35:e6:82:95:07:67:7f:81:be:a6:d5:11:93:81:9e:a7:
        dd:88:fd:32:e1:ac:c8:2d:c4:f2:d6:b6:6f:f4:6a:2f:
        93:f4:04:b7:59:31:8f:1f:d3:9d:f5:f2:25:20:54:3d:
        13:a2:75:66:7f:a3:ae:20:d0:da:a8:a4:48:bd:3f:99:
        15:dd:f3:30:0f:16:6c:4a:af:9e:6e:dc:dd:c2:c2:00:
        af:10:75:1f:c4:b7:c1:ce:97:b4:e3:4a:49:aa:34:1e:
        20:ea:b9:5f:eb:71:3e:2f:89:09:94:4d:7e:9f:d5:d4:
        24:1a:4b:7b:1d:56:b6:b0:6c:c0:1b:a1:cc:8c:cb:59:
        ed:20:e1:5b:ce:b1:87:bd:d7:34:8b:66:ca:7a:b4:fb:
        89:a8:4f:49:f3:91:0b:40:ff:ca:ae:40:d4:d8:d6:3f:
        56:ed:ac:d5:cf:dc:e1:be:4d:3d:23:d9:2f:f5:d1:15:
        b5:16:8e:03:a2:33:3f:93:3b:f5:2e:06:8f:1e:a8:53:
        8d:be:5a:d7:7d:ed:9e:f9:25:b6:5c:28:6d:b4:5b:30
    Fingerprint (SHA-256):
        21:70:4D:CA:06:7F:D5:64:5E:B3:71:DF:8E:D7:34:91:1A:4F:E2:40:23:65:0C:40:EF:47:59:4C:11:8F:12:B3
    Fingerprint (SHA1):
        1A:B5:6C:83:99:2A:7D:B0:66:53:7C:C9:87:E4:F7:70:94:3E:21:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7399: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7400: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115954 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7401: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7402: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7403: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115955 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7404: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7405: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7406: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7407: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510115956 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7408: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7409: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510115957 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7410: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7411: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7412: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7413: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7414: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510115958   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-Bridge-510115725.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7415: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7416: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7417: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7418: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115959   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7419: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7420: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7421: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7422: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510115960   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-BridgeNavy-510115726.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7423: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7424: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7425: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7426: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510115961   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7427: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7428: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7429: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7430: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115955 (0x1e67c073)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:59:11 2017
            Not After : Tue May 10 11:59:11 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:5f:d6:fb:1f:e3:54:97:23:40:15:b4:cd:34:b1:4d:
                    f4:48:54:3f:d9:d2:f4:6f:57:6e:1f:39:eb:c7:b9:98:
                    6e:29:7a:a4:19:14:7e:d6:b0:f4:16:8a:31:7c:95:14:
                    d6:9c:cf:6c:16:e8:91:27:7d:f8:10:ed:57:37:4b:c6:
                    9e:94:a3:3c:be:15:38:b2:41:26:24:f2:7f:79:94:23:
                    46:6f:af:f0:fa:88:98:a5:3d:c6:19:d7:7f:c7:a6:11:
                    7c:46:bf:54:8b:54:2f:b8:d6:c6:ac:3c:f7:77:b1:03:
                    49:ba:21:e8:3b:a5:3d:ec:5c:fe:ff:cc:40:bf:2e:18:
                    1a:99:44:61:22:bc:78:6e:33:19:0c:12:71:10:f6:1b:
                    b1:88:be:f4:1e:17:f0:b4:34:4a:8d:b1:e1:e2:92:4e:
                    8b:3e:e0:12:23:c7:b1:5e:ec:a9:f0:46:7d:19:a8:19:
                    2b:04:87:49:e2:62:1b:22:5e:53:5e:18:2e:cb:9d:86:
                    16:d5:92:0a:dd:20:39:1a:8c:d9:ef:3a:f8:94:7a:25:
                    8a:5a:2e:66:4e:05:e9:cf:ac:45:d7:aa:14:26:60:1e:
                    79:b8:ea:e9:03:fe:9c:da:4e:74:37:e2:99:bc:19:de:
                    fd:83:51:e1:55:1a:75:00:09:57:16:89:b9:2e:d4:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:6f:93:2b:fa:fa:1f:75:a1:34:04:28:89:11:fb:10:
        01:dc:a3:be:0c:34:c7:57:32:70:08:77:1a:5b:e8:7f:
        df:77:33:09:5f:7c:14:28:39:e9:9e:53:80:da:99:48:
        82:5c:99:04:fd:f0:38:8e:09:ef:94:cd:ba:e4:ce:e4:
        7d:cb:00:7e:34:a2:90:7c:77:9e:71:b0:b0:41:ec:fd:
        7f:ac:10:f7:b6:57:aa:c5:fb:c9:c4:31:d2:ff:c1:6f:
        d9:01:35:25:69:6a:72:87:16:cb:7f:df:f6:c0:d0:b0:
        d8:0e:46:a4:16:9b:47:61:52:af:1a:a7:e0:54:d5:1d:
        85:30:73:9b:a8:d5:2e:f9:e4:15:83:f1:b4:11:cd:1f:
        9f:0c:b1:90:1e:33:a2:65:ea:71:c8:9d:f7:ca:b2:64:
        5c:06:85:ad:66:57:1d:0d:15:c6:51:bf:e0:60:01:83:
        ab:d7:a7:4e:13:86:72:dd:da:96:14:1a:5d:2c:21:8d:
        99:88:ab:e5:c1:90:37:73:d8:8d:a4:99:de:e5:c5:c8:
        fd:bd:cc:e4:6f:92:d0:58:ef:d3:cb:a2:11:c4:da:42:
        39:bb:08:c1:24:0d:f3:99:39:f6:48:c9:4b:92:7e:a9:
        00:1e:89:45:fb:ff:09:07:e0:bc:95:2e:65:0b:80:fa
    Fingerprint (SHA-256):
        B9:E7:CA:84:3A:2A:17:08:15:41:D7:6B:16:ED:EA:6C:BA:19:54:AC:1A:ED:76:82:6B:C3:31:EF:E4:E8:12:8B
    Fingerprint (SHA1):
        B8:28:30:05:D7:D6:CB:23:B9:A8:D8:EA:5A:92:38:FE:25:B7:B6:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7431: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115955 (0x1e67c073)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:59:11 2017
            Not After : Tue May 10 11:59:11 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:5f:d6:fb:1f:e3:54:97:23:40:15:b4:cd:34:b1:4d:
                    f4:48:54:3f:d9:d2:f4:6f:57:6e:1f:39:eb:c7:b9:98:
                    6e:29:7a:a4:19:14:7e:d6:b0:f4:16:8a:31:7c:95:14:
                    d6:9c:cf:6c:16:e8:91:27:7d:f8:10:ed:57:37:4b:c6:
                    9e:94:a3:3c:be:15:38:b2:41:26:24:f2:7f:79:94:23:
                    46:6f:af:f0:fa:88:98:a5:3d:c6:19:d7:7f:c7:a6:11:
                    7c:46:bf:54:8b:54:2f:b8:d6:c6:ac:3c:f7:77:b1:03:
                    49:ba:21:e8:3b:a5:3d:ec:5c:fe:ff:cc:40:bf:2e:18:
                    1a:99:44:61:22:bc:78:6e:33:19:0c:12:71:10:f6:1b:
                    b1:88:be:f4:1e:17:f0:b4:34:4a:8d:b1:e1:e2:92:4e:
                    8b:3e:e0:12:23:c7:b1:5e:ec:a9:f0:46:7d:19:a8:19:
                    2b:04:87:49:e2:62:1b:22:5e:53:5e:18:2e:cb:9d:86:
                    16:d5:92:0a:dd:20:39:1a:8c:d9:ef:3a:f8:94:7a:25:
                    8a:5a:2e:66:4e:05:e9:cf:ac:45:d7:aa:14:26:60:1e:
                    79:b8:ea:e9:03:fe:9c:da:4e:74:37:e2:99:bc:19:de:
                    fd:83:51:e1:55:1a:75:00:09:57:16:89:b9:2e:d4:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:6f:93:2b:fa:fa:1f:75:a1:34:04:28:89:11:fb:10:
        01:dc:a3:be:0c:34:c7:57:32:70:08:77:1a:5b:e8:7f:
        df:77:33:09:5f:7c:14:28:39:e9:9e:53:80:da:99:48:
        82:5c:99:04:fd:f0:38:8e:09:ef:94:cd:ba:e4:ce:e4:
        7d:cb:00:7e:34:a2:90:7c:77:9e:71:b0:b0:41:ec:fd:
        7f:ac:10:f7:b6:57:aa:c5:fb:c9:c4:31:d2:ff:c1:6f:
        d9:01:35:25:69:6a:72:87:16:cb:7f:df:f6:c0:d0:b0:
        d8:0e:46:a4:16:9b:47:61:52:af:1a:a7:e0:54:d5:1d:
        85:30:73:9b:a8:d5:2e:f9:e4:15:83:f1:b4:11:cd:1f:
        9f:0c:b1:90:1e:33:a2:65:ea:71:c8:9d:f7:ca:b2:64:
        5c:06:85:ad:66:57:1d:0d:15:c6:51:bf:e0:60:01:83:
        ab:d7:a7:4e:13:86:72:dd:da:96:14:1a:5d:2c:21:8d:
        99:88:ab:e5:c1:90:37:73:d8:8d:a4:99:de:e5:c5:c8:
        fd:bd:cc:e4:6f:92:d0:58:ef:d3:cb:a2:11:c4:da:42:
        39:bb:08:c1:24:0d:f3:99:39:f6:48:c9:4b:92:7e:a9:
        00:1e:89:45:fb:ff:09:07:e0:bc:95:2e:65:0b:80:fa
    Fingerprint (SHA-256):
        B9:E7:CA:84:3A:2A:17:08:15:41:D7:6B:16:ED:EA:6C:BA:19:54:AC:1A:ED:76:82:6B:C3:31:EF:E4:E8:12:8B
    Fingerprint (SHA1):
        B8:28:30:05:D7:D6:CB:23:B9:A8:D8:EA:5A:92:38:FE:25:B7:B6:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7432: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #7433: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115954 (0x1e67c072)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:59:11 2017
            Not After : Tue May 10 11:59:11 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:af:54:de:23:83:1c:2a:16:be:e9:44:ab:a8:53:29:
                    46:28:a1:60:01:7d:1c:bc:ad:02:a3:4f:53:2b:7a:e8:
                    7f:c2:fc:b5:63:28:0c:f4:bf:da:22:00:35:43:21:64:
                    fa:8c:eb:2d:54:ba:62:9d:d4:eb:32:6e:60:9d:39:7c:
                    c3:a0:32:11:0f:80:c3:ee:1c:e5:21:16:76:b8:86:57:
                    44:52:0f:3b:77:47:56:77:e1:5a:72:17:4c:e9:7d:85:
                    13:82:d0:75:c5:44:97:23:74:96:f4:b2:8b:9a:7d:a5:
                    44:35:eb:4a:f5:bb:37:e1:d6:62:15:37:a9:c0:b2:fc:
                    40:03:54:a2:55:78:85:55:92:9c:f9:51:0f:24:72:bf:
                    77:59:8c:36:7e:8a:e8:56:fe:b7:40:e7:8c:78:5e:37:
                    b7:e8:15:83:43:9d:1f:fb:a2:60:65:25:e1:be:ab:07:
                    34:68:17:11:c2:6c:f3:da:1c:56:0d:21:4f:4e:ef:1a:
                    80:8e:26:96:13:85:ee:b5:80:02:da:be:c7:38:dc:14:
                    83:d3:d4:31:54:cc:d2:f2:b2:26:e4:05:b1:82:5d:fa:
                    70:cc:d8:79:63:80:20:d4:dd:71:9c:c0:8d:0f:ff:c0:
                    c5:45:e0:d6:15:bd:93:94:65:ff:53:64:17:8c:1d:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:81:86:1c:92:3e:c0:5a:7c:5c:9c:96:bf:51:56:56:
        08:78:06:38:5d:77:6a:d2:b1:81:8f:f8:b9:33:f4:28:
        66:c9:c6:62:a6:64:65:48:44:24:1b:ac:7a:a3:c6:06:
        54:97:9c:59:25:89:d3:be:dd:28:18:d0:d7:a4:b7:dc:
        fe:13:2f:f8:a8:3e:10:8e:b1:7b:39:b0:38:fc:d2:95:
        ed:bb:01:49:66:bb:0b:71:48:33:13:ea:2f:ca:ce:81:
        30:47:e7:da:39:71:f2:62:f7:19:4d:f7:2a:3b:82:91:
        91:50:da:62:18:f0:66:37:84:4f:17:50:65:1c:fe:62:
        c8:e3:42:98:6d:49:84:f6:a9:34:9f:c9:88:54:6e:5a:
        3a:f9:44:a1:6c:14:3c:5c:90:35:44:9d:69:80:57:dc:
        32:4b:6a:4a:ea:1a:20:e4:e5:8b:78:29:56:9f:43:cb:
        c7:a2:97:dd:83:34:4b:dd:57:e5:c6:83:33:bf:18:4d:
        f2:fc:60:84:9f:93:9a:26:e1:cd:dc:a5:fe:e1:67:45:
        62:10:39:37:8a:d1:c5:0d:26:76:6a:fb:af:80:d6:18:
        42:08:7a:9e:85:c8:67:7f:7a:2f:18:2f:1b:12:8f:e0:
        49:51:e3:01:fa:2f:8a:e3:07:c5:1a:33:86:3d:8c:c3
    Fingerprint (SHA-256):
        6D:0A:D2:2F:94:B6:39:0D:55:4F:EB:7F:69:9C:92:D8:B4:A6:8E:3A:92:6F:E3:10:DC:C0:32:BE:90:0F:A8:F6
    Fingerprint (SHA1):
        08:C5:6F:9C:7A:96:81:3D:0D:FB:C2:C5:8E:03:20:C0:B8:75:D5:D6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7434: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115955 (0x1e67c073)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:59:11 2017
            Not After : Tue May 10 11:59:11 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:5f:d6:fb:1f:e3:54:97:23:40:15:b4:cd:34:b1:4d:
                    f4:48:54:3f:d9:d2:f4:6f:57:6e:1f:39:eb:c7:b9:98:
                    6e:29:7a:a4:19:14:7e:d6:b0:f4:16:8a:31:7c:95:14:
                    d6:9c:cf:6c:16:e8:91:27:7d:f8:10:ed:57:37:4b:c6:
                    9e:94:a3:3c:be:15:38:b2:41:26:24:f2:7f:79:94:23:
                    46:6f:af:f0:fa:88:98:a5:3d:c6:19:d7:7f:c7:a6:11:
                    7c:46:bf:54:8b:54:2f:b8:d6:c6:ac:3c:f7:77:b1:03:
                    49:ba:21:e8:3b:a5:3d:ec:5c:fe:ff:cc:40:bf:2e:18:
                    1a:99:44:61:22:bc:78:6e:33:19:0c:12:71:10:f6:1b:
                    b1:88:be:f4:1e:17:f0:b4:34:4a:8d:b1:e1:e2:92:4e:
                    8b:3e:e0:12:23:c7:b1:5e:ec:a9:f0:46:7d:19:a8:19:
                    2b:04:87:49:e2:62:1b:22:5e:53:5e:18:2e:cb:9d:86:
                    16:d5:92:0a:dd:20:39:1a:8c:d9:ef:3a:f8:94:7a:25:
                    8a:5a:2e:66:4e:05:e9:cf:ac:45:d7:aa:14:26:60:1e:
                    79:b8:ea:e9:03:fe:9c:da:4e:74:37:e2:99:bc:19:de:
                    fd:83:51:e1:55:1a:75:00:09:57:16:89:b9:2e:d4:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:6f:93:2b:fa:fa:1f:75:a1:34:04:28:89:11:fb:10:
        01:dc:a3:be:0c:34:c7:57:32:70:08:77:1a:5b:e8:7f:
        df:77:33:09:5f:7c:14:28:39:e9:9e:53:80:da:99:48:
        82:5c:99:04:fd:f0:38:8e:09:ef:94:cd:ba:e4:ce:e4:
        7d:cb:00:7e:34:a2:90:7c:77:9e:71:b0:b0:41:ec:fd:
        7f:ac:10:f7:b6:57:aa:c5:fb:c9:c4:31:d2:ff:c1:6f:
        d9:01:35:25:69:6a:72:87:16:cb:7f:df:f6:c0:d0:b0:
        d8:0e:46:a4:16:9b:47:61:52:af:1a:a7:e0:54:d5:1d:
        85:30:73:9b:a8:d5:2e:f9:e4:15:83:f1:b4:11:cd:1f:
        9f:0c:b1:90:1e:33:a2:65:ea:71:c8:9d:f7:ca:b2:64:
        5c:06:85:ad:66:57:1d:0d:15:c6:51:bf:e0:60:01:83:
        ab:d7:a7:4e:13:86:72:dd:da:96:14:1a:5d:2c:21:8d:
        99:88:ab:e5:c1:90:37:73:d8:8d:a4:99:de:e5:c5:c8:
        fd:bd:cc:e4:6f:92:d0:58:ef:d3:cb:a2:11:c4:da:42:
        39:bb:08:c1:24:0d:f3:99:39:f6:48:c9:4b:92:7e:a9:
        00:1e:89:45:fb:ff:09:07:e0:bc:95:2e:65:0b:80:fa
    Fingerprint (SHA-256):
        B9:E7:CA:84:3A:2A:17:08:15:41:D7:6B:16:ED:EA:6C:BA:19:54:AC:1A:ED:76:82:6B:C3:31:EF:E4:E8:12:8B
    Fingerprint (SHA1):
        B8:28:30:05:D7:D6:CB:23:B9:A8:D8:EA:5A:92:38:FE:25:B7:B6:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7435: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115955 (0x1e67c073)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:59:11 2017
            Not After : Tue May 10 11:59:11 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:5f:d6:fb:1f:e3:54:97:23:40:15:b4:cd:34:b1:4d:
                    f4:48:54:3f:d9:d2:f4:6f:57:6e:1f:39:eb:c7:b9:98:
                    6e:29:7a:a4:19:14:7e:d6:b0:f4:16:8a:31:7c:95:14:
                    d6:9c:cf:6c:16:e8:91:27:7d:f8:10:ed:57:37:4b:c6:
                    9e:94:a3:3c:be:15:38:b2:41:26:24:f2:7f:79:94:23:
                    46:6f:af:f0:fa:88:98:a5:3d:c6:19:d7:7f:c7:a6:11:
                    7c:46:bf:54:8b:54:2f:b8:d6:c6:ac:3c:f7:77:b1:03:
                    49:ba:21:e8:3b:a5:3d:ec:5c:fe:ff:cc:40:bf:2e:18:
                    1a:99:44:61:22:bc:78:6e:33:19:0c:12:71:10:f6:1b:
                    b1:88:be:f4:1e:17:f0:b4:34:4a:8d:b1:e1:e2:92:4e:
                    8b:3e:e0:12:23:c7:b1:5e:ec:a9:f0:46:7d:19:a8:19:
                    2b:04:87:49:e2:62:1b:22:5e:53:5e:18:2e:cb:9d:86:
                    16:d5:92:0a:dd:20:39:1a:8c:d9:ef:3a:f8:94:7a:25:
                    8a:5a:2e:66:4e:05:e9:cf:ac:45:d7:aa:14:26:60:1e:
                    79:b8:ea:e9:03:fe:9c:da:4e:74:37:e2:99:bc:19:de:
                    fd:83:51:e1:55:1a:75:00:09:57:16:89:b9:2e:d4:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:6f:93:2b:fa:fa:1f:75:a1:34:04:28:89:11:fb:10:
        01:dc:a3:be:0c:34:c7:57:32:70:08:77:1a:5b:e8:7f:
        df:77:33:09:5f:7c:14:28:39:e9:9e:53:80:da:99:48:
        82:5c:99:04:fd:f0:38:8e:09:ef:94:cd:ba:e4:ce:e4:
        7d:cb:00:7e:34:a2:90:7c:77:9e:71:b0:b0:41:ec:fd:
        7f:ac:10:f7:b6:57:aa:c5:fb:c9:c4:31:d2:ff:c1:6f:
        d9:01:35:25:69:6a:72:87:16:cb:7f:df:f6:c0:d0:b0:
        d8:0e:46:a4:16:9b:47:61:52:af:1a:a7:e0:54:d5:1d:
        85:30:73:9b:a8:d5:2e:f9:e4:15:83:f1:b4:11:cd:1f:
        9f:0c:b1:90:1e:33:a2:65:ea:71:c8:9d:f7:ca:b2:64:
        5c:06:85:ad:66:57:1d:0d:15:c6:51:bf:e0:60:01:83:
        ab:d7:a7:4e:13:86:72:dd:da:96:14:1a:5d:2c:21:8d:
        99:88:ab:e5:c1:90:37:73:d8:8d:a4:99:de:e5:c5:c8:
        fd:bd:cc:e4:6f:92:d0:58:ef:d3:cb:a2:11:c4:da:42:
        39:bb:08:c1:24:0d:f3:99:39:f6:48:c9:4b:92:7e:a9:
        00:1e:89:45:fb:ff:09:07:e0:bc:95:2e:65:0b:80:fa
    Fingerprint (SHA-256):
        B9:E7:CA:84:3A:2A:17:08:15:41:D7:6B:16:ED:EA:6C:BA:19:54:AC:1A:ED:76:82:6B:C3:31:EF:E4:E8:12:8B
    Fingerprint (SHA1):
        B8:28:30:05:D7:D6:CB:23:B9:A8:D8:EA:5A:92:38:FE:25:B7:B6:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7436: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7437: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115962 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7438: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7439: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7440: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115963 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7441: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7442: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #7443: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7444: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 510115964   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7445: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7446: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #7447: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7448: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 510115965   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7449: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7450: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7451: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7452: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 510115966 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7453: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7454: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 510115967 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7455: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7456: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #7457: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7458: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7459: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510115968   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7460: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7461: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7462: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7463: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510115969   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7464: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7465: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7466: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7467: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115970   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7468: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7469: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7470: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7471: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510115971   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7472: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7473: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7474: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115962 (0x1e67c07a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 11:59:13 2017
            Not After : Tue May 10 11:59:13 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:c8:56:b0:b3:f1:b7:33:71:cc:ab:3a:d3:40:fc:03:
                    3f:55:1e:94:57:88:e8:db:93:06:f6:f0:94:83:56:75:
                    a9:bc:25:5a:90:55:25:40:bd:3c:68:98:97:ac:4c:0b:
                    19:79:4b:71:ad:20:61:2c:5b:ce:04:65:12:df:71:40:
                    21:40:99:e7:9e:ca:41:d7:ab:a3:30:c0:7f:93:f8:8b:
                    26:6f:9c:42:6e:2a:3c:03:d9:cf:98:5d:35:bb:1a:9b:
                    fe:3f:30:5a:b4:24:01:cf:b4:bc:6d:05:14:38:4e:9e:
                    9a:91:b6:b7:63:c0:7a:57:cc:65:9a:c8:98:eb:2f:b3:
                    f2:6c:13:38:44:27:78:25:fd:4e:53:ec:3f:3c:b1:28:
                    65:b9:93:a7:27:04:ed:30:9e:34:d9:1a:62:71:12:ea:
                    66:b7:59:4a:9b:95:78:b5:62:65:f1:00:1f:00:0e:8d:
                    72:9b:06:42:96:20:ce:15:08:5d:bd:ef:54:83:42:fc:
                    60:05:cc:cc:0d:cf:8e:e1:48:d3:61:73:33:88:4e:d5:
                    dc:e8:8f:83:bb:53:34:63:64:d0:a3:ca:00:ca:d2:c5:
                    e9:5f:a9:e2:89:ad:21:db:36:a2:98:c1:9b:07:6b:ac:
                    c4:d9:9d:fa:66:7b:7f:2b:8e:59:0b:87:ba:86:69:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        86:bd:da:d1:0d:a1:42:58:8f:53:19:26:57:42:e3:6e:
        bc:5f:7c:f0:cc:38:b5:64:00:f1:84:28:81:31:63:4e:
        b2:fa:ba:ec:91:b6:40:9e:99:67:85:25:11:ec:80:5e:
        da:a5:d6:ec:c6:1d:9e:26:01:2d:31:3e:1f:10:60:3e:
        76:97:4c:5c:63:26:ca:f1:37:6f:41:a9:56:f3:07:d1:
        2c:eb:12:4e:50:ee:23:24:f8:00:96:87:e6:51:d1:18:
        98:42:83:7a:44:76:ec:4c:a5:09:64:46:a3:23:bf:c4:
        00:7a:82:1b:ff:cc:91:80:7e:78:24:ed:de:2a:49:12:
        6c:eb:65:2f:4b:2c:07:aa:54:75:82:b7:1d:b1:49:64:
        91:ac:56:36:0b:41:bd:29:4a:95:61:21:97:3d:ab:07:
        f9:c3:9c:07:e0:b7:c8:c8:02:a9:07:00:9a:93:46:f0:
        29:04:53:2d:61:8d:2c:18:03:12:f5:91:58:0f:37:dc:
        72:70:38:c1:e0:19:7b:18:87:30:69:92:b2:8c:e0:4e:
        a0:cf:5c:3b:e2:5c:7a:b0:11:25:03:bb:cc:cb:da:76:
        c8:b6:4b:f1:4c:a2:97:66:5f:27:bb:71:96:ab:0f:bf:
        0f:51:31:fa:ad:87:de:b8:a7:ae:e0:91:2a:84:16:d0
    Fingerprint (SHA-256):
        EE:01:95:CC:FB:F1:CD:B3:8C:13:BC:92:A2:E3:86:8E:1A:4C:C6:EC:5B:09:40:DD:03:80:16:70:BA:B9:A4:33
    Fingerprint (SHA1):
        17:DC:BA:59:BA:4F:8A:0B:4F:08:95:41:1C:B5:E6:70:DD:7E:86:24
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7475: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7476: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7477: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7478: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7479: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7480: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7481: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7482: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7483: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115963 (0x1e67c07b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 11:59:14 2017
            Not After : Tue May 10 11:59:14 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:42:d1:40:bd:52:c5:2b:7c:b6:70:6b:b4:51:17:c0:
                    52:07:66:6c:c5:2f:c4:cd:30:68:d0:8f:37:e6:d1:42:
                    6e:0b:ca:8a:f2:eb:cf:9a:7e:76:02:11:51:ab:e9:53:
                    91:b0:1e:4d:7d:0b:42:94:38:29:23:b5:38:f5:0c:41:
                    51:7d:62:62:18:20:ea:d4:f1:25:cb:42:4b:56:25:d2:
                    f0:5a:9a:09:a1:d1:04:df:a2:65:11:d8:f6:b4:18:c0:
                    42:d0:c7:ff:76:44:e0:77:a4:2d:6d:e9:4f:a5:a2:9f:
                    b8:58:36:44:5c:2d:34:97:3b:15:86:ff:37:f8:7a:fd:
                    c8:eb:4d:da:2a:71:df:68:90:99:47:62:b0:0a:e1:3f:
                    7f:de:6f:eb:a5:38:89:20:e1:19:1a:8e:01:eb:60:45:
                    14:8c:7c:6d:47:3f:00:20:ec:ea:53:95:ab:ad:b1:27:
                    ab:f4:51:73:b9:14:8e:53:ac:18:03:3c:c6:9d:4a:40:
                    d6:a0:4a:22:09:96:0d:f6:2b:04:db:53:9e:d8:63:87:
                    36:29:59:81:18:f4:9d:34:3c:95:3f:f4:8b:0f:ec:34:
                    88:44:e4:d9:c5:d3:c8:ce:ad:2a:ac:2f:28:87:dd:09:
                    a1:98:8c:e1:e6:f0:f3:a9:73:c5:e1:f7:66:b9:62:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b0:a3:69:25:8d:d6:4f:9c:1c:24:b9:a5:de:3f:a0:c2:
        88:eb:27:1e:19:f9:c7:2b:91:8e:dc:e5:9a:e7:46:04:
        69:f2:c0:76:59:fa:b7:4e:6b:a0:97:39:c6:36:8d:e2:
        8d:03:9c:00:24:4d:f0:ff:ee:33:65:0b:ee:80:6d:e1:
        34:7e:85:6a:18:08:b2:2d:70:f7:65:46:9f:61:93:d2:
        fb:2b:4c:29:10:f5:55:c3:fd:d1:a6:5b:99:e8:e1:97:
        31:a8:69:d2:de:83:be:1e:f5:08:73:82:ae:ac:f8:b9:
        f9:b3:9e:e8:5c:a4:1d:11:fd:fd:1b:62:f9:9a:af:67:
        86:3e:73:4b:3a:16:78:24:f0:21:5a:d9:89:2f:ae:29:
        62:59:a5:b9:d2:98:27:1e:ba:74:fc:6a:46:c2:16:4e:
        d5:fc:b2:27:c6:cf:ce:fd:31:d5:a8:c1:30:28:3c:5b:
        82:06:78:bb:92:dc:77:97:91:a6:27:ba:ed:d9:72:af:
        51:c9:c9:8e:88:93:9c:fc:ef:c2:00:69:63:ea:17:d9:
        e9:03:1c:fa:45:2c:1a:57:a0:46:46:52:23:4c:c9:bb:
        97:e1:17:50:0f:31:26:1c:7f:f9:2f:6f:2d:ef:3f:3d:
        87:42:72:86:12:cb:f4:d0:0e:01:c1:1f:20:23:b3:2f
    Fingerprint (SHA-256):
        7F:45:8B:55:36:9C:56:BA:1A:96:E4:06:50:2C:68:9B:BF:E6:F2:63:53:7D:B2:8C:84:DD:2F:D4:6B:48:DD:BD
    Fingerprint (SHA1):
        56:32:56:47:E8:D8:DC:0E:09:03:71:D0:5A:56:70:B1:FF:0C:FF:1B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7484: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7485: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7486: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7487: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7488: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7489: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7490: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #7491: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #7492: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #7493: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #7494: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #7495: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #7496: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #7497: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7498: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7499: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #7500: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #7501: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7502: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115972 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7503: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7504: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7505: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7506: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510115973   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7507: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7508: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7509: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7510: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510115974   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7511: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7512: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7513: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7514: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 510115975   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7515: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7516: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7517: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7518: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510115976   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7519: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7520: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7521: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7522: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 510115977   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7523: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7524: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7525: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7526: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 510115978   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7527: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7528: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #7529: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7530: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 510115979   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7531: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7532: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7533: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7534: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 510115980   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7535: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7536: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7537: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115972 (0x1e67c084)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:17 2017
            Not After : Tue May 10 11:59:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    c5:a2:dd:55:e3:b8:ad:c5:0e:8c:3c:cf:fa:ec:40:bd:
                    81:67:43:18:0a:9a:74:03:8b:b2:df:61:6d:52:32:1a:
                    b1:b0:31:b9:7b:5c:cc:5c:1b:64:04:87:2f:f6:ac:ac:
                    a6:2d:ba:52:62:14:d0:cb:02:f3:a4:74:2a:5a:f7:83:
                    f3:d3:75:27:56:a1:39:f1:f9:19:eb:6d:6d:2f:1d:91:
                    db:15:5a:45:67:64:fd:b0:24:4a:3b:92:0c:90:6f:e2:
                    ca:14:ab:77:bc:1f:e4:c0:2b:54:82:e9:73:a3:1c:e5:
                    fd:13:68:a4:f9:a1:fb:e2:48:24:2f:52:f2:b3:bf:d2:
                    d0:91:dc:b3:5e:14:9b:6d:60:f7:85:7c:33:a6:99:f3:
                    86:55:18:dd:93:c3:99:77:58:e8:83:05:00:2c:07:63:
                    b2:c4:67:5b:a6:2d:bf:a4:e2:f7:c2:17:61:57:3d:0c:
                    14:21:1e:88:a5:a8:24:6b:39:19:e8:36:6f:3d:6f:4e:
                    37:26:03:d6:2b:7a:0f:11:e5:29:a2:8b:e0:b2:07:81:
                    e4:5d:3b:a4:5b:37:de:b3:a7:2e:6a:18:f5:04:66:b0:
                    02:01:60:28:c5:be:40:a6:29:3b:6f:98:7d:0d:b3:99:
                    37:d2:c2:ba:73:e2:62:fc:36:35:36:18:6e:ae:a8:20
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:50:a0:56:5c:de:53:94:61:58:de:53:1a:
        0d:b1:18:c8:2a:e7:21:31:85:0d:73:7a:82:c2:b7:f7:
        02:1d:00:be:62:03:c5:ed:b7:c4:42:7f:b2:1b:05:24:
        a8:0f:b0:63:42:c2:83:2a:0f:94:83:47:da:50:d1
    Fingerprint (SHA-256):
        76:0B:5F:D6:C2:2D:FB:8D:BC:F0:59:32:BD:60:E3:A8:0D:5D:D7:D0:D3:32:F1:52:E6:D0:9A:5D:14:07:54:8D
    Fingerprint (SHA1):
        9B:57:82:02:19:89:69:7A:1E:4A:D4:10:1B:86:71:42:56:5E:70:E5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7538: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115972 (0x1e67c084)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:17 2017
            Not After : Tue May 10 11:59:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    c5:a2:dd:55:e3:b8:ad:c5:0e:8c:3c:cf:fa:ec:40:bd:
                    81:67:43:18:0a:9a:74:03:8b:b2:df:61:6d:52:32:1a:
                    b1:b0:31:b9:7b:5c:cc:5c:1b:64:04:87:2f:f6:ac:ac:
                    a6:2d:ba:52:62:14:d0:cb:02:f3:a4:74:2a:5a:f7:83:
                    f3:d3:75:27:56:a1:39:f1:f9:19:eb:6d:6d:2f:1d:91:
                    db:15:5a:45:67:64:fd:b0:24:4a:3b:92:0c:90:6f:e2:
                    ca:14:ab:77:bc:1f:e4:c0:2b:54:82:e9:73:a3:1c:e5:
                    fd:13:68:a4:f9:a1:fb:e2:48:24:2f:52:f2:b3:bf:d2:
                    d0:91:dc:b3:5e:14:9b:6d:60:f7:85:7c:33:a6:99:f3:
                    86:55:18:dd:93:c3:99:77:58:e8:83:05:00:2c:07:63:
                    b2:c4:67:5b:a6:2d:bf:a4:e2:f7:c2:17:61:57:3d:0c:
                    14:21:1e:88:a5:a8:24:6b:39:19:e8:36:6f:3d:6f:4e:
                    37:26:03:d6:2b:7a:0f:11:e5:29:a2:8b:e0:b2:07:81:
                    e4:5d:3b:a4:5b:37:de:b3:a7:2e:6a:18:f5:04:66:b0:
                    02:01:60:28:c5:be:40:a6:29:3b:6f:98:7d:0d:b3:99:
                    37:d2:c2:ba:73:e2:62:fc:36:35:36:18:6e:ae:a8:20
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:50:a0:56:5c:de:53:94:61:58:de:53:1a:
        0d:b1:18:c8:2a:e7:21:31:85:0d:73:7a:82:c2:b7:f7:
        02:1d:00:be:62:03:c5:ed:b7:c4:42:7f:b2:1b:05:24:
        a8:0f:b0:63:42:c2:83:2a:0f:94:83:47:da:50:d1
    Fingerprint (SHA-256):
        76:0B:5F:D6:C2:2D:FB:8D:BC:F0:59:32:BD:60:E3:A8:0D:5D:D7:D0:D3:32:F1:52:E6:D0:9A:5D:14:07:54:8D
    Fingerprint (SHA1):
        9B:57:82:02:19:89:69:7A:1E:4A:D4:10:1B:86:71:42:56:5E:70:E5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7539: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115972 (0x1e67c084)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:17 2017
            Not After : Tue May 10 11:59:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    c5:a2:dd:55:e3:b8:ad:c5:0e:8c:3c:cf:fa:ec:40:bd:
                    81:67:43:18:0a:9a:74:03:8b:b2:df:61:6d:52:32:1a:
                    b1:b0:31:b9:7b:5c:cc:5c:1b:64:04:87:2f:f6:ac:ac:
                    a6:2d:ba:52:62:14:d0:cb:02:f3:a4:74:2a:5a:f7:83:
                    f3:d3:75:27:56:a1:39:f1:f9:19:eb:6d:6d:2f:1d:91:
                    db:15:5a:45:67:64:fd:b0:24:4a:3b:92:0c:90:6f:e2:
                    ca:14:ab:77:bc:1f:e4:c0:2b:54:82:e9:73:a3:1c:e5:
                    fd:13:68:a4:f9:a1:fb:e2:48:24:2f:52:f2:b3:bf:d2:
                    d0:91:dc:b3:5e:14:9b:6d:60:f7:85:7c:33:a6:99:f3:
                    86:55:18:dd:93:c3:99:77:58:e8:83:05:00:2c:07:63:
                    b2:c4:67:5b:a6:2d:bf:a4:e2:f7:c2:17:61:57:3d:0c:
                    14:21:1e:88:a5:a8:24:6b:39:19:e8:36:6f:3d:6f:4e:
                    37:26:03:d6:2b:7a:0f:11:e5:29:a2:8b:e0:b2:07:81:
                    e4:5d:3b:a4:5b:37:de:b3:a7:2e:6a:18:f5:04:66:b0:
                    02:01:60:28:c5:be:40:a6:29:3b:6f:98:7d:0d:b3:99:
                    37:d2:c2:ba:73:e2:62:fc:36:35:36:18:6e:ae:a8:20
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:50:a0:56:5c:de:53:94:61:58:de:53:1a:
        0d:b1:18:c8:2a:e7:21:31:85:0d:73:7a:82:c2:b7:f7:
        02:1d:00:be:62:03:c5:ed:b7:c4:42:7f:b2:1b:05:24:
        a8:0f:b0:63:42:c2:83:2a:0f:94:83:47:da:50:d1
    Fingerprint (SHA-256):
        76:0B:5F:D6:C2:2D:FB:8D:BC:F0:59:32:BD:60:E3:A8:0D:5D:D7:D0:D3:32:F1:52:E6:D0:9A:5D:14:07:54:8D
    Fingerprint (SHA1):
        9B:57:82:02:19:89:69:7A:1E:4A:D4:10:1B:86:71:42:56:5E:70:E5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7540: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115972 (0x1e67c084)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:17 2017
            Not After : Tue May 10 11:59:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    c5:a2:dd:55:e3:b8:ad:c5:0e:8c:3c:cf:fa:ec:40:bd:
                    81:67:43:18:0a:9a:74:03:8b:b2:df:61:6d:52:32:1a:
                    b1:b0:31:b9:7b:5c:cc:5c:1b:64:04:87:2f:f6:ac:ac:
                    a6:2d:ba:52:62:14:d0:cb:02:f3:a4:74:2a:5a:f7:83:
                    f3:d3:75:27:56:a1:39:f1:f9:19:eb:6d:6d:2f:1d:91:
                    db:15:5a:45:67:64:fd:b0:24:4a:3b:92:0c:90:6f:e2:
                    ca:14:ab:77:bc:1f:e4:c0:2b:54:82:e9:73:a3:1c:e5:
                    fd:13:68:a4:f9:a1:fb:e2:48:24:2f:52:f2:b3:bf:d2:
                    d0:91:dc:b3:5e:14:9b:6d:60:f7:85:7c:33:a6:99:f3:
                    86:55:18:dd:93:c3:99:77:58:e8:83:05:00:2c:07:63:
                    b2:c4:67:5b:a6:2d:bf:a4:e2:f7:c2:17:61:57:3d:0c:
                    14:21:1e:88:a5:a8:24:6b:39:19:e8:36:6f:3d:6f:4e:
                    37:26:03:d6:2b:7a:0f:11:e5:29:a2:8b:e0:b2:07:81:
                    e4:5d:3b:a4:5b:37:de:b3:a7:2e:6a:18:f5:04:66:b0:
                    02:01:60:28:c5:be:40:a6:29:3b:6f:98:7d:0d:b3:99:
                    37:d2:c2:ba:73:e2:62:fc:36:35:36:18:6e:ae:a8:20
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:50:a0:56:5c:de:53:94:61:58:de:53:1a:
        0d:b1:18:c8:2a:e7:21:31:85:0d:73:7a:82:c2:b7:f7:
        02:1d:00:be:62:03:c5:ed:b7:c4:42:7f:b2:1b:05:24:
        a8:0f:b0:63:42:c2:83:2a:0f:94:83:47:da:50:d1
    Fingerprint (SHA-256):
        76:0B:5F:D6:C2:2D:FB:8D:BC:F0:59:32:BD:60:E3:A8:0D:5D:D7:D0:D3:32:F1:52:E6:D0:9A:5D:14:07:54:8D
    Fingerprint (SHA1):
        9B:57:82:02:19:89:69:7A:1E:4A:D4:10:1B:86:71:42:56:5E:70:E5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #7541: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7542: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7543: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7544: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7545: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7546: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7547: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7548: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7549: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7550: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7551: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7552: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7553: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7554: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7555: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7556: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #7557: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7558: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7559: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7560: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7561: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7562: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7563: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7564: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7565: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7566: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7567: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7568: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510115922Z
nextupdate=20180510115922Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 11:59:22 2017
    Next Update: Thu May 10 11:59:22 2018
    CRL Extensions:
chains.sh: #7569: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115922Z
nextupdate=20180510115922Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:59:22 2017
    Next Update: Thu May 10 11:59:22 2018
    CRL Extensions:
chains.sh: #7570: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510115922Z
nextupdate=20180510115922Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 11:59:22 2017
    Next Update: Thu May 10 11:59:22 2018
    CRL Extensions:
chains.sh: #7571: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510115922Z
nextupdate=20180510115922Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 11:59:22 2017
    Next Update: Thu May 10 11:59:22 2018
    CRL Extensions:
chains.sh: #7572: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510115923Z
addcert 14 20170510115923Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 11:59:23 2017
    Next Update: Thu May 10 11:59:22 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed May 10 11:59:23 2017
    CRL Extensions:
chains.sh: #7573: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115924Z
addcert 15 20170510115924Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:59:24 2017
    Next Update: Thu May 10 11:59:22 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed May 10 11:59:24 2017
    CRL Extensions:
chains.sh: #7574: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7575: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7576: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7577: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #7578: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #7579: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #7580: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #7581: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #7582: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #7583: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:20 2017
            Not After : Tue May 10 11:59:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:23:4e:ae:5b:9c:2a:b3:8d:2b:45:3e:39:41:1d:5c:
                    b3:a9:d0:c3:5c:b3:68:6b:1a:bb:85:32:3c:b2:90:9b:
                    f8:4f:06:6f:56:96:da:44:cf:88:eb:fa:b1:93:67:f4:
                    76:0e:11:61:d0:7a:02:16:b6:f5:51:24:46:3a:27:7e:
                    e3:5a:c0:42:3b:89:b1:1f:d2:52:1c:41:03:a2:db:79:
                    ec:29:63:89:4e:be:4b:97:3f:c3:53:44:01:66:78:82:
                    26:c3:59:36:9b:ff:46:4d:11:20:0b:ec:83:a5:69:b7:
                    92:12:ac:34:ec:94:92:92:77:4a:3e:90:89:6f:ac:7f:
                    32:90:f6:67:47:14:d0:a7:85:7f:f2:fc:48:56:89:1a:
                    c9:cc:16:52:1e:18:c6:6e:3c:c4:64:87:4c:32:72:59:
                    46:e4:47:90:8d:b9:a6:40:5e:76:a5:50:8e:08:d9:ee:
                    eb:b2:81:88:53:6a:cb:cf:90:aa:07:5e:aa:e6:f8:91:
                    e0:92:c9:ca:26:4a:00:b9:a3:5f:08:e0:0e:25:d9:91:
                    94:92:37:fc:a3:9f:79:c4:c5:71:74:c9:d7:fe:2a:67:
                    2f:33:f1:6a:f5:e1:a9:ee:b4:43:01:9f:61:04:2a:00:
                    af:e9:7b:19:62:b4:7f:56:82:30:e0:3f:3c:be:72:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:00:da:38:f5:0a:12:8a:db:57:d0:63:e2:63:a1:ac:
        4e:67:2a:3a:49:03:a8:3f:56:ab:79:f9:dd:70:87:3d:
        5c:6a:4c:19:88:65:c0:ff:b4:b2:36:1a:ce:82:71:24:
        6b:a3:3c:b7:36:a5:86:79:dd:bd:4d:25:29:c8:e3:b1:
        0c:6d:3e:2c:3a:47:94:f2:6b:55:b6:4a:12:2d:48:03:
        8e:82:b6:0e:a2:55:2d:01:26:e5:93:b7:1d:a4:3c:42:
        29:77:76:fc:e6:fd:4e:87:e8:ab:9a:a3:0f:26:a1:18:
        8d:b7:38:b7:4a:93:dd:f4:f8:23:bf:ac:6b:26:28:ec:
        2a:6c:ed:e8:0d:05:f0:d2:f4:0d:06:ca:bd:b6:e6:06:
        63:80:86:e9:2e:71:d9:3f:f8:a6:d3:15:0c:15:5b:5f:
        7f:a7:b1:2d:d9:93:30:68:ef:b9:6a:b9:0c:21:cb:bb:
        d6:ce:02:61:9e:f4:78:f0:fc:c6:b7:00:eb:6d:b8:63:
        3a:9f:03:48:68:95:a8:0b:ca:19:fd:cc:63:30:df:c4:
        4e:9e:74:64:ff:cd:ba:06:2d:4a:09:23:49:d0:48:23:
        c3:cb:77:8f:2a:b8:ef:1c:96:cc:fe:f9:25:f0:fb:2d:
        d7:58:9b:0d:53:a8:e7:56:d7:58:ee:f9:2d:3f:df:2d
    Fingerprint (SHA-256):
        D1:8E:82:F7:4F:63:63:31:18:E6:49:B5:F6:8D:FF:30:27:0D:F0:CD:13:00:83:C6:2F:0B:DA:DA:06:D4:36:50
    Fingerprint (SHA1):
        D6:B3:15:D3:C1:69:B6:E8:0E:75:58:0F:FE:71:21:9E:FE:C4:51:71
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7584: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7585: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:20 2017
            Not After : Tue May 10 11:59:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:23:4e:ae:5b:9c:2a:b3:8d:2b:45:3e:39:41:1d:5c:
                    b3:a9:d0:c3:5c:b3:68:6b:1a:bb:85:32:3c:b2:90:9b:
                    f8:4f:06:6f:56:96:da:44:cf:88:eb:fa:b1:93:67:f4:
                    76:0e:11:61:d0:7a:02:16:b6:f5:51:24:46:3a:27:7e:
                    e3:5a:c0:42:3b:89:b1:1f:d2:52:1c:41:03:a2:db:79:
                    ec:29:63:89:4e:be:4b:97:3f:c3:53:44:01:66:78:82:
                    26:c3:59:36:9b:ff:46:4d:11:20:0b:ec:83:a5:69:b7:
                    92:12:ac:34:ec:94:92:92:77:4a:3e:90:89:6f:ac:7f:
                    32:90:f6:67:47:14:d0:a7:85:7f:f2:fc:48:56:89:1a:
                    c9:cc:16:52:1e:18:c6:6e:3c:c4:64:87:4c:32:72:59:
                    46:e4:47:90:8d:b9:a6:40:5e:76:a5:50:8e:08:d9:ee:
                    eb:b2:81:88:53:6a:cb:cf:90:aa:07:5e:aa:e6:f8:91:
                    e0:92:c9:ca:26:4a:00:b9:a3:5f:08:e0:0e:25:d9:91:
                    94:92:37:fc:a3:9f:79:c4:c5:71:74:c9:d7:fe:2a:67:
                    2f:33:f1:6a:f5:e1:a9:ee:b4:43:01:9f:61:04:2a:00:
                    af:e9:7b:19:62:b4:7f:56:82:30:e0:3f:3c:be:72:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:00:da:38:f5:0a:12:8a:db:57:d0:63:e2:63:a1:ac:
        4e:67:2a:3a:49:03:a8:3f:56:ab:79:f9:dd:70:87:3d:
        5c:6a:4c:19:88:65:c0:ff:b4:b2:36:1a:ce:82:71:24:
        6b:a3:3c:b7:36:a5:86:79:dd:bd:4d:25:29:c8:e3:b1:
        0c:6d:3e:2c:3a:47:94:f2:6b:55:b6:4a:12:2d:48:03:
        8e:82:b6:0e:a2:55:2d:01:26:e5:93:b7:1d:a4:3c:42:
        29:77:76:fc:e6:fd:4e:87:e8:ab:9a:a3:0f:26:a1:18:
        8d:b7:38:b7:4a:93:dd:f4:f8:23:bf:ac:6b:26:28:ec:
        2a:6c:ed:e8:0d:05:f0:d2:f4:0d:06:ca:bd:b6:e6:06:
        63:80:86:e9:2e:71:d9:3f:f8:a6:d3:15:0c:15:5b:5f:
        7f:a7:b1:2d:d9:93:30:68:ef:b9:6a:b9:0c:21:cb:bb:
        d6:ce:02:61:9e:f4:78:f0:fc:c6:b7:00:eb:6d:b8:63:
        3a:9f:03:48:68:95:a8:0b:ca:19:fd:cc:63:30:df:c4:
        4e:9e:74:64:ff:cd:ba:06:2d:4a:09:23:49:d0:48:23:
        c3:cb:77:8f:2a:b8:ef:1c:96:cc:fe:f9:25:f0:fb:2d:
        d7:58:9b:0d:53:a8:e7:56:d7:58:ee:f9:2d:3f:df:2d
    Fingerprint (SHA-256):
        D1:8E:82:F7:4F:63:63:31:18:E6:49:B5:F6:8D:FF:30:27:0D:F0:CD:13:00:83:C6:2F:0B:DA:DA:06:D4:36:50
    Fingerprint (SHA1):
        D6:B3:15:D3:C1:69:B6:E8:0E:75:58:0F:FE:71:21:9E:FE:C4:51:71
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7586: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7587: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7588: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115981 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7589: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7590: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7591: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7592: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 510115982   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7593: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7594: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7595: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115753.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7596: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115727.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7597: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7598: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7599: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115753.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7600: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 510115983   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7601: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7602: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7603: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115753.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7604: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115728.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7605: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7606: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7607: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7608: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 510115984   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7609: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7610: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7611: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115753.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7612: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115729.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7613: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7614: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7615: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510115753.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7616: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510115730.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7617: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7618: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510115928Z
nextupdate=20180510115928Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 11:59:28 2017
    Next Update: Thu May 10 11:59:28 2018
    CRL Extensions:
chains.sh: #7619: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115928Z
nextupdate=20180510115928Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:59:28 2017
    Next Update: Thu May 10 11:59:28 2018
    CRL Extensions:
chains.sh: #7620: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510115928Z
nextupdate=20180510115928Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 11:59:28 2017
    Next Update: Thu May 10 11:59:28 2018
    CRL Extensions:
chains.sh: #7621: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510115928Z
nextupdate=20180510115928Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 11:59:28 2017
    Next Update: Thu May 10 11:59:28 2018
    CRL Extensions:
chains.sh: #7622: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115929Z
addcert 20 20170510115929Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:59:29 2017
    Next Update: Thu May 10 11:59:28 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 11:59:29 2017
    CRL Extensions:
chains.sh: #7623: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510115930Z
addcert 40 20170510115930Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 11:59:30 2017
    Next Update: Thu May 10 11:59:28 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 11:59:29 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 11:59:30 2017
    CRL Extensions:
chains.sh: #7624: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7625: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7626: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7627: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115981 (0x1e67c08d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:25 2017
            Not After : Tue May 10 11:59:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:05:f2:8c:b2:1b:9f:7d:81:d3:7d:e8:09:09:aa:e1:
                    69:2d:c1:a9:ca:2a:66:46:43:b9:e8:8d:00:04:4f:f1:
                    29:9a:e2:73:e6:07:14:ff:67:62:c0:d6:6d:10:02:5c:
                    a9:27:7e:7f:2e:53:08:87:ac:f9:a7:97:57:a6:8f:83:
                    01:e3:0a:ce:13:21:c1:f4:a2:4d:fc:74:ce:d0:d2:fd:
                    15:b2:f8:99:ff:fe:a4:72:0e:0e:ad:ad:bd:2d:c3:de:
                    ab:b8:78:af:5c:11:1f:b5:56:67:bd:03:3c:f8:86:2c:
                    bf:7c:1c:76:09:d6:c0:71:52:09:62:9b:9f:bf:02:7d:
                    aa:9b:d1:b4:d8:ac:3e:c6:00:59:d5:71:2f:d4:fb:aa:
                    e3:59:6f:4a:21:96:55:8a:57:64:58:3a:8c:13:e2:9c:
                    a5:2a:b9:54:fd:4e:8b:5f:ca:66:97:34:e4:ee:6f:de:
                    43:52:a4:71:e4:83:46:9e:af:c3:c4:41:60:c2:68:5f:
                    26:e4:78:ce:7e:fc:ad:19:64:78:96:ce:0d:c2:9d:51:
                    78:fd:03:ca:ab:f8:03:f4:34:c0:db:95:51:1d:2f:be:
                    59:ba:0b:77:d7:4d:58:f9:2c:ab:e6:1d:d5:ab:53:18:
                    10:7e:99:80:99:08:b4:16:d3:00:df:fe:51:f2:26:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:49:2c:ef:a5:b7:84:8e:79:a4:1c:27:f4:4b:b8:1c:
        2e:b3:bc:71:08:3b:42:b8:75:27:c3:cc:8c:5b:d0:ae:
        24:db:8c:8f:60:cb:7a:c8:7a:f3:8f:19:b4:a9:7f:8b:
        75:7a:5a:e9:a2:3c:7c:d4:0c:ff:bb:74:0d:8c:99:0c:
        40:d2:5d:d8:39:5d:eb:5d:92:9c:b3:11:1d:bb:ce:92:
        f6:d4:6c:1a:40:67:97:09:db:ce:09:7e:d0:bf:80:68:
        0a:17:1d:56:ae:5f:9d:4f:44:fe:a7:97:32:dc:e7:37:
        e6:16:5a:95:f9:a7:39:ce:c7:ad:4d:20:23:c4:0b:9f:
        3b:05:bb:18:3e:3c:4c:aa:f2:a9:a3:48:30:4b:60:1c:
        8f:e3:bd:54:d6:e4:7b:7a:db:04:71:a9:12:12:d3:86:
        56:6c:92:57:0a:1b:9c:ec:f3:0b:29:57:b5:12:46:52:
        fc:4c:7a:fa:d9:91:a0:18:f8:3a:03:35:16:c1:a0:62:
        30:db:20:3f:d1:b3:9f:53:d2:22:ff:4e:b8:31:80:f8:
        39:43:da:47:76:40:0d:c0:56:65:d2:8f:e6:d9:3e:2e:
        47:ca:0d:b6:91:2a:40:3e:7b:d4:02:b3:d0:b3:8a:71:
        fa:72:90:e3:87:99:52:42:16:40:c4:26:34:1d:95:19
    Fingerprint (SHA-256):
        58:07:68:6F:1F:7D:20:88:1F:56:07:F8:0B:2C:D1:36:68:8A:DF:FB:2B:69:0E:7F:1B:70:DC:AA:13:DA:D4:D5
    Fingerprint (SHA1):
        B1:63:C0:73:E0:A6:3E:D7:0D:6E:70:3E:48:FA:DF:3C:CF:B4:4C:EA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7628: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7629: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115981 (0x1e67c08d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 11:59:25 2017
            Not After : Tue May 10 11:59:25 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:05:f2:8c:b2:1b:9f:7d:81:d3:7d:e8:09:09:aa:e1:
                    69:2d:c1:a9:ca:2a:66:46:43:b9:e8:8d:00:04:4f:f1:
                    29:9a:e2:73:e6:07:14:ff:67:62:c0:d6:6d:10:02:5c:
                    a9:27:7e:7f:2e:53:08:87:ac:f9:a7:97:57:a6:8f:83:
                    01:e3:0a:ce:13:21:c1:f4:a2:4d:fc:74:ce:d0:d2:fd:
                    15:b2:f8:99:ff:fe:a4:72:0e:0e:ad:ad:bd:2d:c3:de:
                    ab:b8:78:af:5c:11:1f:b5:56:67:bd:03:3c:f8:86:2c:
                    bf:7c:1c:76:09:d6:c0:71:52:09:62:9b:9f:bf:02:7d:
                    aa:9b:d1:b4:d8:ac:3e:c6:00:59:d5:71:2f:d4:fb:aa:
                    e3:59:6f:4a:21:96:55:8a:57:64:58:3a:8c:13:e2:9c:
                    a5:2a:b9:54:fd:4e:8b:5f:ca:66:97:34:e4:ee:6f:de:
                    43:52:a4:71:e4:83:46:9e:af:c3:c4:41:60:c2:68:5f:
                    26:e4:78:ce:7e:fc:ad:19:64:78:96:ce:0d:c2:9d:51:
                    78:fd:03:ca:ab:f8:03:f4:34:c0:db:95:51:1d:2f:be:
                    59:ba:0b:77:d7:4d:58:f9:2c:ab:e6:1d:d5:ab:53:18:
                    10:7e:99:80:99:08:b4:16:d3:00:df:fe:51:f2:26:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:49:2c:ef:a5:b7:84:8e:79:a4:1c:27:f4:4b:b8:1c:
        2e:b3:bc:71:08:3b:42:b8:75:27:c3:cc:8c:5b:d0:ae:
        24:db:8c:8f:60:cb:7a:c8:7a:f3:8f:19:b4:a9:7f:8b:
        75:7a:5a:e9:a2:3c:7c:d4:0c:ff:bb:74:0d:8c:99:0c:
        40:d2:5d:d8:39:5d:eb:5d:92:9c:b3:11:1d:bb:ce:92:
        f6:d4:6c:1a:40:67:97:09:db:ce:09:7e:d0:bf:80:68:
        0a:17:1d:56:ae:5f:9d:4f:44:fe:a7:97:32:dc:e7:37:
        e6:16:5a:95:f9:a7:39:ce:c7:ad:4d:20:23:c4:0b:9f:
        3b:05:bb:18:3e:3c:4c:aa:f2:a9:a3:48:30:4b:60:1c:
        8f:e3:bd:54:d6:e4:7b:7a:db:04:71:a9:12:12:d3:86:
        56:6c:92:57:0a:1b:9c:ec:f3:0b:29:57:b5:12:46:52:
        fc:4c:7a:fa:d9:91:a0:18:f8:3a:03:35:16:c1:a0:62:
        30:db:20:3f:d1:b3:9f:53:d2:22:ff:4e:b8:31:80:f8:
        39:43:da:47:76:40:0d:c0:56:65:d2:8f:e6:d9:3e:2e:
        47:ca:0d:b6:91:2a:40:3e:7b:d4:02:b3:d0:b3:8a:71:
        fa:72:90:e3:87:99:52:42:16:40:c4:26:34:1d:95:19
    Fingerprint (SHA-256):
        58:07:68:6F:1F:7D:20:88:1F:56:07:F8:0B:2C:D1:36:68:8A:DF:FB:2B:69:0E:7F:1B:70:DC:AA:13:DA:D4:D5
    Fingerprint (SHA1):
        B1:63:C0:73:E0:A6:3E:D7:0D:6E:70:3E:48:FA:DF:3C:CF:B4:4C:EA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7630: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7631: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7632: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115985 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7633: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7634: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7635: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7636: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510115986   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7637: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7638: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7639: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7640: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510115987   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7641: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7642: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7643: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7644: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 510115988   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7645: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7646: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #7647: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510115989 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7648: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #7649: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #7650: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7651: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 510115990   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7652: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7653: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7654: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7655: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 510115991   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7656: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7657: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #7658: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #7659: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #7660: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115985 (0x1e67c091)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:59:31 2017
            Not After : Tue May 10 11:59:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:5c:de:91:ce:f4:99:29:e7:d5:fc:2e:33:f3:68:47:
                    7d:a2:d2:1d:ff:83:d3:18:46:dc:30:6a:c8:96:3c:65:
                    02:57:56:43:e7:f6:a0:5d:ee:11:63:0c:3b:ce:b3:1d:
                    2e:84:56:45:ad:0c:e6:be:de:e9:65:1a:64:1d:b3:d4:
                    64:7c:ab:58:06:9a:87:93:a9:4e:a8:39:08:90:c1:1a:
                    0d:ec:a6:ef:b0:86:bb:14:8d:2d:9b:96:f5:38:69:6a:
                    3e:00:dc:58:bb:cb:e0:f6:11:77:52:ce:e0:fa:e2:86:
                    9b:64:85:8f:2f:4d:86:6e:14:54:0c:2e:50:ae:94:8d:
                    2b:5f:f5:29:ba:bc:36:99:c7:c1:96:fc:26:91:83:e1:
                    60:d9:39:35:3b:12:62:92:21:35:f4:90:18:64:e1:5c:
                    4c:3d:d6:68:cf:b1:a1:e7:3a:01:5c:23:59:18:4e:d8:
                    84:04:b7:2c:0c:98:95:40:cf:61:79:70:7c:c9:73:3e:
                    d4:10:fd:5d:93:6b:f5:a1:41:fd:a7:8b:e4:c2:54:b5:
                    e0:64:32:a9:5f:94:16:7f:73:b2:36:c1:57:ab:ff:3c:
                    10:68:95:bd:48:35:19:70:af:8e:b2:41:b0:6d:05:91:
                    f3:e9:3d:a7:53:5e:1c:77:7b:35:fd:2a:3f:d3:d1:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:71:2d:90:38:2d:52:0f:5a:66:2f:65:78:0d:05:e7:
        ef:0a:ff:7b:4f:1e:b1:88:6b:6d:b1:e1:09:64:dc:12:
        45:4e:24:3b:dc:0e:13:dd:f0:70:b5:b9:f5:c2:a2:87:
        53:5e:23:f9:4c:08:ff:28:3c:cc:7d:78:d0:79:3b:83:
        05:30:61:bf:6b:ff:54:27:70:ab:13:09:d4:0e:1c:98:
        f6:c7:bd:a4:3c:ff:cc:1e:c4:bc:ca:2b:c9:c3:75:b8:
        b8:d3:ec:90:f4:1f:4c:9c:bf:93:33:66:5a:53:cb:15:
        36:c6:d0:6a:ba:e2:ea:65:c2:df:47:bf:aa:f6:5d:62:
        0f:43:d3:fa:86:69:83:a6:ad:ac:f7:57:48:26:dc:c7:
        f6:65:18:79:fc:b6:85:6c:aa:02:b1:2e:55:70:18:c6:
        b1:ae:cd:74:67:af:59:5f:68:01:37:bf:65:4f:e8:fc:
        4d:f9:f8:4b:fd:d8:0f:c7:8e:c6:66:e2:ca:98:04:73:
        27:10:72:60:41:e2:87:73:1f:9c:46:dc:e7:c9:fd:79:
        12:b1:8e:21:83:ab:9d:be:10:dd:ef:5d:98:b0:bc:78:
        59:a8:80:77:38:e9:81:19:31:b3:f7:1e:83:9a:e0:30:
        f9:78:e4:06:b0:f4:27:e3:9e:40:54:85:5d:e9:d4:60
    Fingerprint (SHA-256):
        4B:15:09:00:AF:88:42:9F:05:9A:15:97:04:84:3F:35:C9:85:2E:05:D6:72:B2:B0:C4:5B:83:4B:06:11:A5:69
    Fingerprint (SHA1):
        F7:2A:E3:E7:B0:60:92:52:E0:4E:F5:F6:33:DA:BA:C2:B2:F5:D0:23
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7661: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115987 (0x1e67c093)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:59:31 2017
            Not After : Tue May 10 11:59:31 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:73:e4:42:31:6f:05:54:43:a3:23:bc:60:d9:36:c9:
                    db:4d:d5:44:b8:21:42:65:87:23:d6:c5:11:4e:8e:a9:
                    d9:51:81:f7:fc:a6:e7:28:ac:98:0e:96:30:80:3d:d0:
                    07:08:02:57:09:fc:11:71:f4:42:86:e9:06:f8:51:21:
                    10:e1:51:7c:12:dc:d1:c6:e6:35:0e:02:19:a2:fd:46:
                    d1:0b:90:96:55:32:ef:8c:6a:6d:71:c5:7a:2e:33:f6:
                    39:62:96:68:88:93:67:8a:68:7f:58:08:8a:68:d7:08:
                    32:63:0f:28:98:d5:0d:fd:22:5d:24:7d:9d:9c:69:35:
                    b3:b4:e7:be:7d:eb:0e:51:41:9a:50:65:9a:59:e9:97:
                    08:88:69:6d:f1:b1:b6:de:3e:b8:d7:d0:b4:31:0e:52:
                    cc:e6:a1:f3:06:f1:ee:2b:54:06:60:ff:b2:dd:47:c6:
                    6c:b8:88:ce:82:b5:d0:f5:81:b5:09:1a:fc:76:8a:ff:
                    2c:e9:bf:5e:d5:9a:58:b7:01:48:e2:c6:47:72:7d:c7:
                    cd:8c:33:6b:68:2f:48:c2:6e:6a:98:7d:05:4e:e1:b2:
                    86:55:da:d8:f5:3f:98:86:6c:ca:7a:82:c6:9d:a4:2a:
                    2a:5d:bd:60:9f:5e:ab:8a:5f:89:e5:46:53:f9:97:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:3a:25:91:e2:c6:9e:61:a7:55:a4:39:69:71:8e:1a:
        a8:d8:97:b5:57:8c:77:5d:61:13:9d:6d:1a:b4:51:6e:
        c6:90:a8:12:7d:01:6f:19:8c:56:5b:2c:4c:95:a1:c1:
        81:b2:b3:fd:9c:1f:eb:b4:92:18:6d:44:23:6b:51:55:
        c6:9e:95:31:2e:66:26:ee:0c:a2:02:2e:e9:3c:35:70:
        93:63:3d:20:e9:01:2f:31:a6:61:41:81:12:98:8b:ea:
        71:8a:64:22:c6:d0:df:e8:04:26:74:d8:18:62:9f:2a:
        27:9b:e0:d5:a5:53:6f:0e:0b:75:de:7f:ed:c6:c7:8c:
        0e:46:ab:30:c8:bd:4b:39:c8:8b:86:b5:94:1b:cc:9b:
        43:91:27:ca:b8:35:ff:64:72:ef:4b:48:b5:1a:e5:ea:
        66:09:af:26:33:2a:f7:28:18:27:5a:63:06:76:ac:61:
        29:af:9d:99:b4:53:c8:05:38:41:40:5c:ee:ed:dd:6d:
        a0:69:9a:3b:ca:d4:a4:21:60:06:01:c1:92:cf:c4:f9:
        2e:d4:c3:79:d0:68:08:19:44:5d:4e:8e:0f:4a:24:68:
        0e:f0:34:7a:48:e3:6d:31:4e:9c:f1:75:9e:57:46:ea:
        0a:d4:92:55:d5:78:55:02:07:b0:67:ec:e4:54:eb:52
    Fingerprint (SHA-256):
        14:44:09:E6:F7:9B:9B:ED:04:6D:F0:BB:B5:DB:7A:EA:3F:D7:47:4A:36:68:7C:96:8A:97:54:F8:2C:A1:FE:64
    Fingerprint (SHA1):
        76:A0:74:9B:17:72:FE:74:C2:08:A5:D0:A0:C5:D7:EC:F7:C9:99:E6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7662: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115985 (0x1e67c091)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:59:31 2017
            Not After : Tue May 10 11:59:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:5c:de:91:ce:f4:99:29:e7:d5:fc:2e:33:f3:68:47:
                    7d:a2:d2:1d:ff:83:d3:18:46:dc:30:6a:c8:96:3c:65:
                    02:57:56:43:e7:f6:a0:5d:ee:11:63:0c:3b:ce:b3:1d:
                    2e:84:56:45:ad:0c:e6:be:de:e9:65:1a:64:1d:b3:d4:
                    64:7c:ab:58:06:9a:87:93:a9:4e:a8:39:08:90:c1:1a:
                    0d:ec:a6:ef:b0:86:bb:14:8d:2d:9b:96:f5:38:69:6a:
                    3e:00:dc:58:bb:cb:e0:f6:11:77:52:ce:e0:fa:e2:86:
                    9b:64:85:8f:2f:4d:86:6e:14:54:0c:2e:50:ae:94:8d:
                    2b:5f:f5:29:ba:bc:36:99:c7:c1:96:fc:26:91:83:e1:
                    60:d9:39:35:3b:12:62:92:21:35:f4:90:18:64:e1:5c:
                    4c:3d:d6:68:cf:b1:a1:e7:3a:01:5c:23:59:18:4e:d8:
                    84:04:b7:2c:0c:98:95:40:cf:61:79:70:7c:c9:73:3e:
                    d4:10:fd:5d:93:6b:f5:a1:41:fd:a7:8b:e4:c2:54:b5:
                    e0:64:32:a9:5f:94:16:7f:73:b2:36:c1:57:ab:ff:3c:
                    10:68:95:bd:48:35:19:70:af:8e:b2:41:b0:6d:05:91:
                    f3:e9:3d:a7:53:5e:1c:77:7b:35:fd:2a:3f:d3:d1:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:71:2d:90:38:2d:52:0f:5a:66:2f:65:78:0d:05:e7:
        ef:0a:ff:7b:4f:1e:b1:88:6b:6d:b1:e1:09:64:dc:12:
        45:4e:24:3b:dc:0e:13:dd:f0:70:b5:b9:f5:c2:a2:87:
        53:5e:23:f9:4c:08:ff:28:3c:cc:7d:78:d0:79:3b:83:
        05:30:61:bf:6b:ff:54:27:70:ab:13:09:d4:0e:1c:98:
        f6:c7:bd:a4:3c:ff:cc:1e:c4:bc:ca:2b:c9:c3:75:b8:
        b8:d3:ec:90:f4:1f:4c:9c:bf:93:33:66:5a:53:cb:15:
        36:c6:d0:6a:ba:e2:ea:65:c2:df:47:bf:aa:f6:5d:62:
        0f:43:d3:fa:86:69:83:a6:ad:ac:f7:57:48:26:dc:c7:
        f6:65:18:79:fc:b6:85:6c:aa:02:b1:2e:55:70:18:c6:
        b1:ae:cd:74:67:af:59:5f:68:01:37:bf:65:4f:e8:fc:
        4d:f9:f8:4b:fd:d8:0f:c7:8e:c6:66:e2:ca:98:04:73:
        27:10:72:60:41:e2:87:73:1f:9c:46:dc:e7:c9:fd:79:
        12:b1:8e:21:83:ab:9d:be:10:dd:ef:5d:98:b0:bc:78:
        59:a8:80:77:38:e9:81:19:31:b3:f7:1e:83:9a:e0:30:
        f9:78:e4:06:b0:f4:27:e3:9e:40:54:85:5d:e9:d4:60
    Fingerprint (SHA-256):
        4B:15:09:00:AF:88:42:9F:05:9A:15:97:04:84:3F:35:C9:85:2E:05:D6:72:B2:B0:C4:5B:83:4B:06:11:A5:69
    Fingerprint (SHA1):
        F7:2A:E3:E7:B0:60:92:52:E0:4E:F5:F6:33:DA:BA:C2:B2:F5:D0:23
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7663: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #7664: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115985 (0x1e67c091)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:59:31 2017
            Not After : Tue May 10 11:59:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:5c:de:91:ce:f4:99:29:e7:d5:fc:2e:33:f3:68:47:
                    7d:a2:d2:1d:ff:83:d3:18:46:dc:30:6a:c8:96:3c:65:
                    02:57:56:43:e7:f6:a0:5d:ee:11:63:0c:3b:ce:b3:1d:
                    2e:84:56:45:ad:0c:e6:be:de:e9:65:1a:64:1d:b3:d4:
                    64:7c:ab:58:06:9a:87:93:a9:4e:a8:39:08:90:c1:1a:
                    0d:ec:a6:ef:b0:86:bb:14:8d:2d:9b:96:f5:38:69:6a:
                    3e:00:dc:58:bb:cb:e0:f6:11:77:52:ce:e0:fa:e2:86:
                    9b:64:85:8f:2f:4d:86:6e:14:54:0c:2e:50:ae:94:8d:
                    2b:5f:f5:29:ba:bc:36:99:c7:c1:96:fc:26:91:83:e1:
                    60:d9:39:35:3b:12:62:92:21:35:f4:90:18:64:e1:5c:
                    4c:3d:d6:68:cf:b1:a1:e7:3a:01:5c:23:59:18:4e:d8:
                    84:04:b7:2c:0c:98:95:40:cf:61:79:70:7c:c9:73:3e:
                    d4:10:fd:5d:93:6b:f5:a1:41:fd:a7:8b:e4:c2:54:b5:
                    e0:64:32:a9:5f:94:16:7f:73:b2:36:c1:57:ab:ff:3c:
                    10:68:95:bd:48:35:19:70:af:8e:b2:41:b0:6d:05:91:
                    f3:e9:3d:a7:53:5e:1c:77:7b:35:fd:2a:3f:d3:d1:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:71:2d:90:38:2d:52:0f:5a:66:2f:65:78:0d:05:e7:
        ef:0a:ff:7b:4f:1e:b1:88:6b:6d:b1:e1:09:64:dc:12:
        45:4e:24:3b:dc:0e:13:dd:f0:70:b5:b9:f5:c2:a2:87:
        53:5e:23:f9:4c:08:ff:28:3c:cc:7d:78:d0:79:3b:83:
        05:30:61:bf:6b:ff:54:27:70:ab:13:09:d4:0e:1c:98:
        f6:c7:bd:a4:3c:ff:cc:1e:c4:bc:ca:2b:c9:c3:75:b8:
        b8:d3:ec:90:f4:1f:4c:9c:bf:93:33:66:5a:53:cb:15:
        36:c6:d0:6a:ba:e2:ea:65:c2:df:47:bf:aa:f6:5d:62:
        0f:43:d3:fa:86:69:83:a6:ad:ac:f7:57:48:26:dc:c7:
        f6:65:18:79:fc:b6:85:6c:aa:02:b1:2e:55:70:18:c6:
        b1:ae:cd:74:67:af:59:5f:68:01:37:bf:65:4f:e8:fc:
        4d:f9:f8:4b:fd:d8:0f:c7:8e:c6:66:e2:ca:98:04:73:
        27:10:72:60:41:e2:87:73:1f:9c:46:dc:e7:c9:fd:79:
        12:b1:8e:21:83:ab:9d:be:10:dd:ef:5d:98:b0:bc:78:
        59:a8:80:77:38:e9:81:19:31:b3:f7:1e:83:9a:e0:30:
        f9:78:e4:06:b0:f4:27:e3:9e:40:54:85:5d:e9:d4:60
    Fingerprint (SHA-256):
        4B:15:09:00:AF:88:42:9F:05:9A:15:97:04:84:3F:35:C9:85:2E:05:D6:72:B2:B0:C4:5B:83:4B:06:11:A5:69
    Fingerprint (SHA1):
        F7:2A:E3:E7:B0:60:92:52:E0:4E:F5:F6:33:DA:BA:C2:B2:F5:D0:23
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7665: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115987 (0x1e67c093)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 11:59:31 2017
            Not After : Tue May 10 11:59:31 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:73:e4:42:31:6f:05:54:43:a3:23:bc:60:d9:36:c9:
                    db:4d:d5:44:b8:21:42:65:87:23:d6:c5:11:4e:8e:a9:
                    d9:51:81:f7:fc:a6:e7:28:ac:98:0e:96:30:80:3d:d0:
                    07:08:02:57:09:fc:11:71:f4:42:86:e9:06:f8:51:21:
                    10:e1:51:7c:12:dc:d1:c6:e6:35:0e:02:19:a2:fd:46:
                    d1:0b:90:96:55:32:ef:8c:6a:6d:71:c5:7a:2e:33:f6:
                    39:62:96:68:88:93:67:8a:68:7f:58:08:8a:68:d7:08:
                    32:63:0f:28:98:d5:0d:fd:22:5d:24:7d:9d:9c:69:35:
                    b3:b4:e7:be:7d:eb:0e:51:41:9a:50:65:9a:59:e9:97:
                    08:88:69:6d:f1:b1:b6:de:3e:b8:d7:d0:b4:31:0e:52:
                    cc:e6:a1:f3:06:f1:ee:2b:54:06:60:ff:b2:dd:47:c6:
                    6c:b8:88:ce:82:b5:d0:f5:81:b5:09:1a:fc:76:8a:ff:
                    2c:e9:bf:5e:d5:9a:58:b7:01:48:e2:c6:47:72:7d:c7:
                    cd:8c:33:6b:68:2f:48:c2:6e:6a:98:7d:05:4e:e1:b2:
                    86:55:da:d8:f5:3f:98:86:6c:ca:7a:82:c6:9d:a4:2a:
                    2a:5d:bd:60:9f:5e:ab:8a:5f:89:e5:46:53:f9:97:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:3a:25:91:e2:c6:9e:61:a7:55:a4:39:69:71:8e:1a:
        a8:d8:97:b5:57:8c:77:5d:61:13:9d:6d:1a:b4:51:6e:
        c6:90:a8:12:7d:01:6f:19:8c:56:5b:2c:4c:95:a1:c1:
        81:b2:b3:fd:9c:1f:eb:b4:92:18:6d:44:23:6b:51:55:
        c6:9e:95:31:2e:66:26:ee:0c:a2:02:2e:e9:3c:35:70:
        93:63:3d:20:e9:01:2f:31:a6:61:41:81:12:98:8b:ea:
        71:8a:64:22:c6:d0:df:e8:04:26:74:d8:18:62:9f:2a:
        27:9b:e0:d5:a5:53:6f:0e:0b:75:de:7f:ed:c6:c7:8c:
        0e:46:ab:30:c8:bd:4b:39:c8:8b:86:b5:94:1b:cc:9b:
        43:91:27:ca:b8:35:ff:64:72:ef:4b:48:b5:1a:e5:ea:
        66:09:af:26:33:2a:f7:28:18:27:5a:63:06:76:ac:61:
        29:af:9d:99:b4:53:c8:05:38:41:40:5c:ee:ed:dd:6d:
        a0:69:9a:3b:ca:d4:a4:21:60:06:01:c1:92:cf:c4:f9:
        2e:d4:c3:79:d0:68:08:19:44:5d:4e:8e:0f:4a:24:68:
        0e:f0:34:7a:48:e3:6d:31:4e:9c:f1:75:9e:57:46:ea:
        0a:d4:92:55:d5:78:55:02:07:b0:67:ec:e4:54:eb:52
    Fingerprint (SHA-256):
        14:44:09:E6:F7:9B:9B:ED:04:6D:F0:BB:B5:DB:7A:EA:3F:D7:47:4A:36:68:7C:96:8A:97:54:F8:2C:A1:FE:64
    Fingerprint (SHA1):
        76:A0:74:9B:17:72:FE:74:C2:08:A5:D0:A0:C5:D7:EC:F7:C9:99:E6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7666: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #7667: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #7668: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #7669: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115985 (0x1e67c091)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:59:31 2017
            Not After : Tue May 10 11:59:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:5c:de:91:ce:f4:99:29:e7:d5:fc:2e:33:f3:68:47:
                    7d:a2:d2:1d:ff:83:d3:18:46:dc:30:6a:c8:96:3c:65:
                    02:57:56:43:e7:f6:a0:5d:ee:11:63:0c:3b:ce:b3:1d:
                    2e:84:56:45:ad:0c:e6:be:de:e9:65:1a:64:1d:b3:d4:
                    64:7c:ab:58:06:9a:87:93:a9:4e:a8:39:08:90:c1:1a:
                    0d:ec:a6:ef:b0:86:bb:14:8d:2d:9b:96:f5:38:69:6a:
                    3e:00:dc:58:bb:cb:e0:f6:11:77:52:ce:e0:fa:e2:86:
                    9b:64:85:8f:2f:4d:86:6e:14:54:0c:2e:50:ae:94:8d:
                    2b:5f:f5:29:ba:bc:36:99:c7:c1:96:fc:26:91:83:e1:
                    60:d9:39:35:3b:12:62:92:21:35:f4:90:18:64:e1:5c:
                    4c:3d:d6:68:cf:b1:a1:e7:3a:01:5c:23:59:18:4e:d8:
                    84:04:b7:2c:0c:98:95:40:cf:61:79:70:7c:c9:73:3e:
                    d4:10:fd:5d:93:6b:f5:a1:41:fd:a7:8b:e4:c2:54:b5:
                    e0:64:32:a9:5f:94:16:7f:73:b2:36:c1:57:ab:ff:3c:
                    10:68:95:bd:48:35:19:70:af:8e:b2:41:b0:6d:05:91:
                    f3:e9:3d:a7:53:5e:1c:77:7b:35:fd:2a:3f:d3:d1:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:71:2d:90:38:2d:52:0f:5a:66:2f:65:78:0d:05:e7:
        ef:0a:ff:7b:4f:1e:b1:88:6b:6d:b1:e1:09:64:dc:12:
        45:4e:24:3b:dc:0e:13:dd:f0:70:b5:b9:f5:c2:a2:87:
        53:5e:23:f9:4c:08:ff:28:3c:cc:7d:78:d0:79:3b:83:
        05:30:61:bf:6b:ff:54:27:70:ab:13:09:d4:0e:1c:98:
        f6:c7:bd:a4:3c:ff:cc:1e:c4:bc:ca:2b:c9:c3:75:b8:
        b8:d3:ec:90:f4:1f:4c:9c:bf:93:33:66:5a:53:cb:15:
        36:c6:d0:6a:ba:e2:ea:65:c2:df:47:bf:aa:f6:5d:62:
        0f:43:d3:fa:86:69:83:a6:ad:ac:f7:57:48:26:dc:c7:
        f6:65:18:79:fc:b6:85:6c:aa:02:b1:2e:55:70:18:c6:
        b1:ae:cd:74:67:af:59:5f:68:01:37:bf:65:4f:e8:fc:
        4d:f9:f8:4b:fd:d8:0f:c7:8e:c6:66:e2:ca:98:04:73:
        27:10:72:60:41:e2:87:73:1f:9c:46:dc:e7:c9:fd:79:
        12:b1:8e:21:83:ab:9d:be:10:dd:ef:5d:98:b0:bc:78:
        59:a8:80:77:38:e9:81:19:31:b3:f7:1e:83:9a:e0:30:
        f9:78:e4:06:b0:f4:27:e3:9e:40:54:85:5d:e9:d4:60
    Fingerprint (SHA-256):
        4B:15:09:00:AF:88:42:9F:05:9A:15:97:04:84:3F:35:C9:85:2E:05:D6:72:B2:B0:C4:5B:83:4B:06:11:A5:69
    Fingerprint (SHA1):
        F7:2A:E3:E7:B0:60:92:52:E0:4E:F5:F6:33:DA:BA:C2:B2:F5:D0:23
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7670: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115989 (0x1e67c095)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 11:59:32 2017
            Not After : Tue May 10 11:59:32 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:0d:17:24:75:a0:1b:5e:d7:f6:8c:7a:da:ed:56:7b:
                    af:dd:b6:7e:e6:8f:ed:66:d8:b9:00:40:88:6e:ad:50:
                    66:2d:8e:f7:14:6e:16:7e:41:95:34:df:c1:f6:ed:cc:
                    70:94:0b:e3:f1:1d:bc:cd:fb:93:0b:d9:95:58:6f:ca:
                    a7:0d:91:85:a6:fe:47:7a:9b:06:35:0f:92:61:f0:12:
                    8f:28:42:6b:a4:40:7f:1c:f7:99:be:52:c4:d0:e8:8b:
                    d5:fc:9b:d4:a1:fb:c2:fa:74:9b:1c:a5:f5:b4:01:ff:
                    8c:e6:2f:55:20:78:0e:a0:7f:9f:a6:26:74:5d:2a:2e:
                    1f:50:90:f9:c8:46:70:e5:98:36:86:83:8e:4e:66:c3:
                    e7:7e:1f:4e:9e:d7:e5:91:83:a3:1d:31:f4:41:4f:fe:
                    ec:45:a7:ec:1a:82:99:9f:43:11:68:77:53:fa:93:6a:
                    a1:c7:38:8f:6f:fe:0b:ca:54:df:59:5d:34:34:1e:91:
                    4a:cc:88:45:87:58:1d:92:23:6c:43:b9:2f:f4:c4:82:
                    c6:be:62:95:c3:e5:5b:fe:55:6d:ec:28:64:57:e1:cc:
                    f1:80:18:38:21:fb:2c:0d:de:de:13:56:92:d9:3e:74:
                    22:eb:7b:4e:9b:db:1b:bc:ca:1d:6d:cb:b3:8e:7e:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ac:3a:b2:1a:03:ea:bf:d2:87:25:01:07:99:0e:f1:c2:
        1e:3b:81:92:2b:d9:37:36:12:5f:af:07:56:03:ea:d6:
        20:6c:6f:5c:bb:95:5a:9c:ea:dc:f9:c7:e3:69:69:6e:
        5f:d8:15:fe:6d:e2:71:a4:05:8a:7f:fa:76:16:1d:af:
        d7:84:62:c1:de:76:6c:46:95:b3:8e:14:60:69:c1:fd:
        93:13:ed:e0:65:25:6d:90:1d:f7:02:07:a2:ef:56:9e:
        54:90:3c:9e:3d:61:9b:5b:ae:87:de:51:6e:68:f0:39:
        4a:42:48:0a:5d:be:54:fb:6e:f4:4c:51:71:0b:11:75:
        36:bb:2a:dd:b8:41:f2:ac:5d:c0:2e:4c:11:bf:d3:0e:
        dd:0c:7f:a1:94:df:56:0d:ea:e1:06:12:0c:5c:00:b0:
        a7:d7:e8:8b:0a:ba:66:9d:96:22:78:24:32:3f:0c:f9:
        94:9b:76:e7:9d:d6:73:d7:1f:52:57:58:08:70:62:b4:
        c9:14:2d:ec:f3:ab:aa:66:7e:33:54:f7:16:19:11:a9:
        29:fd:46:3e:b1:a3:99:72:d1:d8:d6:13:a3:58:07:28:
        36:34:26:a5:ba:ac:d2:9d:e4:b6:e8:fb:20:0f:a3:c6:
        9e:c9:45:44:87:a0:d6:18:76:53:a5:eb:50:a5:9c:e3
    Fingerprint (SHA-256):
        E8:5D:95:1A:2C:0D:C4:6C:ED:0A:A9:98:5C:7C:BF:67:82:69:67:2D:4E:F8:B3:F6:37:91:51:57:BA:CF:49:A4
    Fingerprint (SHA1):
        DE:23:DC:21:EE:65:16:9F:4A:D8:48:3D:57:4E:53:88:D1:D8:B5:8E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #7671: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115985 (0x1e67c091)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 11:59:31 2017
            Not After : Tue May 10 11:59:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:5c:de:91:ce:f4:99:29:e7:d5:fc:2e:33:f3:68:47:
                    7d:a2:d2:1d:ff:83:d3:18:46:dc:30:6a:c8:96:3c:65:
                    02:57:56:43:e7:f6:a0:5d:ee:11:63:0c:3b:ce:b3:1d:
                    2e:84:56:45:ad:0c:e6:be:de:e9:65:1a:64:1d:b3:d4:
                    64:7c:ab:58:06:9a:87:93:a9:4e:a8:39:08:90:c1:1a:
                    0d:ec:a6:ef:b0:86:bb:14:8d:2d:9b:96:f5:38:69:6a:
                    3e:00:dc:58:bb:cb:e0:f6:11:77:52:ce:e0:fa:e2:86:
                    9b:64:85:8f:2f:4d:86:6e:14:54:0c:2e:50:ae:94:8d:
                    2b:5f:f5:29:ba:bc:36:99:c7:c1:96:fc:26:91:83:e1:
                    60:d9:39:35:3b:12:62:92:21:35:f4:90:18:64:e1:5c:
                    4c:3d:d6:68:cf:b1:a1:e7:3a:01:5c:23:59:18:4e:d8:
                    84:04:b7:2c:0c:98:95:40:cf:61:79:70:7c:c9:73:3e:
                    d4:10:fd:5d:93:6b:f5:a1:41:fd:a7:8b:e4:c2:54:b5:
                    e0:64:32:a9:5f:94:16:7f:73:b2:36:c1:57:ab:ff:3c:
                    10:68:95:bd:48:35:19:70:af:8e:b2:41:b0:6d:05:91:
                    f3:e9:3d:a7:53:5e:1c:77:7b:35:fd:2a:3f:d3:d1:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:71:2d:90:38:2d:52:0f:5a:66:2f:65:78:0d:05:e7:
        ef:0a:ff:7b:4f:1e:b1:88:6b:6d:b1:e1:09:64:dc:12:
        45:4e:24:3b:dc:0e:13:dd:f0:70:b5:b9:f5:c2:a2:87:
        53:5e:23:f9:4c:08:ff:28:3c:cc:7d:78:d0:79:3b:83:
        05:30:61:bf:6b:ff:54:27:70:ab:13:09:d4:0e:1c:98:
        f6:c7:bd:a4:3c:ff:cc:1e:c4:bc:ca:2b:c9:c3:75:b8:
        b8:d3:ec:90:f4:1f:4c:9c:bf:93:33:66:5a:53:cb:15:
        36:c6:d0:6a:ba:e2:ea:65:c2:df:47:bf:aa:f6:5d:62:
        0f:43:d3:fa:86:69:83:a6:ad:ac:f7:57:48:26:dc:c7:
        f6:65:18:79:fc:b6:85:6c:aa:02:b1:2e:55:70:18:c6:
        b1:ae:cd:74:67:af:59:5f:68:01:37:bf:65:4f:e8:fc:
        4d:f9:f8:4b:fd:d8:0f:c7:8e:c6:66:e2:ca:98:04:73:
        27:10:72:60:41:e2:87:73:1f:9c:46:dc:e7:c9:fd:79:
        12:b1:8e:21:83:ab:9d:be:10:dd:ef:5d:98:b0:bc:78:
        59:a8:80:77:38:e9:81:19:31:b3:f7:1e:83:9a:e0:30:
        f9:78:e4:06:b0:f4:27:e3:9e:40:54:85:5d:e9:d4:60
    Fingerprint (SHA-256):
        4B:15:09:00:AF:88:42:9F:05:9A:15:97:04:84:3F:35:C9:85:2E:05:D6:72:B2:B0:C4:5B:83:4B:06:11:A5:69
    Fingerprint (SHA1):
        F7:2A:E3:E7:B0:60:92:52:E0:4E:F5:F6:33:DA:BA:C2:B2:F5:D0:23
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7672: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #7673: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #7674: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #7675: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #7676: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #7677: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510115990 (0x1e67c096)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 11:59:32 2017
            Not After : Tue May 10 11:59:32 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:7e:50:21:dc:38:9f:b9:12:4a:4a:58:b8:36:45:d8:
                    91:d3:13:28:42:e9:da:ca:16:f8:23:13:af:74:6c:20:
                    3a:36:39:38:96:bb:eb:9a:9c:16:13:9a:a8:9c:17:38:
                    33:19:fb:df:dc:71:75:26:0d:05:14:2a:b6:05:ad:68:
                    f0:ba:f1:31:68:09:77:28:f4:61:9e:0b:b9:a1:34:cb:
                    25:c6:23:7a:70:24:5b:3d:7f:fb:00:14:33:d9:04:8c:
                    07:98:e3:16:6b:64:7b:0e:82:23:7a:83:56:a2:90:eb:
                    3b:ef:77:6b:90:27:49:3b:6f:7c:fe:c5:66:5e:19:ed:
                    c1:52:0f:6e:36:53:98:27:1c:2f:ec:82:aa:83:de:da:
                    df:50:46:8d:9f:bc:a4:89:0a:f0:cb:a6:e2:ff:d9:5a:
                    e1:99:b9:1c:d7:1e:cb:8d:4b:8e:3f:a0:80:11:b9:48:
                    1a:88:cb:6f:58:6c:51:63:70:03:e7:2c:e6:6f:a3:47:
                    40:c9:21:0f:24:90:f4:6f:8b:75:3d:57:12:0a:07:64:
                    47:cd:ab:61:13:5a:28:f4:29:5b:05:e8:e1:7a:ec:c8:
                    b2:b6:ef:5d:14:2c:83:85:dd:9e:07:a3:8b:05:d2:3d:
                    72:80:84:43:69:58:89:6d:4e:d6:cc:30:21:19:58:73
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:66:b4:f7:d2:d4:90:c0:6b:3b:16:9a:65:28:0d:86:
        8c:d5:65:40:0d:ff:db:55:9a:ca:17:16:1d:51:15:c4:
        6a:9d:bb:c2:73:c9:5c:b6:c3:41:47:be:0a:be:6b:25:
        21:1d:96:9d:09:58:f5:21:c1:49:a5:6a:8c:92:af:a5:
        9d:92:98:3c:74:83:35:40:49:92:a7:2a:5e:9b:cf:02:
        2e:c3:88:90:47:d7:14:4b:96:15:59:7c:5c:b9:ad:a8:
        64:7f:7e:85:2c:48:47:dd:28:29:a3:52:5b:c6:a4:da:
        78:84:64:52:85:66:82:13:32:94:ae:39:df:e0:d2:1b:
        a3:7a:d4:37:d9:3b:76:14:af:41:0a:48:e7:98:03:cf:
        cf:5e:80:55:6b:0a:a5:10:43:58:32:6f:06:30:85:2b:
        46:d7:f3:31:31:7d:46:ce:a9:c6:b0:c4:87:8b:10:ad:
        6c:5a:fb:b6:bd:2a:ff:c1:b9:59:ae:55:24:46:ea:74:
        8a:ee:5c:1e:e9:b4:bb:f0:f6:7f:e0:0a:8e:3f:c5:45:
        c1:c0:23:7b:96:85:47:08:82:f5:72:57:6c:36:73:a5:
        60:27:61:b2:b7:87:ce:a0:e2:94:1d:47:bd:4f:96:45:
        59:0a:9a:06:71:2a:2d:5f:d5:cc:f4:0e:48:8b:58:92
    Fingerprint (SHA-256):
        48:6C:0B:AE:BB:46:8F:E9:AD:52:D9:57:F8:F7:D8:E3:E2:92:66:B7:59:C0:AC:EE:F9:CD:D9:9F:46:38:77:81
    Fingerprint (SHA1):
        BD:99:5B:2A:FF:C0:93:3D:38:47:47:A5:4B:16:D9:CA:8B:35:F6:D3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7678: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #7679: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #7680: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #7681: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #7682: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7683: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7684: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7685: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7686: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7687: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7688: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7689: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7690: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7691: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7692: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7693: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7694: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7695: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7696: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #7697: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7698: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7699: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7700: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7701: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 25981 at Wed May 10 11:59:35 UTC 2017
kill -USR1 25981
httpserv: normal termination
httpserv -b -p 9333 2>/dev/null;
httpserv with PID 25981 killed at Wed May 10 11:59:35 UTC 2017
TIMESTAMP chains END: Wed May 10 11:59:35 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Wed May 10 11:59:35 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Wed May 10 11:59:35 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #7702: ec(perf) test - PASSED
TIMESTAMP ecperf END: Wed May 10 11:59:35 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Wed May 10 11:59:35 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7703: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7704: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7705: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7706: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #7707: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #7708: pk11 ec tests - PASSED
TIMESTAMP ectest END: Wed May 10 11:59:35 UTC 2017
TIMESTAMP ec END: Wed May 10 11:59:35 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Wed May 10 11:59:35 UTC 2017
gtests: prng_gtest der_gtest pk11_gtest util_gtest
gtests.sh: #7709: Skipping prng_gtest (not built) - UNKNOWN
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (3 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (1 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (1 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (4 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #7710: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #7711: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #7712: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #7713: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #7714: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #7715: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #7716: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #7717: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #7718: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #7719: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #7720: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #7721: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #7722: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #7723: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #7724: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #7725: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #7726: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #7727: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #7728: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Wed May 10 11:59:35 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Wed May 10 11:59:35 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #7729: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7730: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7731: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7732: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7733: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7734: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7735: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7736: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7737: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7738: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7739: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7740: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7741: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7742: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7743: create certificate: sign  - PASSED
ssl_gtest.sh: #7744: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Wed May 10 11:59:36 UTC 2017
ssl_gtests.sh: Testing with upgraded library ===============================
cp: cannot stat '/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert.done': No such file or directory
Running tests for dbupgrade
TIMESTAMP dbupgrade BEGIN: Wed May 10 11:59:36 UTC 2017
dbupgrade.sh: DB upgrade tests ===============================
Reset databases to their initial values:
certutil: could not find certificate named "objsigner": SEC_ERROR_BAD_DATABASE: security library: bad database.
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
dbupgrade.sh: Legacy to shared Library update ===============================
alicedir
upgrading db alicedir
Generating key.  This may take a few moments...
dbupgrade.sh: #7745: Upgrading alicedir  - PASSED
bobdir
upgrading db bobdir
Generating key.  This may take a few moments...
dbupgrade.sh: #7746: Upgrading bobdir  - PASSED
CA
upgrading db CA
Generating key.  This may take a few moments...
dbupgrade.sh: #7747: Upgrading CA  - PASSED
cert_extensions
upgrading db cert_extensions
Generating key.  This may take a few moments...
dbupgrade.sh: #7748: Upgrading cert_extensions  - PASSED
client
upgrading db client
Generating key.  This may take a few moments...
dbupgrade.sh: #7749: Upgrading client  - PASSED
clientCA
upgrading db clientCA
Generating key.  This may take a few moments...
dbupgrade.sh: #7750: Upgrading clientCA  - PASSED
dave
upgrading db dave
Generating key.  This may take a few moments...
dbupgrade.sh: #7751: Upgrading dave  - PASSED
eccurves
upgrading db eccurves
Generating key.  This may take a few moments...
dbupgrade.sh: #7752: Upgrading eccurves  - PASSED
eve
upgrading db eve
Generating key.  This may take a few moments...
dbupgrade.sh: #7753: Upgrading eve  - PASSED
ext_client
upgrading db ext_client
Generating key.  This may take a few moments...
dbupgrade.sh: #7754: Upgrading ext_client  - PASSED
ext_server
upgrading db ext_server
Generating key.  This may take a few moments...
dbupgrade.sh: #7755: Upgrading ext_server  - PASSED
SDR
upgrading db SDR
Generating key.  This may take a few moments...
dbupgrade.sh: #7756: Upgrading SDR  - PASSED
server
upgrading db server
Generating key.  This may take a few moments...
dbupgrade.sh: #7757: Upgrading server  - PASSED
serverCA
upgrading db serverCA
Generating key.  This may take a few moments...
dbupgrade.sh: #7758: Upgrading serverCA  - PASSED
ssl_gtests
skipping db ssl_gtests
dbupgrade.sh: #7759: No directory ssl_gtests  - PASSED
stapling
upgrading db stapling
Generating key.  This may take a few moments...
dbupgrade.sh: #7760: Upgrading stapling  - PASSED
tools/copydir
skipping db tools/copydir
dbupgrade.sh: #7761: No directory tools/copydir  - PASSED
upgrading db fips
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
dbupgrade.sh: #7762: Upgrading fips  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
TIMESTAMP dbupgrade END: Wed May 10 12:00:04 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Wed May 10 12:00:04 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7763: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                86:13:f3:5e:ab:25:be:c3:5a:f7:e1:b4:4b:19:34:fd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7764: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7765: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7766: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7767: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                60:b3:dd:d4:95:4c:8b:88:5c:40:0e:84:00:8c:90:35
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 11:36:28 2017
            Not After : Tue May 10 11:36:28 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:d7:8d:61:03:91:b3:93:9d:57:ae:33:9e:16:c0:
                    3f:fc:c5:9b:b3:89:08:00:9d:40:6c:53:6d:06:12:c6:
                    1d:76:7a:f1:f5:8c:1e:cf:6e:7c:63:18:2e:37:b4:28:
                    41:46:f1:ce:50:b8:8f:05:83:ff:6b:c2:4b:d3:a2:47:
                    3b:4c:62:01:df:19:8e:04:d3:97:1b:44:1d:b7:96:ee:
                    08:09:4f:96:95:36:10:50:41:4e:36:64:79:76:73:23:
                    ab:54:ac:ac:cd:ed:94:b7:0e:99:b7:15:5e:d7:4c:c0:
                    89:31:e1:8b:5c:1f:e2:05:6f:3b:c2:70:9b:2f:4d:83:
                    41:f7:06:c5:17
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:00:95:ce:19:20:ab:59:e7:cb:35:f6:
        e4:9a:6b:5a:f3:9c:e1:ea:a1:2b:09:bc:66:64:93:e9:
        0a:d1:2c:07:bf:8d:7f:5a:13:a6:22:ce:02:8b:29:ed:
        d7:ed:e4:0a:c5:19:3b:3c:0c:f5:92:69:d2:78:d5:6c:
        16:bb:51:88:73:41:85:02:42:01:f7:76:14:8f:62:23:
        10:f1:b0:20:a6:c1:9c:0b:79:76:72:b5:f7:9c:52:6c:
        28:13:e6:63:34:6b:00:6e:ea:3b:4f:32:33:b0:de:5c:
        6d:db:f9:66:b0:8c:04:34:93:96:ea:6b:77:00:82:15:
        2a:ec:54:e9:6b:d5:ed:e3:92:0d:a9
    Fingerprint (SHA-256):
        99:5F:E2:7B:14:3D:AB:4C:3A:9C:4A:C6:D5:9B:4E:8C:10:FB:65:E6:E2:A2:8A:E2:C1:56:E6:EC:69:6B:BA:9F
    Fingerprint (SHA1):
        00:B0:79:17:18:85:47:40:99:40:5B:B8:22:8B:9B:F0:A4:66:1B:6A
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:c8:b7:82:d6:ca:26:9e:97:0a:b8:5d:22:f4:9d:de:
                    31:aa:36:df:af:e7:7f:80:0a:f7:19:4c:39:0c:e3:11:
                    5c:b2:4f:aa:c1:a9:9a:2e:f2:6d:d0:4f:56:a4:60:4d:
                    72:11:35:6f:cc:76:d4:75:5a:b8:92:7b:3d:2a:bc:cc:
                    00:06:5e:2d:e0:46:3e:96:63:d7:c4:11:7f:86:1a:12:
                    d7:97:f1:07:86:90:5b:14:66:0b:d2:9c:82:2d:fa:6b:
                    b1
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:41:58:de:a6:0f:e4:e2:13:50:60:2a:e6:
        9d:63:4b:2a:f5:ea:65:dc:4d:a2:d6:23:b1:b2:95:cf:
        b5:62:74:f7:b0:84:dc:35:eb:4e:c3:5a:a2:1f:c9:fa:
        19:20:41:92:bc:a3:a2:05:11:0a:0f:97:d1:d3:8e:d1:
        e3:23:f8:13:66:6a:02:42:00:f2:55:41:4f:99:10:5b:
        21:c9:81:d9:e8:ea:db:8c:21:31:49:49:9e:e9:59:2d:
        fc:a6:45:5a:aa:9c:d3:f5:8a:58:e8:b9:06:83:ef:4a:
        81:a1:44:75:e6:76:d9:fc:4d:6a:6d:9b:4a:ab:bf:a3:
        0b:c2:bd:cb:54:f9:fc:46:04:e8
    Fingerprint (SHA-256):
        5B:A1:9C:F8:5E:17:08:D1:10:6E:D0:DF:75:40:09:AF:C5:57:A3:B7:50:A4:4B:CB:C3:8A:D0:43:40:42:CD:96
    Fingerprint (SHA1):
        93:50:BE:56:FA:51:2D:20:6E:18:4D:D9:53:B9:2F:56:18:8A:56:85
    Friendly Name: Alice-ec
tools.sh: #7768: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7769: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                18:d5:d9:9d:ad:c9:5a:a7:ab:40:52:a9:25:2f:52:71
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7770: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7771: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7772: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                db:96:71:90:02:a2:2b:28:f5:0a:23:ea:5f:99:e7:be
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7773: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7774: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7775: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                4a:65:8f:88:3a:6e:e1:9c:b5:28:62:b1:8a:c7:df:17
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7776: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7777: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7778: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                ed:2b:a8:81:0b:e5:ce:b2:63:c7:fa:e6:8b:2e:ab:78
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7779: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7780: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7781: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                e9:01:fd:88:d7:91:3b:e2:3b:bf:0d:58:21:8d:43:23
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7782: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7783: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7784: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                7b:d0:63:e0:ac:fe:f4:e7:d8:6c:3e:4f:ef:26:33:33
            Iteration Count: 2000 (0x7d0)
tools.sh: #7785: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7786: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7787: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6f:6d:62:9a:85:0f:fa:92:28:fb:f9:17:cc:c4:1d:5c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7788: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7789: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7790: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3c:63:85:ba:75:e7:67:31:74:d3:37:e5:46:a9:87:17
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7791: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7792: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7793: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1a:3a:70:2e:3c:e5:a6:8d:7d:6e:e5:17:1b:fd:d1:5f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7794: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7795: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7796: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                89:8b:8c:da:73:16:38:8c:28:6a:40:fe:e4:5c:0b:94
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7797: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7798: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7799: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b8:da:45:71:47:89:e0:48:d5:93:35:be:06:e5:93:e4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7800: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7801: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7802: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fa:80:6c:98:af:f0:78:ff:26:a6:0c:f3:81:e1:20:87
            Iteration Count: 2000 (0x7d0)
tools.sh: #7803: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7804: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7805: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        93:19:df:da:9f:78:b0:54:0c:e8:1f:8f:71:16:8e:0a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:9b:23:d3:c4:dc:f5:4e:5f:5e:26:97:e0:e9:34:
                    47:37
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7806: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7807: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7808: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        02:19:d7:c5:58:4e:04:ff:9c:38:e7:92:3b:1f:9f:a1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:e2:9c:e5:be:29:1a:8d:51:76:9f:2b:0c:de:74:
                    aa:78
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7809: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7810: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7811: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f5:4f:2f:f9:f1:20:d5:99:66:d4:0e:2e:be:54:4e:a4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:85:14:84:67:0b:df:03:68:2b:cf:fc:c4:ca:35:
                    91:46
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7812: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7813: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7814: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        27:63:71:93:4e:3c:95:07:1c:8e:f5:df:54:b2:c1:8c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:2a:64:c4:75:b8:30:72:8e:22:40:66:9e:ad:98:
                    31:e2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7815: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7816: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7817: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5b:64:7d:a8:56:e3:f7:2a:c7:43:c8:11:59:38:a6:e8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:dc:79:9d:e7:57:76:4c:8e:6d:66:3b:d8:08:17:
                    2a:5f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7818: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7819: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7820: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bb:d9:7c:6f:18:14:f9:4a:90:6f:ab:cc:58:25:43:76
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:34:b8:da:ce:b6:fd:3d:20:e6:c4:9d:ed:4d:3e:
                    e1:fe
tools.sh: #7821: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7822: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7823: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        20:c2:a5:05:ae:2e:13:99:cf:ae:e6:0b:31:bc:28:cf
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:35:cb:55:a1:ce:ce:a2:58:f5:e6:8d:17:64:6d:
                    68:81
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7824: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7825: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7826: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        dc:0f:68:83:a3:d3:f7:2c:84:f7:5e:f7:41:3d:19:f6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:3f:ae:5a:c2:25:a2:39:eb:da:4e:b9:2f:a3:89:
                    83:91
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7827: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7828: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7829: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        06:e9:61:4c:ae:6c:63:26:e0:fa:4b:1d:46:8d:55:ad
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:7f:ce:d3:ba:1c:bf:09:fc:c0:dd:e7:de:ca:53:
                    a5:b7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7830: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7831: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7832: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        0a:dd:9f:1f:f7:e7:0b:0a:9d:f2:bb:f6:61:6a:a9:34
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:07:e4:53:9b:c2:3c:da:26:91:e9:7d:0a:51:f3:
                    c0:aa
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7833: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7834: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7835: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1a:96:c6:de:8d:b9:db:58:85:4e:8a:a3:ce:da:12:bd
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:bc:88:4e:9a:f7:25:28:16:b4:b2:0b:77:e4:d3:
                    93:4f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7836: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7837: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7838: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        81:83:70:93:de:eb:1f:a7:df:f7:a2:12:dc:0b:bb:d6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:b7:df:37:7d:a6:35:8a:fa:c5:62:ab:d4:c2:b6:
                    5a:dc
tools.sh: #7839: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7840: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7841: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        12:2a:64:52:7c:7d:d1:6a:ec:a9:1c:c2:eb:0b:13:44
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:4e:16:f3:95:7c:ce:04:09:c7:b8:55:c4:39:fd:
                    6e:dd
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7842: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7843: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7844: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        96:08:e2:7c:19:2e:b9:31:ec:a7:f4:f9:2f:dc:59:fc
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:9f:82:7b:9a:15:af:29:73:99:c0:98:92:42:aa:
                    6d:5f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7845: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7846: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7847: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        72:17:44:85:79:e0:e9:03:e3:e0:f6:1f:56:01:6b:1d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:c8:53:92:dc:c6:d3:49:c7:6e:ab:39:7b:2f:84:
                    31:55
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7848: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7849: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7850: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8b:27:6f:de:8d:3e:65:8c:0e:44:2c:dd:64:b1:f8:a4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:7f:e1:ea:ed:68:35:a9:0a:3d:a9:2a:d6:3f:6b:
                    49:84
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7851: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7852: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7853: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b6:19:6e:6c:f1:fb:8d:4f:3b:57:75:23:c7:4c:b3:3c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:ca:72:38:89:62:e1:83:af:a2:aa:1f:2b:16:6c:
                    ba:94
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7854: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7855: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7856: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e8:c9:bd:fe:6e:ea:aa:ff:d6:9b:1e:c2:e1:77:8b:31
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:55:11:ad:35:47:05:4b:60:1f:21:16:62:c9:7f:
                    98:30
tools.sh: #7857: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7858: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7859: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        51:a7:4b:13:22:50:30:20:a1:f6:e9:b0:2c:21:6b:72
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:96:13:ce:cd:cb:6f:71:3a:81:d7:e3:db:43:16:
                    2e:1e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7860: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7861: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7862: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        de:61:22:58:dc:29:bb:c7:11:0b:77:a8:da:0c:8a:a6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:90:42:ac:1c:15:d7:a5:28:ea:af:d2:c8:e3:8b:
                    0b:4f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7863: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7864: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7865: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ae:72:91:29:2b:b4:8a:2a:45:fc:8b:59:ac:27:8b:a9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:24:8c:6f:b5:8f:1c:49:30:83:dc:18:bb:6d:72:
                    ba:3e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7866: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7867: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7868: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        90:e9:ef:92:42:c6:ee:0d:6e:6d:39:84:9d:b0:9a:90
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:86:6d:b1:29:db:3a:bd:28:1a:0b:11:5c:b2:0d:
                    b9:97
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7869: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7870: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7871: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2d:2f:77:d9:43:45:db:3d:bc:e0:49:52:82:5b:4a:50
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:46:05:53:03:99:50:61:c5:8d:4f:82:aa:2e:06:
                    44:a2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7872: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7873: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7874: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6e:67:8b:0e:d8:bc:09:c1:48:28:c1:33:46:a9:8b:16
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:29:33:79:ba:67:19:4b:0a:ee:ee:93:f9:a7:06:
                    c5:15
tools.sh: #7875: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7876: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7877: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        22:1a:eb:96:9f:33:85:b4:51:da:1a:f4:f5:ae:08:34
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:1b:5d:45:62:f1:59:7b:4f:de:06:3f:e2:5f:bc:
                    3e:70
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7878: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7879: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7880: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        38:8d:f3:b2:b1:af:dc:7b:47:c5:fb:c5:50:e1:83:34
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:06:5a:66:5d:7b:4e:d5:fd:89:ba:cc:5a:64:f4:
                    ee:25
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7881: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7882: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7883: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fd:30:6e:90:7f:41:52:c6:5a:cf:b3:61:11:e5:44:1a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:63:36:68:59:98:9c:1d:9b:b2:c9:4d:60:5e:6e:
                    a0:c6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7884: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7885: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7886: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        dd:6e:ab:5d:2a:72:f3:35:17:da:b5:4d:3f:88:30:04
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:2b:20:fe:2b:b7:e9:81:ed:68:2a:e2:87:97:33:
                    e9:04
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7887: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7888: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7889: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        31:29:70:44:46:9a:da:45:36:aa:f4:a9:e5:4e:84:1b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:ce:7e:ca:59:d2:b7:5f:d5:e6:0b:14:a7:c6:ab:
                    3a:89
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7890: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7891: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7892: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        45:83:e0:e2:24:63:df:4a:7c:3c:29:44:34:ff:68:54
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:be:20:61:e5:f0:97:34:39:01:11:7d:db:cf:df:
                    90:42
tools.sh: #7893: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7894: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7895: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        82:7d:ea:d1:be:df:3d:34:cc:85:f4:81:69:db:23:26
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:50:08:49:d7:58:0f:ef:9b:8b:12:99:27:93:fb:
                    31:e1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7896: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7897: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7898: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        59:f4:2c:cb:9e:b2:0f:9e:8c:26:f0:db:e5:c5:42:fe
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:23:0f:9a:13:92:36:b4:f9:73:6e:d4:65:9b:a8:
                    79:64
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7899: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7900: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7901: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f1:75:e0:99:55:ce:cc:42:bd:10:ab:f6:b2:9a:4f:6e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:f2:1c:ba:8a:5b:9d:b8:a8:64:2e:5e:79:b7:60:
                    ed:38
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7902: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7903: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7904: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        be:51:2d:7b:76:05:8e:45:2f:82:58:46:be:98:7a:dd
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:d7:e3:a4:b6:52:0f:ae:6b:90:82:09:a7:08:91:
                    34:49
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7905: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7906: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7907: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ab:1e:69:cb:ed:74:c2:cc:7e:fb:2d:1e:33:f5:d4:50
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:09:5f:e9:d4:fd:ab:47:62:d5:1f:b7:5e:3d:69:
                    f0:2c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7908: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7909: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7910: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d5:44:a8:30:96:52:88:c7:73:5d:9f:89:45:4d:24:9b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:fe:c7:24:bc:c7:dc:5d:c3:bf:27:ef:18:32:ee:
                    07:b7
tools.sh: #7911: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7912: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7913: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                b5:65:24:36:90:72:ec:37:f5:fa:e9:ff:36:bc:e2:f6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7914: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7915: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7916: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                c2:65:fc:95:98:de:de:bb:81:14:6f:25:bf:4f:a4:18
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7917: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7918: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7919: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                f1:4e:e3:65:64:e9:99:c6:80:4f:df:f5:0f:87:35:ec
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7920: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7921: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7922: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                49:24:36:06:76:a8:9e:a0:fa:b1:90:74:2e:41:2d:b4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7923: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7924: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7925: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                3a:08:cb:2d:d7:c2:b1:37:f9:af:6c:ae:51:89:f9:c8
            Iteration Count: 2000 (0x7d0)
tools.sh: #7926: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7927: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7928: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                e4:9b:65:20:c9:bb:4e:05:29:c2:6d:8e:62:0c:1c:78
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7929: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7930: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7931: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                ff:0a:c6:af:34:0b:e3:c8:1b:78:03:85:ed:0f:e5:bf
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7932: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7933: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7934: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                36:7a:e8:be:69:06:e0:dc:45:f1:cc:2d:2f:4a:94:9d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7935: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7936: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7937: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                1c:5c:9d:ec:ec:c4:0c:5c:34:76:c5:09:c3:5e:5f:63
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7938: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7939: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7940: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                35:19:59:a9:7b:29:c5:55:e8:7f:6b:1f:04:dc:75:95
            Iteration Count: 2000 (0x7d0)
tools.sh: #7941: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7942: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7943: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                32:4f:7b:25:9c:de:d2:c4:be:e7:53:88:ef:1e:a2:06
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7944: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7945: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7946: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                06:ae:9a:1e:89:08:2e:31:31:13:a9:8b:e0:1b:b8:40
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7947: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7948: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7949: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                1e:69:d7:aa:23:5a:be:9a:9c:62:d4:f2:5d:28:7e:7a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7950: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7951: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7952: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                d1:23:5d:eb:59:e7:d4:da:ed:d0:a9:d0:08:aa:d7:72
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7953: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7954: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7955: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                c8:5d:bb:7b:b3:c9:79:59:a5:28:93:57:9f:98:cd:e5
            Iteration Count: 2000 (0x7d0)
tools.sh: #7956: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7957: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7958: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                82:b4:78:8b:6e:12:4d:eb:2b:15:42:d0:8c:83:f9:e9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7959: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7960: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7961: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3a:ec:9e:20:ba:d4:ba:69:4c:4b:57:62:e6:9c:8d:cf
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7962: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7963: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7964: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6f:f9:84:37:80:09:c6:83:06:6c:2f:4f:1b:05:e4:6f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7965: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7966: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7967: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                52:11:3f:ef:f7:c1:70:f9:22:97:21:0e:fe:65:ab:a2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7968: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7969: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7970: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                43:51:f2:eb:42:08:c2:f3:83:35:82:e7:81:cc:13:f3
            Iteration Count: 2000 (0x7d0)
tools.sh: #7971: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7972: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7973: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1d:ab:e2:7a:35:96:c9:fa:4c:43:a6:97:2d:12:18:99
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7974: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7975: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7976: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                cc:2b:ce:3d:95:47:ae:25:bd:8d:c2:55:48:4e:2c:fa
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7977: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7978: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7979: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8a:ee:a3:03:01:79:1d:fb:02:51:c4:e1:e9:75:52:37
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7980: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7981: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7982: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ed:92:55:0f:f9:54:84:7e:01:96:be:4f:a0:10:b1:21
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7983: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7984: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7985: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b5:67:86:70:37:cb:7c:f8:bc:33:78:2c:76:f5:3c:83
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7986: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7987: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7988: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                57:b7:e4:e7:0b:e5:c1:51:24:02:3e:f4:d8:aa:be:a4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7989: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7990: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7991: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2d:66:81:7f:7a:7c:ed:22:11:9e:be:9e:dd:f0:10:7c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7992: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7993: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7994: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b1:01:92:c3:54:76:64:0a:42:82:1d:79:37:e7:88:88
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7995: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7996: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7997: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4c:61:c3:e7:15:d3:65:dc:73:fe:f6:2c:14:5b:27:1d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #7998: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7999: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #8000: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                af:8a:60:92:e5:20:bc:84:f3:70:5a:dd:cc:9d:c3:de
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:25 2017
            Not After : Tue May 10 11:36:25 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:55:30:3c:59:ea:62:8d:63:f1:0b:a0:5d:09:a6:d4:
                    ba:c9:ac:ff:7a:a9:30:41:8d:3e:29:19:34:51:33:2b:
                    07:df:58:14:b4:e7:7d:18:c9:ba:1a:de:18:0b:34:03:
                    f5:87:a2:37:82:13:e0:52:78:cb:24:85:21:f6:ec:ae:
                    83:4a:f1:3b:5c:59:46:9a:ca:73:5b:aa:a4:19:f9:8f:
                    20:dc:b1:f4:e0:3e:96:46:d0:63:28:6f:28:c7:3b:3c:
                    c4:a1:76:8d:44:f2:d3:e2:2c:6b:c7:34:e7:d3:cf:33:
                    08:12:45:1f:68:09:44:f8:c6:c4:a9:06:a0:f3:fa:90:
                    7c:55:23:b4:3b:18:1c:71:87:2a:c7:06:1b:ab:c6:a4:
                    8d:39:7e:8f:a7:a7:87:b1:57:ea:64:c2:c5:15:f6:fa:
                    0c:07:38:a9:5a:e4:8b:60:5e:8e:0f:c3:cf:97:8f:7d:
                    99:f5:52:b2:f2:87:d7:73:11:8b:36:ef:29:87:f8:7d:
                    2a:1f:70:7d:ff:99:ef:27:00:c1:48:d0:09:bc:d9:ea:
                    94:59:1e:18:0a:77:18:80:ca:e7:a6:d9:98:6c:01:89:
                    fd:91:5a:85:a3:4c:dc:f3:09:5d:24:89:e1:87:b8:5e:
                    38:c1:24:51:25:68:28:12:7b:17:55:3c:26:6c:23:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:cf:82:83:a4:13:75:a7:b3:29:1a:72:92:5e:79:73:
        ac:64:bc:c4:87:6d:99:fd:ef:ee:ce:fc:7a:04:1d:41:
        22:2b:37:15:39:05:0a:48:41:3b:28:82:7d:06:09:da:
        38:a5:97:40:3e:9e:bc:32:94:14:24:64:32:e2:38:a0:
        2c:2f:13:cf:19:a4:c3:aa:55:09:25:cb:8d:1a:21:e9:
        96:c7:b4:f1:62:71:df:d8:3c:f7:3b:0f:5b:95:bd:7e:
        7f:fd:b9:2f:d1:5b:b2:df:03:25:8b:ca:70:8b:d4:45:
        43:c8:35:07:6e:46:51:b8:6a:fd:e6:74:e7:c3:58:f6:
        b2:96:53:7f:af:6f:38:0c:45:f8:1e:fe:70:d4:a4:b4:
        8f:e4:9e:dd:61:f3:d5:0a:0b:e1:fd:0c:88:19:3e:85:
        d2:c0:df:6f:f2:85:42:b7:cb:23:7c:b4:b5:2c:15:ca:
        f2:ef:87:5d:06:83:36:8b:0e:94:dd:01:c0:e1:1a:1f:
        6f:6f:42:39:db:6f:3d:54:5a:44:3a:1f:c7:76:19:68:
        7b:b9:4f:ee:c2:ab:2d:29:69:7c:5e:94:c9:e0:73:8a:
        aa:c1:40:08:58:1c:5c:28:bb:64:0f:2a:68:b9:de:5a:
        cb:a8:e6:d3:82:e7:b7:91:a9:c2:a7:bb:ba:36:f0:28
    Fingerprint (SHA-256):
        E8:53:7E:29:EE:3E:75:CC:CC:A5:A7:E6:67:C9:D2:92:06:62:5C:CD:7A:CB:16:FD:8C:76:EC:43:8E:87:AB:73
    Fingerprint (SHA1):
        44:21:2D:31:F3:5B:79:3D:E1:D1:31:0E:D8:59:F6:0C:4C:39:4B:3A
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:32 2017
            Not After : Tue May 10 11:36:32 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:76:ee:36:44:38:e0:3f:69:75:1f:89:65:17:e4:56:
                    f3:6b:97:ad:ae:48:58:49:10:ba:04:d0:a3:fc:de:90:
                    f5:88:44:f7:21:46:05:96:5b:8d:c7:9d:af:89:38:65:
                    75:48:42:4a:59:05:8a:65:b4:fb:f3:4d:5b:ab:c0:f1:
                    85:69:d3:8f:37:25:9e:f9:37:c8:1c:ac:4b:0b:33:4b:
                    c1:75:1b:75:ce:d5:ed:fb:ac:26:68:0b:ee:a7:18:99:
                    c0:be:cb:31:56:f0:73:a3:c0:34:63:d5:29:fc:7a:d0:
                    0f:7a:b0:66:2b:9b:db:67:24:94:d9:47:f4:2f:e1:8d:
                    07:fb:41:ad:43:3d:9b:38:d6:b4:98:49:d0:18:69:72:
                    6c:56:a3:2f:93:fd:6b:c1:8f:9b:4b:43:1a:7a:34:cc:
                    e5:f8:69:4a:ab:2c:ef:0f:f9:28:43:ce:45:8a:a4:8f:
                    67:f8:b0:8d:ab:84:9b:d6:2e:0c:e3:1e:2e:47:96:bc:
                    7c:e6:d6:6b:00:c7:18:7e:f8:5c:24:27:cc:bd:b0:11:
                    1a:95:c8:40:d0:06:41:53:a7:6f:b3:5a:18:24:0f:81:
                    71:16:a7:84:16:4a:e5:00:9c:05:6b:0e:3c:e0:41:a9:
                    14:b7:07:e6:29:2a:dd:34:3d:36:fa:98:30:a2:aa:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ad:66:e3:0d:87:c5:66:b0:a4:e6:00:23:7b:89:ab:c6:
        eb:df:9f:51:2f:f8:3d:76:e3:21:b1:b8:da:15:36:d0:
        78:c4:9b:e2:58:9a:73:18:9f:24:9a:dd:1d:de:fd:1c:
        31:3d:e2:b7:10:b4:28:82:5c:90:d6:23:fd:c3:21:da:
        e1:04:07:66:2c:3c:72:52:05:3e:76:2e:50:21:7e:26:
        95:69:f9:45:8c:1b:59:7e:64:ea:73:fb:a3:67:77:43:
        a6:45:13:a3:b4:f3:2e:6f:57:34:a6:14:10:da:8a:6f:
        5e:d6:9c:b5:c0:b2:9a:83:16:34:02:19:10:2e:04:ef:
        48:70:a7:b1:0e:9e:7f:a7:1d:2c:29:08:34:c1:93:21:
        77:ba:25:cc:ea:71:a1:c6:11:d3:5e:4c:54:15:25:3b:
        75:b2:17:fc:86:37:70:fe:fa:c9:10:43:73:15:01:eb:
        ee:2d:77:e4:5f:c5:15:2e:cf:47:bd:b4:49:2a:ec:d8:
        eb:9b:93:7e:cd:17:6e:9a:ba:d3:43:59:23:64:50:5c:
        30:41:7e:be:40:09:3e:40:80:48:86:50:50:d4:ea:a1:
        fc:fc:35:ef:34:06:3b:e6:d5:28:44:5e:d0:af:fb:4b:
        76:56:be:20:89:6c:48:1c:dd:a6:63:df:a0:ba:34:be
    Fingerprint (SHA-256):
        7C:86:5B:08:F1:43:38:43:10:E1:D0:CE:B1:E8:35:9B:83:88:D7:62:28:B4:C6:5D:61:7C:1B:DF:DE:71:72:AD
    Fingerprint (SHA1):
        A1:54:93:A0:D2:B1:AF:64:30:0A:8D:05:F9:59:68:BE:7C:C4:BD:D3
    Friendly Name: Alice
tools.sh: #8001: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #8002: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #8003: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #8004: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #8005: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 37%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #8006: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #8007: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #8008: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
--> sign.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 37%)
tree "../tools/html" signed successfully
tools.sh: #8009: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #8010: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #8011: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Wed May 10 12:00:44 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Wed May 10 12:00:44 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #8012: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #8013: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      5a1cccc0133c9ae553ad98fd1477c2a715fc46f7   FIPS_PUB_140_Test_Certificate
fips.sh: #8014: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #8015: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #8016: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #8017: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #8018: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #8019: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #8020: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #8021: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #8022: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #8023: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #8024: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      5a1cccc0133c9ae553ad98fd1477c2a715fc46f7   FIPS_PUB_140_Test_Certificate
fips.sh: #8025: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #8026: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #8027: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #8028: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #8029: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      5a1cccc0133c9ae553ad98fd1477c2a715fc46f7   FIPS_PUB_140_Test_Certificate
fips.sh: #8030: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #8031: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #8032: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
mkdir: cannot create directory '/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle': File exists
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so -o -8 -b 5
Changing byte 0x000633b0 (406448): from 20 (32) to 00 (0)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle dbtest -r -d ../fips
fips.sh: #8033: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Wed May 10 12:00:58 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Wed May 10 12:00:58 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #8034: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #8035: CMMF test . - PASSED
TIMESTAMP crmf END: Wed May 10 12:00:58 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Wed May 10 12:00:58 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #8036: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8037: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #8038: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #8039: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #8040: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #8041: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8042: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #8043: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #8044: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #8045: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #8046: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8047: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #8048: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #8049: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #8050: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #8051: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8052: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #8053: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #8054: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #8055: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #8056: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8057: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #8058: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #8059: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #8060: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #8061: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8062: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #8063: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #8064: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #8065: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #8066: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8067: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #8068: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #8069: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #8070: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #8071: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8072: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #8073: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #8074: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #8075: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #8076: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #8077: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #8078: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #8079: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #8080: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #8081: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #8082: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #8083: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #8084: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #8085: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #8086: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #8087: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #8088: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #8089: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #8090: Decode Encrypted-Data . - PASSED
smime.sh: #8091: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #8092: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #8093: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #8094: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #8095: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #8096: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Wed May 10 12:01:02 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Wed May 10 12:01:02 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:02 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12879 >/dev/null 2>/dev/null
selfserv_9323 with PID 12879 found at Wed May 10 12:01:02 UTC 2017
selfserv_9323 with PID 12879 started at Wed May 10 12:01:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8097: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 12879 at Wed May 10 12:01:03 UTC 2017
kill -USR1 12879
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12879 killed at Wed May 10 12:01:03 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12935 >/dev/null 2>/dev/null
selfserv_9323 with PID 12935 found at Wed May 10 12:01:03 UTC 2017
selfserv_9323 with PID 12935 started at Wed May 10 12:01:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8098: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 12935 at Wed May 10 12:01:03 UTC 2017
kill -USR1 12935
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12935 killed at Wed May 10 12:01:03 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12991 >/dev/null 2>/dev/null
selfserv_9323 with PID 12991 found at Wed May 10 12:01:03 UTC 2017
selfserv_9323 with PID 12991 started at Wed May 10 12:01:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8099: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 12991 at Wed May 10 12:01:03 UTC 2017
kill -USR1 12991
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12991 killed at Wed May 10 12:01:03 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13059 >/dev/null 2>/dev/null
selfserv_9323 with PID 13059 found at Wed May 10 12:01:04 UTC 2017
selfserv_9323 with PID 13059 started at Wed May 10 12:01:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8100: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13059 at Wed May 10 12:01:04 UTC 2017
kill -USR1 13059
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13059 killed at Wed May 10 12:01:04 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:04 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13115 >/dev/null 2>/dev/null
selfserv_9323 with PID 13115 found at Wed May 10 12:01:04 UTC 2017
selfserv_9323 with PID 13115 started at Wed May 10 12:01:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8101: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13115 at Wed May 10 12:01:04 UTC 2017
kill -USR1 13115
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13115 killed at Wed May 10 12:01:04 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:04 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13172 >/dev/null 2>/dev/null
selfserv_9323 with PID 13172 found at Wed May 10 12:01:04 UTC 2017
selfserv_9323 with PID 13172 started at Wed May 10 12:01:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8102: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13172 at Wed May 10 12:01:04 UTC 2017
kill -USR1 13172
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13172 killed at Wed May 10 12:01:04 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13240 >/dev/null 2>/dev/null
selfserv_9323 with PID 13240 found at Wed May 10 12:01:05 UTC 2017
selfserv_9323 with PID 13240 started at Wed May 10 12:01:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8103: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 13240 at Wed May 10 12:01:05 UTC 2017
kill -USR1 13240
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13240 killed at Wed May 10 12:01:05 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13296 >/dev/null 2>/dev/null
selfserv_9323 with PID 13296 found at Wed May 10 12:01:05 UTC 2017
selfserv_9323 with PID 13296 started at Wed May 10 12:01:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8104: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13296 at Wed May 10 12:01:05 UTC 2017
kill -USR1 13296
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13296 killed at Wed May 10 12:01:05 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9323 with PID 13352 found at Wed May 10 12:01:05 UTC 2017
selfserv_9323 with PID 13352 started at Wed May 10 12:01:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8105: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 13352 at Wed May 10 12:01:05 UTC 2017
kill -USR1 13352
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13352 killed at Wed May 10 12:01:05 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13421 >/dev/null 2>/dev/null
selfserv_9323 with PID 13421 found at Wed May 10 12:01:06 UTC 2017
selfserv_9323 with PID 13421 started at Wed May 10 12:01:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8106: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 13421 at Wed May 10 12:01:06 UTC 2017
kill -USR1 13421
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13421 killed at Wed May 10 12:01:06 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13477 >/dev/null 2>/dev/null
selfserv_9323 with PID 13477 found at Wed May 10 12:01:06 UTC 2017
selfserv_9323 with PID 13477 started at Wed May 10 12:01:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8107: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 13477 at Wed May 10 12:01:06 UTC 2017
kill -USR1 13477
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13477 killed at Wed May 10 12:01:06 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13533 >/dev/null 2>/dev/null
selfserv_9323 with PID 13533 found at Wed May 10 12:01:06 UTC 2017
selfserv_9323 with PID 13533 started at Wed May 10 12:01:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8108: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 13533 at Wed May 10 12:01:07 UTC 2017
kill -USR1 13533
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13533 killed at Wed May 10 12:01:07 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13601 >/dev/null 2>/dev/null
selfserv_9323 with PID 13601 found at Wed May 10 12:01:07 UTC 2017
selfserv_9323 with PID 13601 started at Wed May 10 12:01:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8109: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 13601 at Wed May 10 12:01:07 UTC 2017
kill -USR1 13601
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13601 killed at Wed May 10 12:01:07 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13657 >/dev/null 2>/dev/null
selfserv_9323 with PID 13657 found at Wed May 10 12:01:07 UTC 2017
selfserv_9323 with PID 13657 started at Wed May 10 12:01:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8110: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 13657 at Wed May 10 12:01:07 UTC 2017
kill -USR1 13657
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13657 killed at Wed May 10 12:01:07 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13713 >/dev/null 2>/dev/null
selfserv_9323 with PID 13713 found at Wed May 10 12:01:07 UTC 2017
selfserv_9323 with PID 13713 started at Wed May 10 12:01:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8111: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 13713 at Wed May 10 12:01:07 UTC 2017
kill -USR1 13713
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13713 killed at Wed May 10 12:01:08 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13781 >/dev/null 2>/dev/null
selfserv_9323 with PID 13781 found at Wed May 10 12:01:08 UTC 2017
selfserv_9323 with PID 13781 started at Wed May 10 12:01:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8112: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 13781 at Wed May 10 12:01:08 UTC 2017
kill -USR1 13781
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13781 killed at Wed May 10 12:01:08 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13837 >/dev/null 2>/dev/null
selfserv_9323 with PID 13837 found at Wed May 10 12:01:08 UTC 2017
selfserv_9323 with PID 13837 started at Wed May 10 12:01:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8113: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13837 at Wed May 10 12:01:08 UTC 2017
kill -USR1 13837
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13837 killed at Wed May 10 12:01:08 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13893 >/dev/null 2>/dev/null
selfserv_9323 with PID 13893 found at Wed May 10 12:01:08 UTC 2017
selfserv_9323 with PID 13893 started at Wed May 10 12:01:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8114: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 13893 at Wed May 10 12:01:08 UTC 2017
kill -USR1 13893
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13893 killed at Wed May 10 12:01:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13961 >/dev/null 2>/dev/null
selfserv_9323 with PID 13961 found at Wed May 10 12:01:09 UTC 2017
selfserv_9323 with PID 13961 started at Wed May 10 12:01:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8115: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 13961 at Wed May 10 12:01:09 UTC 2017
kill -USR1 13961
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13961 killed at Wed May 10 12:01:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14017 >/dev/null 2>/dev/null
selfserv_9323 with PID 14017 found at Wed May 10 12:01:09 UTC 2017
selfserv_9323 with PID 14017 started at Wed May 10 12:01:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8116: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14017 at Wed May 10 12:01:09 UTC 2017
kill -USR1 14017
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14017 killed at Wed May 10 12:01:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14073 >/dev/null 2>/dev/null
selfserv_9323 with PID 14073 found at Wed May 10 12:01:09 UTC 2017
selfserv_9323 with PID 14073 started at Wed May 10 12:01:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8117: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14073 at Wed May 10 12:01:09 UTC 2017
kill -USR1 14073
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14073 killed at Wed May 10 12:01:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14141 >/dev/null 2>/dev/null
selfserv_9323 with PID 14141 found at Wed May 10 12:01:09 UTC 2017
selfserv_9323 with PID 14141 started at Wed May 10 12:01:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8118: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14141 at Wed May 10 12:01:10 UTC 2017
kill -USR1 14141
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14141 killed at Wed May 10 12:01:10 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14197 >/dev/null 2>/dev/null
selfserv_9323 with PID 14197 found at Wed May 10 12:01:10 UTC 2017
selfserv_9323 with PID 14197 started at Wed May 10 12:01:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8119: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14197 at Wed May 10 12:01:10 UTC 2017
kill -USR1 14197
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14197 killed at Wed May 10 12:01:10 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14253 >/dev/null 2>/dev/null
selfserv_9323 with PID 14253 found at Wed May 10 12:01:10 UTC 2017
selfserv_9323 with PID 14253 started at Wed May 10 12:01:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8120: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14253 at Wed May 10 12:01:10 UTC 2017
kill -USR1 14253
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14253 killed at Wed May 10 12:01:10 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14321 >/dev/null 2>/dev/null
selfserv_9323 with PID 14321 found at Wed May 10 12:01:10 UTC 2017
selfserv_9323 with PID 14321 started at Wed May 10 12:01:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8121: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 14321 at Wed May 10 12:01:10 UTC 2017
kill -USR1 14321
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14321 killed at Wed May 10 12:01:10 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14377 >/dev/null 2>/dev/null
selfserv_9323 with PID 14377 found at Wed May 10 12:01:10 UTC 2017
selfserv_9323 with PID 14377 started at Wed May 10 12:01:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8122: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14377 at Wed May 10 12:01:11 UTC 2017
kill -USR1 14377
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14377 killed at Wed May 10 12:01:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:11 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14433 >/dev/null 2>/dev/null
selfserv_9323 with PID 14433 found at Wed May 10 12:01:11 UTC 2017
selfserv_9323 with PID 14433 started at Wed May 10 12:01:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8123: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 14433 at Wed May 10 12:01:11 UTC 2017
kill -USR1 14433
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14433 killed at Wed May 10 12:01:11 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:11 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14501 >/dev/null 2>/dev/null
selfserv_9323 with PID 14501 found at Wed May 10 12:01:11 UTC 2017
selfserv_9323 with PID 14501 started at Wed May 10 12:01:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8124: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 14501 at Wed May 10 12:01:11 UTC 2017
kill -USR1 14501
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14501 killed at Wed May 10 12:01:11 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:11 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14557 >/dev/null 2>/dev/null
selfserv_9323 with PID 14557 found at Wed May 10 12:01:11 UTC 2017
selfserv_9323 with PID 14557 started at Wed May 10 12:01:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8125: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 14557 at Wed May 10 12:01:12 UTC 2017
kill -USR1 14557
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14557 killed at Wed May 10 12:01:12 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:12 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14613 >/dev/null 2>/dev/null
selfserv_9323 with PID 14613 found at Wed May 10 12:01:12 UTC 2017
selfserv_9323 with PID 14613 started at Wed May 10 12:01:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8126: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 14613 at Wed May 10 12:01:12 UTC 2017
kill -USR1 14613
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14613 killed at Wed May 10 12:01:12 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:12 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14681 >/dev/null 2>/dev/null
selfserv_9323 with PID 14681 found at Wed May 10 12:01:12 UTC 2017
selfserv_9323 with PID 14681 started at Wed May 10 12:01:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8127: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 14681 at Wed May 10 12:01:12 UTC 2017
kill -USR1 14681
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14681 killed at Wed May 10 12:01:12 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:12 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14737 >/dev/null 2>/dev/null
selfserv_9323 with PID 14737 found at Wed May 10 12:01:12 UTC 2017
selfserv_9323 with PID 14737 started at Wed May 10 12:01:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8128: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 14737 at Wed May 10 12:01:12 UTC 2017
kill -USR1 14737
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14737 killed at Wed May 10 12:01:12 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:12 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14793 >/dev/null 2>/dev/null
selfserv_9323 with PID 14793 found at Wed May 10 12:01:13 UTC 2017
selfserv_9323 with PID 14793 started at Wed May 10 12:01:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8129: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 14793 at Wed May 10 12:01:13 UTC 2017
kill -USR1 14793
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14793 killed at Wed May 10 12:01:13 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14861 >/dev/null 2>/dev/null
selfserv_9323 with PID 14861 found at Wed May 10 12:01:13 UTC 2017
selfserv_9323 with PID 14861 started at Wed May 10 12:01:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8130: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 14861 at Wed May 10 12:01:13 UTC 2017
kill -USR1 14861
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14861 killed at Wed May 10 12:01:13 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14917 >/dev/null 2>/dev/null
selfserv_9323 with PID 14917 found at Wed May 10 12:01:13 UTC 2017
selfserv_9323 with PID 14917 started at Wed May 10 12:01:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8131: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 14917 at Wed May 10 12:01:13 UTC 2017
kill -USR1 14917
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14917 killed at Wed May 10 12:01:13 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14973 >/dev/null 2>/dev/null
selfserv_9323 with PID 14973 found at Wed May 10 12:01:13 UTC 2017
selfserv_9323 with PID 14973 started at Wed May 10 12:01:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8132: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 14973 at Wed May 10 12:01:14 UTC 2017
kill -USR1 14973
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14973 killed at Wed May 10 12:01:14 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:14 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15041 >/dev/null 2>/dev/null
selfserv_9323 with PID 15041 found at Wed May 10 12:01:14 UTC 2017
selfserv_9323 with PID 15041 started at Wed May 10 12:01:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8133: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15041 at Wed May 10 12:01:14 UTC 2017
kill -USR1 15041
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15041 killed at Wed May 10 12:01:14 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:14 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15097 >/dev/null 2>/dev/null
selfserv_9323 with PID 15097 found at Wed May 10 12:01:14 UTC 2017
selfserv_9323 with PID 15097 started at Wed May 10 12:01:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8134: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15097 at Wed May 10 12:01:14 UTC 2017
kill -USR1 15097
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15097 killed at Wed May 10 12:01:14 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:14 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15153 >/dev/null 2>/dev/null
selfserv_9323 with PID 15153 found at Wed May 10 12:01:14 UTC 2017
selfserv_9323 with PID 15153 started at Wed May 10 12:01:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8135: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15153 at Wed May 10 12:01:15 UTC 2017
kill -USR1 15153
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15153 killed at Wed May 10 12:01:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:15 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15221 >/dev/null 2>/dev/null
selfserv_9323 with PID 15221 found at Wed May 10 12:01:15 UTC 2017
selfserv_9323 with PID 15221 started at Wed May 10 12:01:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8136: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15221 at Wed May 10 12:01:15 UTC 2017
kill -USR1 15221
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15221 killed at Wed May 10 12:01:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:15 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15277 >/dev/null 2>/dev/null
selfserv_9323 with PID 15277 found at Wed May 10 12:01:15 UTC 2017
selfserv_9323 with PID 15277 started at Wed May 10 12:01:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8137: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15277 at Wed May 10 12:01:15 UTC 2017
kill -USR1 15277
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15277 killed at Wed May 10 12:01:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:15 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15334 >/dev/null 2>/dev/null
selfserv_9323 with PID 15334 found at Wed May 10 12:01:15 UTC 2017
selfserv_9323 with PID 15334 started at Wed May 10 12:01:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8138: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15334 at Wed May 10 12:01:16 UTC 2017
kill -USR1 15334
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15334 killed at Wed May 10 12:01:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:16 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15402 >/dev/null 2>/dev/null
selfserv_9323 with PID 15402 found at Wed May 10 12:01:16 UTC 2017
selfserv_9323 with PID 15402 started at Wed May 10 12:01:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8139: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15402 at Wed May 10 12:01:16 UTC 2017
kill -USR1 15402
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15402 killed at Wed May 10 12:01:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:16 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15458 >/dev/null 2>/dev/null
selfserv_9323 with PID 15458 found at Wed May 10 12:01:16 UTC 2017
selfserv_9323 with PID 15458 started at Wed May 10 12:01:16 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8140: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15458 at Wed May 10 12:01:16 UTC 2017
kill -USR1 15458
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15458 killed at Wed May 10 12:01:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:17 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:17 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15514 >/dev/null 2>/dev/null
selfserv_9323 with PID 15514 found at Wed May 10 12:01:17 UTC 2017
selfserv_9323 with PID 15514 started at Wed May 10 12:01:17 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8141: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15514 at Wed May 10 12:01:17 UTC 2017
kill -USR1 15514
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15514 killed at Wed May 10 12:01:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:17 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:17 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15582 >/dev/null 2>/dev/null
selfserv_9323 with PID 15582 found at Wed May 10 12:01:17 UTC 2017
selfserv_9323 with PID 15582 started at Wed May 10 12:01:17 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8142: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15582 at Wed May 10 12:01:17 UTC 2017
kill -USR1 15582
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15582 killed at Wed May 10 12:01:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:17 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:17 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15638 >/dev/null 2>/dev/null
selfserv_9323 with PID 15638 found at Wed May 10 12:01:17 UTC 2017
selfserv_9323 with PID 15638 started at Wed May 10 12:01:17 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8143: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15638 at Wed May 10 12:01:18 UTC 2017
kill -USR1 15638
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15638 killed at Wed May 10 12:01:18 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:18 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:18 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15694 >/dev/null 2>/dev/null
selfserv_9323 with PID 15694 found at Wed May 10 12:01:18 UTC 2017
selfserv_9323 with PID 15694 started at Wed May 10 12:01:18 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8144: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15694 at Wed May 10 12:01:18 UTC 2017
kill -USR1 15694
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15694 killed at Wed May 10 12:01:18 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:18 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:18 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15762 >/dev/null 2>/dev/null
selfserv_9323 with PID 15762 found at Wed May 10 12:01:18 UTC 2017
selfserv_9323 with PID 15762 started at Wed May 10 12:01:18 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8145: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15762 at Wed May 10 12:01:18 UTC 2017
kill -USR1 15762
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15762 killed at Wed May 10 12:01:18 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:18 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:18 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15818 >/dev/null 2>/dev/null
selfserv_9323 with PID 15818 found at Wed May 10 12:01:18 UTC 2017
selfserv_9323 with PID 15818 started at Wed May 10 12:01:18 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8146: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15818 at Wed May 10 12:01:19 UTC 2017
kill -USR1 15818
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15818 killed at Wed May 10 12:01:19 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:19 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15874 >/dev/null 2>/dev/null
selfserv_9323 with PID 15874 found at Wed May 10 12:01:19 UTC 2017
selfserv_9323 with PID 15874 started at Wed May 10 12:01:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8147: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15874 at Wed May 10 12:01:19 UTC 2017
kill -USR1 15874
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15874 killed at Wed May 10 12:01:19 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:19 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15942 >/dev/null 2>/dev/null
selfserv_9323 with PID 15942 found at Wed May 10 12:01:19 UTC 2017
selfserv_9323 with PID 15942 started at Wed May 10 12:01:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8148: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15942 at Wed May 10 12:01:19 UTC 2017
kill -USR1 15942
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15942 killed at Wed May 10 12:01:19 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:19 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15998 >/dev/null 2>/dev/null
selfserv_9323 with PID 15998 found at Wed May 10 12:01:19 UTC 2017
selfserv_9323 with PID 15998 started at Wed May 10 12:01:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8149: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 15998 at Wed May 10 12:01:20 UTC 2017
kill -USR1 15998
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15998 killed at Wed May 10 12:01:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:20 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:20 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16055 >/dev/null 2>/dev/null
selfserv_9323 with PID 16055 found at Wed May 10 12:01:20 UTC 2017
selfserv_9323 with PID 16055 started at Wed May 10 12:01:20 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8150: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16055 at Wed May 10 12:01:20 UTC 2017
kill -USR1 16055
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16055 killed at Wed May 10 12:01:20 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:20 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:20 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16123 >/dev/null 2>/dev/null
selfserv_9323 with PID 16123 found at Wed May 10 12:01:20 UTC 2017
selfserv_9323 with PID 16123 started at Wed May 10 12:01:20 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8151: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16123 at Wed May 10 12:01:20 UTC 2017
kill -USR1 16123
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16123 killed at Wed May 10 12:01:20 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:20 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:20 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16179 >/dev/null 2>/dev/null
selfserv_9323 with PID 16179 found at Wed May 10 12:01:20 UTC 2017
selfserv_9323 with PID 16179 started at Wed May 10 12:01:20 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8152: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16179 at Wed May 10 12:01:21 UTC 2017
kill -USR1 16179
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16179 killed at Wed May 10 12:01:21 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16235 >/dev/null 2>/dev/null
selfserv_9323 with PID 16235 found at Wed May 10 12:01:21 UTC 2017
selfserv_9323 with PID 16235 started at Wed May 10 12:01:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8153: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16235 at Wed May 10 12:01:21 UTC 2017
kill -USR1 16235
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16235 killed at Wed May 10 12:01:21 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16303 >/dev/null 2>/dev/null
selfserv_9323 with PID 16303 found at Wed May 10 12:01:21 UTC 2017
selfserv_9323 with PID 16303 started at Wed May 10 12:01:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8154: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16303 at Wed May 10 12:01:22 UTC 2017
kill -USR1 16303
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16303 killed at Wed May 10 12:01:22 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:22 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16360 >/dev/null 2>/dev/null
selfserv_9323 with PID 16360 found at Wed May 10 12:01:22 UTC 2017
selfserv_9323 with PID 16360 started at Wed May 10 12:01:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8155: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16360 at Wed May 10 12:01:22 UTC 2017
kill -USR1 16360
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16360 killed at Wed May 10 12:01:22 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:22 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16416 >/dev/null 2>/dev/null
selfserv_9323 with PID 16416 found at Wed May 10 12:01:22 UTC 2017
selfserv_9323 with PID 16416 started at Wed May 10 12:01:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8156: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16416 at Wed May 10 12:01:22 UTC 2017
kill -USR1 16416
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16416 killed at Wed May 10 12:01:22 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:22 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16484 >/dev/null 2>/dev/null
selfserv_9323 with PID 16484 found at Wed May 10 12:01:22 UTC 2017
selfserv_9323 with PID 16484 started at Wed May 10 12:01:22 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8157: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16484 at Wed May 10 12:01:23 UTC 2017
kill -USR1 16484
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16484 killed at Wed May 10 12:01:23 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:23 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16540 >/dev/null 2>/dev/null
selfserv_9323 with PID 16540 found at Wed May 10 12:01:23 UTC 2017
selfserv_9323 with PID 16540 started at Wed May 10 12:01:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8158: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 16540 at Wed May 10 12:01:23 UTC 2017
kill -USR1 16540
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16540 killed at Wed May 10 12:01:23 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:23 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16597 >/dev/null 2>/dev/null
selfserv_9323 with PID 16597 found at Wed May 10 12:01:23 UTC 2017
selfserv_9323 with PID 16597 started at Wed May 10 12:01:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8159: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16597 at Wed May 10 12:01:23 UTC 2017
kill -USR1 16597
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16597 killed at Wed May 10 12:01:23 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:23 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16665 >/dev/null 2>/dev/null
selfserv_9323 with PID 16665 found at Wed May 10 12:01:23 UTC 2017
selfserv_9323 with PID 16665 started at Wed May 10 12:01:23 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8160: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16665 at Wed May 10 12:01:24 UTC 2017
kill -USR1 16665
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16665 killed at Wed May 10 12:01:24 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:24 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16721 >/dev/null 2>/dev/null
selfserv_9323 with PID 16721 found at Wed May 10 12:01:24 UTC 2017
selfserv_9323 with PID 16721 started at Wed May 10 12:01:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8161: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16721 at Wed May 10 12:01:24 UTC 2017
kill -USR1 16721
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16721 killed at Wed May 10 12:01:24 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:24 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16777 >/dev/null 2>/dev/null
selfserv_9323 with PID 16777 found at Wed May 10 12:01:24 UTC 2017
selfserv_9323 with PID 16777 started at Wed May 10 12:01:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8162: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16777 at Wed May 10 12:01:24 UTC 2017
kill -USR1 16777
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16777 killed at Wed May 10 12:01:24 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:24 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16845 >/dev/null 2>/dev/null
selfserv_9323 with PID 16845 found at Wed May 10 12:01:24 UTC 2017
selfserv_9323 with PID 16845 started at Wed May 10 12:01:24 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8163: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16845 at Wed May 10 12:01:25 UTC 2017
kill -USR1 16845
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16845 killed at Wed May 10 12:01:25 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:25 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16901 >/dev/null 2>/dev/null
selfserv_9323 with PID 16901 found at Wed May 10 12:01:25 UTC 2017
selfserv_9323 with PID 16901 started at Wed May 10 12:01:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8164: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16901 at Wed May 10 12:01:25 UTC 2017
kill -USR1 16901
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16901 killed at Wed May 10 12:01:25 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:25 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16957 >/dev/null 2>/dev/null
selfserv_9323 with PID 16957 found at Wed May 10 12:01:25 UTC 2017
selfserv_9323 with PID 16957 started at Wed May 10 12:01:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8165: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16957 at Wed May 10 12:01:25 UTC 2017
kill -USR1 16957
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16957 killed at Wed May 10 12:01:25 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:25 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17025 >/dev/null 2>/dev/null
selfserv_9323 with PID 17025 found at Wed May 10 12:01:25 UTC 2017
selfserv_9323 with PID 17025 started at Wed May 10 12:01:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8166: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17025 at Wed May 10 12:01:26 UTC 2017
kill -USR1 17025
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17025 killed at Wed May 10 12:01:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17081 >/dev/null 2>/dev/null
selfserv_9323 with PID 17081 found at Wed May 10 12:01:26 UTC 2017
selfserv_9323 with PID 17081 started at Wed May 10 12:01:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8167: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 17081 at Wed May 10 12:01:26 UTC 2017
kill -USR1 17081
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17081 killed at Wed May 10 12:01:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17137 >/dev/null 2>/dev/null
selfserv_9323 with PID 17137 found at Wed May 10 12:01:26 UTC 2017
selfserv_9323 with PID 17137 started at Wed May 10 12:01:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8168: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17137 at Wed May 10 12:01:26 UTC 2017
kill -USR1 17137
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17137 killed at Wed May 10 12:01:26 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17205 >/dev/null 2>/dev/null
selfserv_9323 with PID 17205 found at Wed May 10 12:01:27 UTC 2017
selfserv_9323 with PID 17205 started at Wed May 10 12:01:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8169: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 17205 at Wed May 10 12:01:27 UTC 2017
kill -USR1 17205
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17205 killed at Wed May 10 12:01:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17261 >/dev/null 2>/dev/null
selfserv_9323 with PID 17261 found at Wed May 10 12:01:27 UTC 2017
selfserv_9323 with PID 17261 started at Wed May 10 12:01:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8170: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 17261 at Wed May 10 12:01:27 UTC 2017
kill -USR1 17261
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17261 killed at Wed May 10 12:01:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17317 >/dev/null 2>/dev/null
selfserv_9323 with PID 17317 found at Wed May 10 12:01:27 UTC 2017
selfserv_9323 with PID 17317 started at Wed May 10 12:01:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8171: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 17317 at Wed May 10 12:01:27 UTC 2017
kill -USR1 17317
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17317 killed at Wed May 10 12:01:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17385 >/dev/null 2>/dev/null
selfserv_9323 with PID 17385 found at Wed May 10 12:01:27 UTC 2017
selfserv_9323 with PID 17385 started at Wed May 10 12:01:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8172: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 17385 at Wed May 10 12:01:28 UTC 2017
kill -USR1 17385
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17385 killed at Wed May 10 12:01:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:28 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17441 >/dev/null 2>/dev/null
selfserv_9323 with PID 17441 found at Wed May 10 12:01:28 UTC 2017
selfserv_9323 with PID 17441 started at Wed May 10 12:01:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8173: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 17441 at Wed May 10 12:01:28 UTC 2017
kill -USR1 17441
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17441 killed at Wed May 10 12:01:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:28 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17497 >/dev/null 2>/dev/null
selfserv_9323 with PID 17497 found at Wed May 10 12:01:28 UTC 2017
selfserv_9323 with PID 17497 started at Wed May 10 12:01:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8174: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 17497 at Wed May 10 12:01:28 UTC 2017
kill -USR1 17497
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17497 killed at Wed May 10 12:01:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:28 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17565 >/dev/null 2>/dev/null
selfserv_9323 with PID 17565 found at Wed May 10 12:01:28 UTC 2017
selfserv_9323 with PID 17565 started at Wed May 10 12:01:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8175: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17565 at Wed May 10 12:01:29 UTC 2017
kill -USR1 17565
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17565 killed at Wed May 10 12:01:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:29 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17621 >/dev/null 2>/dev/null
selfserv_9323 with PID 17621 found at Wed May 10 12:01:29 UTC 2017
selfserv_9323 with PID 17621 started at Wed May 10 12:01:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8176: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 17621 at Wed May 10 12:01:29 UTC 2017
kill -USR1 17621
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17621 killed at Wed May 10 12:01:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:29 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17677 >/dev/null 2>/dev/null
selfserv_9323 with PID 17677 found at Wed May 10 12:01:29 UTC 2017
selfserv_9323 with PID 17677 started at Wed May 10 12:01:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8177: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17677 at Wed May 10 12:01:29 UTC 2017
kill -USR1 17677
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17677 killed at Wed May 10 12:01:29 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:30 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17745 >/dev/null 2>/dev/null
selfserv_9323 with PID 17745 found at Wed May 10 12:01:30 UTC 2017
selfserv_9323 with PID 17745 started at Wed May 10 12:01:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8178: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17745 at Wed May 10 12:01:30 UTC 2017
kill -USR1 17745
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17745 killed at Wed May 10 12:01:30 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:30 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17801 >/dev/null 2>/dev/null
selfserv_9323 with PID 17801 found at Wed May 10 12:01:30 UTC 2017
selfserv_9323 with PID 17801 started at Wed May 10 12:01:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8179: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17801 at Wed May 10 12:01:30 UTC 2017
kill -USR1 17801
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17801 killed at Wed May 10 12:01:30 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:01:30 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17857 >/dev/null 2>/dev/null
selfserv_9323 with PID 17857 found at Wed May 10 12:01:30 UTC 2017
selfserv_9323 with PID 17857 started at Wed May 10 12:01:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8180: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17857 at Wed May 10 12:01:30 UTC 2017
kill -USR1 17857
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17857 killed at Wed May 10 12:01:30 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:30 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17925 >/dev/null 2>/dev/null
selfserv_9323 with PID 17925 found at Wed May 10 12:01:31 UTC 2017
selfserv_9323 with PID 17925 started at Wed May 10 12:01:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8181: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17925 at Wed May 10 12:01:31 UTC 2017
kill -USR1 17925
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17925 killed at Wed May 10 12:01:31 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17981 >/dev/null 2>/dev/null
selfserv_9323 with PID 17981 found at Wed May 10 12:01:31 UTC 2017
selfserv_9323 with PID 17981 started at Wed May 10 12:01:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8182: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 17981 at Wed May 10 12:01:31 UTC 2017
kill -USR1 17981
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 17981 killed at Wed May 10 12:01:31 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18037 >/dev/null 2>/dev/null
selfserv_9323 with PID 18037 found at Wed May 10 12:01:31 UTC 2017
selfserv_9323 with PID 18037 started at Wed May 10 12:01:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8183: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 18037 at Wed May 10 12:01:31 UTC 2017
kill -USR1 18037
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18037 killed at Wed May 10 12:01:31 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18105 >/dev/null 2>/dev/null
selfserv_9323 with PID 18105 found at Wed May 10 12:01:31 UTC 2017
selfserv_9323 with PID 18105 started at Wed May 10 12:01:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8184: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 18105 at Wed May 10 12:01:32 UTC 2017
kill -USR1 18105
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18105 killed at Wed May 10 12:01:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18161 >/dev/null 2>/dev/null
selfserv_9323 with PID 18161 found at Wed May 10 12:01:32 UTC 2017
selfserv_9323 with PID 18161 started at Wed May 10 12:01:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8185: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 18161 at Wed May 10 12:01:32 UTC 2017
kill -USR1 18161
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18161 killed at Wed May 10 12:01:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18217 >/dev/null 2>/dev/null
selfserv_9323 with PID 18217 found at Wed May 10 12:01:32 UTC 2017
selfserv_9323 with PID 18217 started at Wed May 10 12:01:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8186: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 18217 at Wed May 10 12:01:32 UTC 2017
kill -USR1 18217
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18217 killed at Wed May 10 12:01:32 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18294 >/dev/null 2>/dev/null
selfserv_9323 with PID 18294 found at Wed May 10 12:01:32 UTC 2017
selfserv_9323 with PID 18294 started at Wed May 10 12:01:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8187: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 18294 at Wed May 10 12:01:33 UTC 2017
kill -USR1 18294
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18294 killed at Wed May 10 12:01:33 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18350 >/dev/null 2>/dev/null
selfserv_9323 with PID 18350 found at Wed May 10 12:01:33 UTC 2017
selfserv_9323 with PID 18350 started at Wed May 10 12:01:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8188: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 18350 at Wed May 10 12:01:33 UTC 2017
kill -USR1 18350
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18350 killed at Wed May 10 12:01:33 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18406 >/dev/null 2>/dev/null
selfserv_9323 with PID 18406 found at Wed May 10 12:01:33 UTC 2017
selfserv_9323 with PID 18406 started at Wed May 10 12:01:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8189: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 18406 at Wed May 10 12:01:33 UTC 2017
kill -USR1 18406
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18406 killed at Wed May 10 12:01:33 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18474 >/dev/null 2>/dev/null
selfserv_9323 with PID 18474 found at Wed May 10 12:01:33 UTC 2017
selfserv_9323 with PID 18474 started at Wed May 10 12:01:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8190: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 18474 at Wed May 10 12:01:34 UTC 2017
kill -USR1 18474
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18474 killed at Wed May 10 12:01:34 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18530 >/dev/null 2>/dev/null
selfserv_9323 with PID 18530 found at Wed May 10 12:01:34 UTC 2017
selfserv_9323 with PID 18530 started at Wed May 10 12:01:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8191: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 18530 at Wed May 10 12:01:34 UTC 2017
kill -USR1 18530
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18530 killed at Wed May 10 12:01:34 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18586 >/dev/null 2>/dev/null
selfserv_9323 with PID 18586 found at Wed May 10 12:01:34 UTC 2017
selfserv_9323 with PID 18586 started at Wed May 10 12:01:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8192: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 18586 at Wed May 10 12:01:34 UTC 2017
kill -USR1 18586
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18586 killed at Wed May 10 12:01:35 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18654 >/dev/null 2>/dev/null
selfserv_9323 with PID 18654 found at Wed May 10 12:01:35 UTC 2017
selfserv_9323 with PID 18654 started at Wed May 10 12:01:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8193: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 18654 at Wed May 10 12:01:35 UTC 2017
kill -USR1 18654
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18654 killed at Wed May 10 12:01:35 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18710 >/dev/null 2>/dev/null
selfserv_9323 with PID 18710 found at Wed May 10 12:01:35 UTC 2017
selfserv_9323 with PID 18710 started at Wed May 10 12:01:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8194: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 18710 at Wed May 10 12:01:35 UTC 2017
kill -USR1 18710
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18710 killed at Wed May 10 12:01:35 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18766 >/dev/null 2>/dev/null
selfserv_9323 with PID 18766 found at Wed May 10 12:01:35 UTC 2017
selfserv_9323 with PID 18766 started at Wed May 10 12:01:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8195: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 18766 at Wed May 10 12:01:35 UTC 2017
kill -USR1 18766
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18766 killed at Wed May 10 12:01:35 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18834 >/dev/null 2>/dev/null
selfserv_9323 with PID 18834 found at Wed May 10 12:01:36 UTC 2017
selfserv_9323 with PID 18834 started at Wed May 10 12:01:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8196: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 18834 at Wed May 10 12:01:36 UTC 2017
kill -USR1 18834
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18834 killed at Wed May 10 12:01:36 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18890 >/dev/null 2>/dev/null
selfserv_9323 with PID 18890 found at Wed May 10 12:01:36 UTC 2017
selfserv_9323 with PID 18890 started at Wed May 10 12:01:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8197: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 18890 at Wed May 10 12:01:36 UTC 2017
kill -USR1 18890
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18890 killed at Wed May 10 12:01:36 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18946 >/dev/null 2>/dev/null
selfserv_9323 with PID 18946 found at Wed May 10 12:01:36 UTC 2017
selfserv_9323 with PID 18946 started at Wed May 10 12:01:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8198: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 18946 at Wed May 10 12:01:37 UTC 2017
kill -USR1 18946
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18946 killed at Wed May 10 12:01:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19014 >/dev/null 2>/dev/null
selfserv_9323 with PID 19014 found at Wed May 10 12:01:37 UTC 2017
selfserv_9323 with PID 19014 started at Wed May 10 12:01:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8199: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 19014 at Wed May 10 12:01:37 UTC 2017
kill -USR1 19014
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19014 killed at Wed May 10 12:01:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19070 >/dev/null 2>/dev/null
selfserv_9323 with PID 19070 found at Wed May 10 12:01:37 UTC 2017
selfserv_9323 with PID 19070 started at Wed May 10 12:01:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8200: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 19070 at Wed May 10 12:01:37 UTC 2017
kill -USR1 19070
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19070 killed at Wed May 10 12:01:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19126 >/dev/null 2>/dev/null
selfserv_9323 with PID 19126 found at Wed May 10 12:01:37 UTC 2017
selfserv_9323 with PID 19126 started at Wed May 10 12:01:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8201: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 19126 at Wed May 10 12:01:37 UTC 2017
kill -USR1 19126
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19126 killed at Wed May 10 12:01:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19194 >/dev/null 2>/dev/null
selfserv_9323 with PID 19194 found at Wed May 10 12:01:38 UTC 2017
selfserv_9323 with PID 19194 started at Wed May 10 12:01:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8202: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 19194 at Wed May 10 12:01:38 UTC 2017
kill -USR1 19194
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19194 killed at Wed May 10 12:01:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19250 >/dev/null 2>/dev/null
selfserv_9323 with PID 19250 found at Wed May 10 12:01:38 UTC 2017
selfserv_9323 with PID 19250 started at Wed May 10 12:01:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8203: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 19250 at Wed May 10 12:01:38 UTC 2017
kill -USR1 19250
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19250 killed at Wed May 10 12:01:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19306 >/dev/null 2>/dev/null
selfserv_9323 with PID 19306 found at Wed May 10 12:01:38 UTC 2017
selfserv_9323 with PID 19306 started at Wed May 10 12:01:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8204: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 19306 at Wed May 10 12:01:39 UTC 2017
kill -USR1 19306
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19306 killed at Wed May 10 12:01:39 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19374 >/dev/null 2>/dev/null
selfserv_9323 with PID 19374 found at Wed May 10 12:01:39 UTC 2017
selfserv_9323 with PID 19374 started at Wed May 10 12:01:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8205: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 19374 at Wed May 10 12:01:39 UTC 2017
kill -USR1 19374
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19374 killed at Wed May 10 12:01:39 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9323 with PID 19432 found at Wed May 10 12:01:39 UTC 2017
selfserv_9323 with PID 19432 started at Wed May 10 12:01:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8206: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 19432 at Wed May 10 12:01:39 UTC 2017
kill -USR1 19432
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19432 killed at Wed May 10 12:01:39 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19488 >/dev/null 2>/dev/null
selfserv_9323 with PID 19488 found at Wed May 10 12:01:39 UTC 2017
selfserv_9323 with PID 19488 started at Wed May 10 12:01:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8207: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 19488 at Wed May 10 12:01:39 UTC 2017
kill -USR1 19488
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19488 killed at Wed May 10 12:01:39 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19556 >/dev/null 2>/dev/null
selfserv_9323 with PID 19556 found at Wed May 10 12:01:40 UTC 2017
selfserv_9323 with PID 19556 started at Wed May 10 12:01:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8208: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 19556 at Wed May 10 12:01:40 UTC 2017
kill -USR1 19556
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19556 killed at Wed May 10 12:01:40 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19612 >/dev/null 2>/dev/null
selfserv_9323 with PID 19612 found at Wed May 10 12:01:40 UTC 2017
selfserv_9323 with PID 19612 started at Wed May 10 12:01:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8209: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 19612 at Wed May 10 12:01:40 UTC 2017
kill -USR1 19612
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19612 killed at Wed May 10 12:01:40 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19668 >/dev/null 2>/dev/null
selfserv_9323 with PID 19668 found at Wed May 10 12:01:40 UTC 2017
selfserv_9323 with PID 19668 started at Wed May 10 12:01:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8210: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 19668 at Wed May 10 12:01:40 UTC 2017
kill -USR1 19668
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19668 killed at Wed May 10 12:01:40 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19736 >/dev/null 2>/dev/null
selfserv_9323 with PID 19736 found at Wed May 10 12:01:41 UTC 2017
selfserv_9323 with PID 19736 started at Wed May 10 12:01:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8211: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 19736 at Wed May 10 12:01:41 UTC 2017
kill -USR1 19736
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19736 killed at Wed May 10 12:01:41 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19792 >/dev/null 2>/dev/null
selfserv_9323 with PID 19792 found at Wed May 10 12:01:41 UTC 2017
selfserv_9323 with PID 19792 started at Wed May 10 12:01:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8212: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 19792 at Wed May 10 12:01:41 UTC 2017
kill -USR1 19792
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19792 killed at Wed May 10 12:01:41 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19848 >/dev/null 2>/dev/null
selfserv_9323 with PID 19848 found at Wed May 10 12:01:41 UTC 2017
selfserv_9323 with PID 19848 started at Wed May 10 12:01:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8213: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 19848 at Wed May 10 12:01:42 UTC 2017
kill -USR1 19848
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19848 killed at Wed May 10 12:01:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19916 >/dev/null 2>/dev/null
selfserv_9323 with PID 19916 found at Wed May 10 12:01:42 UTC 2017
selfserv_9323 with PID 19916 started at Wed May 10 12:01:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8214: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 19916 at Wed May 10 12:01:42 UTC 2017
kill -USR1 19916
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19916 killed at Wed May 10 12:01:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19972 >/dev/null 2>/dev/null
selfserv_9323 with PID 19972 found at Wed May 10 12:01:42 UTC 2017
selfserv_9323 with PID 19972 started at Wed May 10 12:01:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8215: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 19972 at Wed May 10 12:01:42 UTC 2017
kill -USR1 19972
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19972 killed at Wed May 10 12:01:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20028 >/dev/null 2>/dev/null
selfserv_9323 with PID 20028 found at Wed May 10 12:01:42 UTC 2017
selfserv_9323 with PID 20028 started at Wed May 10 12:01:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8216: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 20028 at Wed May 10 12:01:43 UTC 2017
kill -USR1 20028
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20028 killed at Wed May 10 12:01:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20096 >/dev/null 2>/dev/null
selfserv_9323 with PID 20096 found at Wed May 10 12:01:43 UTC 2017
selfserv_9323 with PID 20096 started at Wed May 10 12:01:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8217: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 20096 at Wed May 10 12:01:43 UTC 2017
kill -USR1 20096
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20096 killed at Wed May 10 12:01:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20152 >/dev/null 2>/dev/null
selfserv_9323 with PID 20152 found at Wed May 10 12:01:43 UTC 2017
selfserv_9323 with PID 20152 started at Wed May 10 12:01:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8218: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 20152 at Wed May 10 12:01:43 UTC 2017
kill -USR1 20152
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20152 killed at Wed May 10 12:01:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20208 >/dev/null 2>/dev/null
selfserv_9323 with PID 20208 found at Wed May 10 12:01:43 UTC 2017
selfserv_9323 with PID 20208 started at Wed May 10 12:01:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8219: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 20208 at Wed May 10 12:01:44 UTC 2017
kill -USR1 20208
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20208 killed at Wed May 10 12:01:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20276 >/dev/null 2>/dev/null
selfserv_9323 with PID 20276 found at Wed May 10 12:01:44 UTC 2017
selfserv_9323 with PID 20276 started at Wed May 10 12:01:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8220: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 20276 at Wed May 10 12:01:44 UTC 2017
kill -USR1 20276
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20276 killed at Wed May 10 12:01:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20332 >/dev/null 2>/dev/null
selfserv_9323 with PID 20332 found at Wed May 10 12:01:44 UTC 2017
selfserv_9323 with PID 20332 started at Wed May 10 12:01:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8221: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 20332 at Wed May 10 12:01:44 UTC 2017
kill -USR1 20332
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20332 killed at Wed May 10 12:01:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20388 >/dev/null 2>/dev/null
selfserv_9323 with PID 20388 found at Wed May 10 12:01:45 UTC 2017
selfserv_9323 with PID 20388 started at Wed May 10 12:01:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8222: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 20388 at Wed May 10 12:01:45 UTC 2017
kill -USR1 20388
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20388 killed at Wed May 10 12:01:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20456 >/dev/null 2>/dev/null
selfserv_9323 with PID 20456 found at Wed May 10 12:01:45 UTC 2017
selfserv_9323 with PID 20456 started at Wed May 10 12:01:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8223: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 20456 at Wed May 10 12:01:45 UTC 2017
kill -USR1 20456
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20456 killed at Wed May 10 12:01:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20512 >/dev/null 2>/dev/null
selfserv_9323 with PID 20512 found at Wed May 10 12:01:45 UTC 2017
selfserv_9323 with PID 20512 started at Wed May 10 12:01:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8224: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 20512 at Wed May 10 12:01:46 UTC 2017
kill -USR1 20512
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20512 killed at Wed May 10 12:01:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20568 >/dev/null 2>/dev/null
selfserv_9323 with PID 20568 found at Wed May 10 12:01:46 UTC 2017
selfserv_9323 with PID 20568 started at Wed May 10 12:01:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8225: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 20568 at Wed May 10 12:01:46 UTC 2017
kill -USR1 20568
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20568 killed at Wed May 10 12:01:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20636 >/dev/null 2>/dev/null
selfserv_9323 with PID 20636 found at Wed May 10 12:01:46 UTC 2017
selfserv_9323 with PID 20636 started at Wed May 10 12:01:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8226: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 20636 at Wed May 10 12:01:46 UTC 2017
kill -USR1 20636
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20636 killed at Wed May 10 12:01:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20692 >/dev/null 2>/dev/null
selfserv_9323 with PID 20692 found at Wed May 10 12:01:46 UTC 2017
selfserv_9323 with PID 20692 started at Wed May 10 12:01:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8227: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 20692 at Wed May 10 12:01:47 UTC 2017
kill -USR1 20692
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20692 killed at Wed May 10 12:01:47 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20748 >/dev/null 2>/dev/null
selfserv_9323 with PID 20748 found at Wed May 10 12:01:47 UTC 2017
selfserv_9323 with PID 20748 started at Wed May 10 12:01:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8228: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 20748 at Wed May 10 12:01:47 UTC 2017
kill -USR1 20748
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20748 killed at Wed May 10 12:01:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20816 >/dev/null 2>/dev/null
selfserv_9323 with PID 20816 found at Wed May 10 12:01:47 UTC 2017
selfserv_9323 with PID 20816 started at Wed May 10 12:01:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8229: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 20816 at Wed May 10 12:01:47 UTC 2017
kill -USR1 20816
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20816 killed at Wed May 10 12:01:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20872 >/dev/null 2>/dev/null
selfserv_9323 with PID 20872 found at Wed May 10 12:01:47 UTC 2017
selfserv_9323 with PID 20872 started at Wed May 10 12:01:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8230: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 20872 at Wed May 10 12:01:48 UTC 2017
kill -USR1 20872
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20872 killed at Wed May 10 12:01:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20928 >/dev/null 2>/dev/null
selfserv_9323 with PID 20928 found at Wed May 10 12:01:48 UTC 2017
selfserv_9323 with PID 20928 started at Wed May 10 12:01:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8231: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 20928 at Wed May 10 12:01:48 UTC 2017
kill -USR1 20928
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20928 killed at Wed May 10 12:01:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20996 >/dev/null 2>/dev/null
selfserv_9323 with PID 20996 found at Wed May 10 12:01:48 UTC 2017
selfserv_9323 with PID 20996 started at Wed May 10 12:01:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8232: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 20996 at Wed May 10 12:01:48 UTC 2017
kill -USR1 20996
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 20996 killed at Wed May 10 12:01:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21052 >/dev/null 2>/dev/null
selfserv_9323 with PID 21052 found at Wed May 10 12:01:49 UTC 2017
selfserv_9323 with PID 21052 started at Wed May 10 12:01:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8233: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 21052 at Wed May 10 12:01:49 UTC 2017
kill -USR1 21052
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21052 killed at Wed May 10 12:01:49 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21108 >/dev/null 2>/dev/null
selfserv_9323 with PID 21108 found at Wed May 10 12:01:49 UTC 2017
selfserv_9323 with PID 21108 started at Wed May 10 12:01:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8234: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 21108 at Wed May 10 12:01:49 UTC 2017
kill -USR1 21108
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21108 killed at Wed May 10 12:01:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21176 >/dev/null 2>/dev/null
selfserv_9323 with PID 21176 found at Wed May 10 12:01:49 UTC 2017
selfserv_9323 with PID 21176 started at Wed May 10 12:01:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8235: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 21176 at Wed May 10 12:01:50 UTC 2017
kill -USR1 21176
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21176 killed at Wed May 10 12:01:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:50 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21232 >/dev/null 2>/dev/null
selfserv_9323 with PID 21232 found at Wed May 10 12:01:50 UTC 2017
selfserv_9323 with PID 21232 started at Wed May 10 12:01:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8236: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 21232 at Wed May 10 12:01:50 UTC 2017
kill -USR1 21232
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21232 killed at Wed May 10 12:01:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:50 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21288 >/dev/null 2>/dev/null
selfserv_9323 with PID 21288 found at Wed May 10 12:01:50 UTC 2017
selfserv_9323 with PID 21288 started at Wed May 10 12:01:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8237: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 21288 at Wed May 10 12:01:50 UTC 2017
kill -USR1 21288
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21288 killed at Wed May 10 12:01:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:50 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21356 >/dev/null 2>/dev/null
selfserv_9323 with PID 21356 found at Wed May 10 12:01:50 UTC 2017
selfserv_9323 with PID 21356 started at Wed May 10 12:01:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8238: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 21356 at Wed May 10 12:01:51 UTC 2017
kill -USR1 21356
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21356 killed at Wed May 10 12:01:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:51 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21412 >/dev/null 2>/dev/null
selfserv_9323 with PID 21412 found at Wed May 10 12:01:51 UTC 2017
selfserv_9323 with PID 21412 started at Wed May 10 12:01:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8239: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 21412 at Wed May 10 12:01:51 UTC 2017
kill -USR1 21412
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21412 killed at Wed May 10 12:01:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:51 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21468 >/dev/null 2>/dev/null
selfserv_9323 with PID 21468 found at Wed May 10 12:01:51 UTC 2017
selfserv_9323 with PID 21468 started at Wed May 10 12:01:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8240: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 21468 at Wed May 10 12:01:51 UTC 2017
kill -USR1 21468
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21468 killed at Wed May 10 12:01:51 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:51 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21536 >/dev/null 2>/dev/null
selfserv_9323 with PID 21536 found at Wed May 10 12:01:51 UTC 2017
selfserv_9323 with PID 21536 started at Wed May 10 12:01:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8241: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 21536 at Wed May 10 12:01:52 UTC 2017
kill -USR1 21536
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21536 killed at Wed May 10 12:01:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:52 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21592 >/dev/null 2>/dev/null
selfserv_9323 with PID 21592 found at Wed May 10 12:01:52 UTC 2017
selfserv_9323 with PID 21592 started at Wed May 10 12:01:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8242: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 21592 at Wed May 10 12:01:52 UTC 2017
kill -USR1 21592
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21592 killed at Wed May 10 12:01:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:01:52 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21648 >/dev/null 2>/dev/null
selfserv_9323 with PID 21648 found at Wed May 10 12:01:52 UTC 2017
selfserv_9323 with PID 21648 started at Wed May 10 12:01:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8243: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 21648 at Wed May 10 12:01:52 UTC 2017
kill -USR1 21648
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21648 killed at Wed May 10 12:01:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:52 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21716 >/dev/null 2>/dev/null
selfserv_9323 with PID 21716 found at Wed May 10 12:01:52 UTC 2017
selfserv_9323 with PID 21716 started at Wed May 10 12:01:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8244: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 21716 at Wed May 10 12:01:53 UTC 2017
kill -USR1 21716
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21716 killed at Wed May 10 12:01:53 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:53 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21772 >/dev/null 2>/dev/null
selfserv_9323 with PID 21772 found at Wed May 10 12:01:53 UTC 2017
selfserv_9323 with PID 21772 started at Wed May 10 12:01:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8245: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 21772 at Wed May 10 12:01:53 UTC 2017
kill -USR1 21772
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21772 killed at Wed May 10 12:01:53 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:01:53 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21828 >/dev/null 2>/dev/null
selfserv_9323 with PID 21828 found at Wed May 10 12:01:53 UTC 2017
selfserv_9323 with PID 21828 started at Wed May 10 12:01:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8246: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 21828 at Wed May 10 12:01:53 UTC 2017
kill -USR1 21828
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21828 killed at Wed May 10 12:01:53 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/authin.tl.tmp
0
selfserv_9323 starting at Wed May 10 12:01:53 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:01:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:53 UTC 2017
selfserv_9323 with PID 21891 started at Wed May 10 12:01:53 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:54 UTC 2017
ssl.sh: #8247: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:54 UTC 2017
ssl.sh: #8248: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:54 UTC 2017
ssl.sh: #8249: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:54 UTC 2017
ssl.sh: #8250: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:54 UTC 2017
ssl.sh: #8251: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:54 UTC 2017
ssl.sh: #8252: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:55 UTC 2017
ssl.sh: #8253: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:55 UTC 2017
ssl.sh: #8254: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:55 UTC 2017
ssl.sh: #8255: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:55 UTC 2017
ssl.sh: #8256: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:55 UTC 2017
ssl.sh: #8257: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:55 UTC 2017
ssl.sh: #8258: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:55 UTC 2017
ssl.sh: #8259: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:56 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8260: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:56 UTC 2017
ssl.sh: #8261: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:56 UTC 2017
ssl.sh: #8262: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:56 UTC 2017
ssl.sh: #8263: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:56 UTC 2017
ssl.sh: #8264: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:56 UTC 2017
ssl.sh: #8265: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:57 UTC 2017
ssl.sh: #8266: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:57 UTC 2017
ssl.sh: #8267: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:57 UTC 2017
ssl.sh: #8268: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:57 UTC 2017
ssl.sh: #8269: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:57 UTC 2017
ssl.sh: #8270: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:57 UTC 2017
ssl.sh: #8271: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:57 UTC 2017
ssl.sh: #8272: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:58 UTC 2017
ssl.sh: #8273: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:58 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8274: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:58 UTC 2017
ssl.sh: #8275: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:58 UTC 2017
ssl.sh: #8276: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:58 UTC 2017
ssl.sh: #8277: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:58 UTC 2017
ssl.sh: #8278: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:59 UTC 2017
ssl.sh: #8279: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:59 UTC 2017
ssl.sh: #8280: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:59 UTC 2017
ssl.sh: #8281: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:59 UTC 2017
ssl.sh: #8282: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:59 UTC 2017
ssl.sh: #8283: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:01:59 UTC 2017
ssl.sh: #8284: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:02:00 UTC 2017
ssl.sh: #8285: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:02:00 UTC 2017
ssl.sh: #8286: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9323 with PID 21891 found at Wed May 10 12:02:00 UTC 2017
ssl.sh: #8287: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 21891 at Wed May 10 12:02:00 UTC 2017
kill -USR1 21891
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21891 killed at Wed May 10 12:02:00 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:02:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:02:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:00 UTC 2017
selfserv_9323 with PID 23323 started at Wed May 10 12:02:00 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:00 UTC 2017
ssl.sh: #8288: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:00 UTC 2017
ssl.sh: #8289: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:00 UTC 2017
ssl.sh: #8290: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:01 UTC 2017
ssl.sh: #8291: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:01 UTC 2017
ssl.sh: #8292: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:01 UTC 2017
ssl.sh: #8293: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:01 UTC 2017
ssl.sh: #8294: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:01 UTC 2017
ssl.sh: #8295: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:01 UTC 2017
ssl.sh: #8296: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:01 UTC 2017
ssl.sh: #8297: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:02 UTC 2017
ssl.sh: #8298: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:02 UTC 2017
ssl.sh: #8299: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:02 UTC 2017
ssl.sh: #8300: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8301: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:02 UTC 2017
ssl.sh: #8302: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:02 UTC 2017
ssl.sh: #8303: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:03 UTC 2017
ssl.sh: #8304: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:03 UTC 2017
ssl.sh: #8305: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:03 UTC 2017
ssl.sh: #8306: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:03 UTC 2017
ssl.sh: #8307: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:03 UTC 2017
ssl.sh: #8308: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:03 UTC 2017
ssl.sh: #8309: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:03 UTC 2017
ssl.sh: #8310: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:04 UTC 2017
ssl.sh: #8311: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:04 UTC 2017
ssl.sh: #8312: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:04 UTC 2017
ssl.sh: #8313: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:04 UTC 2017
ssl.sh: #8314: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8315: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:04 UTC 2017
ssl.sh: #8316: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:04 UTC 2017
ssl.sh: #8317: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:04 UTC 2017
ssl.sh: #8318: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:05 UTC 2017
ssl.sh: #8319: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:05 UTC 2017
ssl.sh: #8320: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:05 UTC 2017
ssl.sh: #8321: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:05 UTC 2017
ssl.sh: #8322: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:05 UTC 2017
ssl.sh: #8323: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:05 UTC 2017
ssl.sh: #8324: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:05 UTC 2017
ssl.sh: #8325: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:06 UTC 2017
ssl.sh: #8326: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:06 UTC 2017
ssl.sh: #8327: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23323 >/dev/null 2>/dev/null
selfserv_9323 with PID 23323 found at Wed May 10 12:02:06 UTC 2017
ssl.sh: #8328: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 23323 at Wed May 10 12:02:06 UTC 2017
kill -USR1 23323
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23323 killed at Wed May 10 12:02:06 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:02:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:02:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:06 UTC 2017
selfserv_9323 with PID 24746 started at Wed May 10 12:02:06 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:06 UTC 2017
ssl.sh: #8329: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:06 UTC 2017
ssl.sh: #8330: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:06 UTC 2017
ssl.sh: #8331: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:07 UTC 2017
ssl.sh: #8332: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:07 UTC 2017
ssl.sh: #8333: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:07 UTC 2017
ssl.sh: #8334: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:07 UTC 2017
ssl.sh: #8335: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:07 UTC 2017
ssl.sh: #8336: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:07 UTC 2017
ssl.sh: #8337: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:08 UTC 2017
ssl.sh: #8338: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:08 UTC 2017
ssl.sh: #8339: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:08 UTC 2017
ssl.sh: #8340: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:08 UTC 2017
ssl.sh: #8341: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8342: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:08 UTC 2017
ssl.sh: #8343: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:09 UTC 2017
ssl.sh: #8344: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:09 UTC 2017
ssl.sh: #8345: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:09 UTC 2017
ssl.sh: #8346: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:09 UTC 2017
ssl.sh: #8347: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:09 UTC 2017
ssl.sh: #8348: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:09 UTC 2017
ssl.sh: #8349: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:10 UTC 2017
ssl.sh: #8350: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:10 UTC 2017
ssl.sh: #8351: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:10 UTC 2017
ssl.sh: #8352: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:10 UTC 2017
ssl.sh: #8353: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:10 UTC 2017
ssl.sh: #8354: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:10 UTC 2017
ssl.sh: #8355: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8356: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:11 UTC 2017
ssl.sh: #8357: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:11 UTC 2017
ssl.sh: #8358: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:11 UTC 2017
ssl.sh: #8359: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:11 UTC 2017
ssl.sh: #8360: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:11 UTC 2017
ssl.sh: #8361: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:11 UTC 2017
ssl.sh: #8362: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:12 UTC 2017
ssl.sh: #8363: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:12 UTC 2017
ssl.sh: #8364: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:12 UTC 2017
ssl.sh: #8365: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:12 UTC 2017
ssl.sh: #8366: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:12 UTC 2017
ssl.sh: #8367: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:12 UTC 2017
ssl.sh: #8368: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24746 >/dev/null 2>/dev/null
selfserv_9323 with PID 24746 found at Wed May 10 12:02:13 UTC 2017
ssl.sh: #8369: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 24746 at Wed May 10 12:02:13 UTC 2017
kill -USR1 24746
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24746 killed at Wed May 10 12:02:13 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:02:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:02:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:13 UTC 2017
selfserv_9323 with PID 26172 started at Wed May 10 12:02:13 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:13 UTC 2017
ssl.sh: #8370: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:13 UTC 2017
ssl.sh: #8371: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:13 UTC 2017
ssl.sh: #8372: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:13 UTC 2017
ssl.sh: #8373: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:14 UTC 2017
ssl.sh: #8374: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:14 UTC 2017
ssl.sh: #8375: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:14 UTC 2017
ssl.sh: #8376: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:14 UTC 2017
ssl.sh: #8377: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:14 UTC 2017
ssl.sh: #8378: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:14 UTC 2017
ssl.sh: #8379: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:14 UTC 2017
ssl.sh: #8380: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:15 UTC 2017
ssl.sh: #8381: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:15 UTC 2017
ssl.sh: #8382: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:15 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8383: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:15 UTC 2017
ssl.sh: #8384: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:15 UTC 2017
ssl.sh: #8385: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:15 UTC 2017
ssl.sh: #8386: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:16 UTC 2017
ssl.sh: #8387: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:16 UTC 2017
ssl.sh: #8388: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:16 UTC 2017
ssl.sh: #8389: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:16 UTC 2017
ssl.sh: #8390: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:16 UTC 2017
ssl.sh: #8391: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:16 UTC 2017
ssl.sh: #8392: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:16 UTC 2017
ssl.sh: #8393: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:17 UTC 2017
ssl.sh: #8394: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:17 UTC 2017
ssl.sh: #8395: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:17 UTC 2017
ssl.sh: #8396: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8397: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:17 UTC 2017
ssl.sh: #8398: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:17 UTC 2017
ssl.sh: #8399: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:17 UTC 2017
ssl.sh: #8400: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:18 UTC 2017
ssl.sh: #8401: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:18 UTC 2017
ssl.sh: #8402: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:18 UTC 2017
ssl.sh: #8403: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:18 UTC 2017
ssl.sh: #8404: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:18 UTC 2017
ssl.sh: #8405: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:18 UTC 2017
ssl.sh: #8406: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:19 UTC 2017
ssl.sh: #8407: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:19 UTC 2017
ssl.sh: #8408: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:19 UTC 2017
ssl.sh: #8409: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26172 >/dev/null 2>/dev/null
selfserv_9323 with PID 26172 found at Wed May 10 12:02:19 UTC 2017
ssl.sh: #8410: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 26172 at Wed May 10 12:02:19 UTC 2017
kill -USR1 26172
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26172 killed at Wed May 10 12:02:19 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:02:19 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:02:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27598 >/dev/null 2>/dev/null
selfserv_9323 with PID 27598 found at Wed May 10 12:02:19 UTC 2017
selfserv_9323 with PID 27598 started at Wed May 10 12:02:19 UTC 2017
trying to kill selfserv_9323 with PID 27598 at Wed May 10 12:02:19 UTC 2017
kill -USR1 27598
./ssl.sh: line 183: 27598 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9323 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27598 killed at Wed May 10 12:02:19 UTC 2017
selfserv_9323 starting at Wed May 10 12:02:19 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:02:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:19 UTC 2017
selfserv_9323 with PID 27632 started at Wed May 10 12:02:19 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:19 UTC 2017
ssl.sh: #8411: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:20 UTC 2017
ssl.sh: #8412: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:20 UTC 2017
ssl.sh: #8413: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:20 UTC 2017
ssl.sh: #8414: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:20 UTC 2017
ssl.sh: #8415: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:20 UTC 2017
ssl.sh: #8416: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:21 UTC 2017
ssl.sh: #8417: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:21 UTC 2017
ssl.sh: #8418: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:21 UTC 2017
ssl.sh: #8419: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:21 UTC 2017
ssl.sh: #8420: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:21 UTC 2017
ssl.sh: #8421: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:21 UTC 2017
ssl.sh: #8422: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:22 UTC 2017
ssl.sh: #8423: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8424: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:22 UTC 2017
ssl.sh: #8425: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:22 UTC 2017
ssl.sh: #8426: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:22 UTC 2017
ssl.sh: #8427: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:23 UTC 2017
ssl.sh: #8428: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:23 UTC 2017
ssl.sh: #8429: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:23 UTC 2017
ssl.sh: #8430: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:23 UTC 2017
ssl.sh: #8431: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:23 UTC 2017
ssl.sh: #8432: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:24 UTC 2017
ssl.sh: #8433: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:24 UTC 2017
ssl.sh: #8434: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:24 UTC 2017
ssl.sh: #8435: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:24 UTC 2017
ssl.sh: #8436: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:24 UTC 2017
ssl.sh: #8437: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8438: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:25 UTC 2017
ssl.sh: #8439: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:25 UTC 2017
ssl.sh: #8440: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:25 UTC 2017
ssl.sh: #8441: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:25 UTC 2017
ssl.sh: #8442: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:25 UTC 2017
ssl.sh: #8443: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:25 UTC 2017
ssl.sh: #8444: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:26 UTC 2017
ssl.sh: #8445: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:26 UTC 2017
ssl.sh: #8446: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:26 UTC 2017
ssl.sh: #8447: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:26 UTC 2017
ssl.sh: #8448: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:26 UTC 2017
ssl.sh: #8449: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:27 UTC 2017
ssl.sh: #8450: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27632 >/dev/null 2>/dev/null
selfserv_9323 with PID 27632 found at Wed May 10 12:02:27 UTC 2017
ssl.sh: #8451: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 27632 at Wed May 10 12:02:27 UTC 2017
kill -USR1 27632
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27632 killed at Wed May 10 12:02:27 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:02:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:02:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:27 UTC 2017
selfserv_9323 with PID 29054 started at Wed May 10 12:02:27 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:27 UTC 2017
ssl.sh: #8452: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:27 UTC 2017
ssl.sh: #8453: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:28 UTC 2017
ssl.sh: #8454: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:28 UTC 2017
ssl.sh: #8455: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:28 UTC 2017
ssl.sh: #8456: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:28 UTC 2017
ssl.sh: #8457: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:28 UTC 2017
ssl.sh: #8458: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:28 UTC 2017
ssl.sh: #8459: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:29 UTC 2017
ssl.sh: #8460: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:29 UTC 2017
ssl.sh: #8461: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:29 UTC 2017
ssl.sh: #8462: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:29 UTC 2017
ssl.sh: #8463: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:29 UTC 2017
ssl.sh: #8464: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8465: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:30 UTC 2017
ssl.sh: #8466: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:30 UTC 2017
ssl.sh: #8467: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:30 UTC 2017
ssl.sh: #8468: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:30 UTC 2017
ssl.sh: #8469: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:31 UTC 2017
ssl.sh: #8470: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:31 UTC 2017
ssl.sh: #8471: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:31 UTC 2017
ssl.sh: #8472: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:31 UTC 2017
ssl.sh: #8473: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:31 UTC 2017
ssl.sh: #8474: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:32 UTC 2017
ssl.sh: #8475: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:32 UTC 2017
ssl.sh: #8476: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:32 UTC 2017
ssl.sh: #8477: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:32 UTC 2017
ssl.sh: #8478: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8479: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:33 UTC 2017
ssl.sh: #8480: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:33 UTC 2017
ssl.sh: #8481: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:33 UTC 2017
ssl.sh: #8482: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:33 UTC 2017
ssl.sh: #8483: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:33 UTC 2017
ssl.sh: #8484: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:34 UTC 2017
ssl.sh: #8485: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:34 UTC 2017
ssl.sh: #8486: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:34 UTC 2017
ssl.sh: #8487: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:34 UTC 2017
ssl.sh: #8488: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:34 UTC 2017
ssl.sh: #8489: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:35 UTC 2017
ssl.sh: #8490: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:35 UTC 2017
ssl.sh: #8491: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29054 >/dev/null 2>/dev/null
selfserv_9323 with PID 29054 found at Wed May 10 12:02:35 UTC 2017
ssl.sh: #8492: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 29054 at Wed May 10 12:02:35 UTC 2017
kill -USR1 29054
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29054 killed at Wed May 10 12:02:35 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:02:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:02:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:35 UTC 2017
selfserv_9323 with PID 30476 started at Wed May 10 12:02:35 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:35 UTC 2017
ssl.sh: #8493: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:35 UTC 2017
ssl.sh: #8494: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:36 UTC 2017
ssl.sh: #8495: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:36 UTC 2017
ssl.sh: #8496: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:36 UTC 2017
ssl.sh: #8497: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:36 UTC 2017
ssl.sh: #8498: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:36 UTC 2017
ssl.sh: #8499: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:36 UTC 2017
ssl.sh: #8500: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:37 UTC 2017
ssl.sh: #8501: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:37 UTC 2017
ssl.sh: #8502: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:37 UTC 2017
ssl.sh: #8503: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:37 UTC 2017
ssl.sh: #8504: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:37 UTC 2017
ssl.sh: #8505: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8506: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:38 UTC 2017
ssl.sh: #8507: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:38 UTC 2017
ssl.sh: #8508: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:38 UTC 2017
ssl.sh: #8509: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:38 UTC 2017
ssl.sh: #8510: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:38 UTC 2017
ssl.sh: #8511: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:38 UTC 2017
ssl.sh: #8512: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:39 UTC 2017
ssl.sh: #8513: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:39 UTC 2017
ssl.sh: #8514: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:39 UTC 2017
ssl.sh: #8515: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:39 UTC 2017
ssl.sh: #8516: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:39 UTC 2017
ssl.sh: #8517: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:39 UTC 2017
ssl.sh: #8518: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:40 UTC 2017
ssl.sh: #8519: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8520: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:40 UTC 2017
ssl.sh: #8521: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:40 UTC 2017
ssl.sh: #8522: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:40 UTC 2017
ssl.sh: #8523: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:40 UTC 2017
ssl.sh: #8524: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:40 UTC 2017
ssl.sh: #8525: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:41 UTC 2017
ssl.sh: #8526: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:41 UTC 2017
ssl.sh: #8527: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:41 UTC 2017
ssl.sh: #8528: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:41 UTC 2017
ssl.sh: #8529: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:41 UTC 2017
ssl.sh: #8530: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:41 UTC 2017
ssl.sh: #8531: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:42 UTC 2017
ssl.sh: #8532: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30476 >/dev/null 2>/dev/null
selfserv_9323 with PID 30476 found at Wed May 10 12:02:42 UTC 2017
ssl.sh: #8533: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 30476 at Wed May 10 12:02:42 UTC 2017
kill -USR1 30476
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30476 killed at Wed May 10 12:02:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:02:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:02:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:42 UTC 2017
selfserv_9323 with PID 31898 started at Wed May 10 12:02:42 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:42 UTC 2017
ssl.sh: #8534: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:42 UTC 2017
ssl.sh: #8535: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:42 UTC 2017
ssl.sh: #8536: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:43 UTC 2017
ssl.sh: #8537: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:43 UTC 2017
ssl.sh: #8538: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:43 UTC 2017
ssl.sh: #8539: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:43 UTC 2017
ssl.sh: #8540: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:43 UTC 2017
ssl.sh: #8541: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:44 UTC 2017
ssl.sh: #8542: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:44 UTC 2017
ssl.sh: #8543: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:44 UTC 2017
ssl.sh: #8544: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:44 UTC 2017
ssl.sh: #8545: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:44 UTC 2017
ssl.sh: #8546: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8547: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:45 UTC 2017
ssl.sh: #8548: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:45 UTC 2017
ssl.sh: #8549: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:45 UTC 2017
ssl.sh: #8550: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:45 UTC 2017
ssl.sh: #8551: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:46 UTC 2017
ssl.sh: #8552: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:46 UTC 2017
ssl.sh: #8553: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:46 UTC 2017
ssl.sh: #8554: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:46 UTC 2017
ssl.sh: #8555: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:46 UTC 2017
ssl.sh: #8556: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:47 UTC 2017
ssl.sh: #8557: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:47 UTC 2017
ssl.sh: #8558: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:47 UTC 2017
ssl.sh: #8559: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:47 UTC 2017
ssl.sh: #8560: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8561: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:48 UTC 2017
ssl.sh: #8562: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:48 UTC 2017
ssl.sh: #8563: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:48 UTC 2017
ssl.sh: #8564: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:48 UTC 2017
ssl.sh: #8565: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:48 UTC 2017
ssl.sh: #8566: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:48 UTC 2017
ssl.sh: #8567: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:49 UTC 2017
ssl.sh: #8568: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:49 UTC 2017
ssl.sh: #8569: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:49 UTC 2017
ssl.sh: #8570: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:49 UTC 2017
ssl.sh: #8571: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:49 UTC 2017
ssl.sh: #8572: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:50 UTC 2017
ssl.sh: #8573: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31898 >/dev/null 2>/dev/null
selfserv_9323 with PID 31898 found at Wed May 10 12:02:50 UTC 2017
ssl.sh: #8574: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 31898 at Wed May 10 12:02:50 UTC 2017
kill -USR1 31898
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31898 killed at Wed May 10 12:02:50 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:02:50 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:02:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:50 UTC 2017
selfserv_9323 with PID 856 started at Wed May 10 12:02:50 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:50 UTC 2017
ssl.sh: #8575: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:50 UTC 2017
ssl.sh: #8576: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:51 UTC 2017
ssl.sh: #8577: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:51 UTC 2017
ssl.sh: #8578: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:51 UTC 2017
ssl.sh: #8579: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:51 UTC 2017
ssl.sh: #8580: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:51 UTC 2017
ssl.sh: #8581: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:52 UTC 2017
ssl.sh: #8582: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:52 UTC 2017
ssl.sh: #8583: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:52 UTC 2017
ssl.sh: #8584: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:52 UTC 2017
ssl.sh: #8585: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:52 UTC 2017
ssl.sh: #8586: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:53 UTC 2017
ssl.sh: #8587: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8588: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:53 UTC 2017
ssl.sh: #8589: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:53 UTC 2017
ssl.sh: #8590: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:53 UTC 2017
ssl.sh: #8591: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:54 UTC 2017
ssl.sh: #8592: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:54 UTC 2017
ssl.sh: #8593: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:54 UTC 2017
ssl.sh: #8594: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:54 UTC 2017
ssl.sh: #8595: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:54 UTC 2017
ssl.sh: #8596: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:55 UTC 2017
ssl.sh: #8597: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:55 UTC 2017
ssl.sh: #8598: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:55 UTC 2017
ssl.sh: #8599: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:55 UTC 2017
ssl.sh: #8600: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:55 UTC 2017
ssl.sh: #8601: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:56 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8602: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:56 UTC 2017
ssl.sh: #8603: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:56 UTC 2017
ssl.sh: #8604: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:56 UTC 2017
ssl.sh: #8605: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:56 UTC 2017
ssl.sh: #8606: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:57 UTC 2017
ssl.sh: #8607: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:57 UTC 2017
ssl.sh: #8608: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:57 UTC 2017
ssl.sh: #8609: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:57 UTC 2017
ssl.sh: #8610: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:57 UTC 2017
ssl.sh: #8611: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:58 UTC 2017
ssl.sh: #8612: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:58 UTC 2017
ssl.sh: #8613: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:58 UTC 2017
ssl.sh: #8614: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 856 >/dev/null 2>/dev/null
selfserv_9323 with PID 856 found at Wed May 10 12:02:58 UTC 2017
ssl.sh: #8615: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 856 at Wed May 10 12:02:58 UTC 2017
kill -USR1 856
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 856 killed at Wed May 10 12:02:58 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:02:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:02:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:02:58 UTC 2017
selfserv_9323 with PID 2347 started at Wed May 10 12:02:58 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:02:59 UTC 2017
ssl.sh: #8616: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:02:59 UTC 2017
ssl.sh: #8617: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:02:59 UTC 2017
ssl.sh: #8618: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:02:59 UTC 2017
ssl.sh: #8619: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:02:59 UTC 2017
ssl.sh: #8620: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:02:59 UTC 2017
ssl.sh: #8621: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:00 UTC 2017
ssl.sh: #8622: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:00 UTC 2017
ssl.sh: #8623: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:00 UTC 2017
ssl.sh: #8624: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:00 UTC 2017
ssl.sh: #8625: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:00 UTC 2017
ssl.sh: #8626: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:00 UTC 2017
ssl.sh: #8627: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:01 UTC 2017
ssl.sh: #8628: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8629: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:01 UTC 2017
ssl.sh: #8630: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:01 UTC 2017
ssl.sh: #8631: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:01 UTC 2017
ssl.sh: #8632: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:02 UTC 2017
ssl.sh: #8633: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:02 UTC 2017
ssl.sh: #8634: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:02 UTC 2017
ssl.sh: #8635: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:02 UTC 2017
ssl.sh: #8636: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:02 UTC 2017
ssl.sh: #8637: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:02 UTC 2017
ssl.sh: #8638: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:02 UTC 2017
ssl.sh: #8639: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:03 UTC 2017
ssl.sh: #8640: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:03 UTC 2017
ssl.sh: #8641: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:03 UTC 2017
ssl.sh: #8642: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:03 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8643: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:03 UTC 2017
ssl.sh: #8644: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:04 UTC 2017
ssl.sh: #8645: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:04 UTC 2017
ssl.sh: #8646: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:04 UTC 2017
ssl.sh: #8647: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:04 UTC 2017
ssl.sh: #8648: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:04 UTC 2017
ssl.sh: #8649: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:04 UTC 2017
ssl.sh: #8650: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:05 UTC 2017
ssl.sh: #8651: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:05 UTC 2017
ssl.sh: #8652: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:05 UTC 2017
ssl.sh: #8653: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:05 UTC 2017
ssl.sh: #8654: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:05 UTC 2017
ssl.sh: #8655: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2347 >/dev/null 2>/dev/null
selfserv_9323 with PID 2347 found at Wed May 10 12:03:05 UTC 2017
ssl.sh: #8656: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 2347 at Wed May 10 12:03:05 UTC 2017
kill -USR1 2347
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 2347 killed at Wed May 10 12:03:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:03:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:03:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3769 >/dev/null 2>/dev/null
selfserv_9323 with PID 3769 found at Wed May 10 12:03:05 UTC 2017
selfserv_9323 with PID 3769 started at Wed May 10 12:03:05 UTC 2017
trying to kill selfserv_9323 with PID 3769 at Wed May 10 12:03:05 UTC 2017
kill -USR1 3769
./ssl.sh: line 183:  3769 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9323 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3769 killed at Wed May 10 12:03:05 UTC 2017
selfserv_9323 starting at Wed May 10 12:03:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:03:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:05 UTC 2017
selfserv_9323 with PID 3803 started at Wed May 10 12:03:05 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:06 UTC 2017
ssl.sh: #8657: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:06 UTC 2017
ssl.sh: #8658: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:06 UTC 2017
ssl.sh: #8659: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:06 UTC 2017
ssl.sh: #8660: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:06 UTC 2017
ssl.sh: #8661: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:07 UTC 2017
ssl.sh: #8662: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:07 UTC 2017
ssl.sh: #8663: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:07 UTC 2017
ssl.sh: #8664: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:07 UTC 2017
ssl.sh: #8665: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:07 UTC 2017
ssl.sh: #8666: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:08 UTC 2017
ssl.sh: #8667: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:08 UTC 2017
ssl.sh: #8668: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:08 UTC 2017
ssl.sh: #8669: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8670: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:08 UTC 2017
ssl.sh: #8671: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:08 UTC 2017
ssl.sh: #8672: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:09 UTC 2017
ssl.sh: #8673: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:09 UTC 2017
ssl.sh: #8674: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:09 UTC 2017
ssl.sh: #8675: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:09 UTC 2017
ssl.sh: #8676: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:09 UTC 2017
ssl.sh: #8677: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:10 UTC 2017
ssl.sh: #8678: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:10 UTC 2017
ssl.sh: #8679: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:10 UTC 2017
ssl.sh: #8680: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:10 UTC 2017
ssl.sh: #8681: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:10 UTC 2017
ssl.sh: #8682: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:11 UTC 2017
ssl.sh: #8683: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8684: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:11 UTC 2017
ssl.sh: #8685: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:11 UTC 2017
ssl.sh: #8686: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:11 UTC 2017
ssl.sh: #8687: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:11 UTC 2017
ssl.sh: #8688: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:12 UTC 2017
ssl.sh: #8689: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:12 UTC 2017
ssl.sh: #8690: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:12 UTC 2017
ssl.sh: #8691: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:12 UTC 2017
ssl.sh: #8692: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:12 UTC 2017
ssl.sh: #8693: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:13 UTC 2017
ssl.sh: #8694: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:13 UTC 2017
ssl.sh: #8695: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:13 UTC 2017
ssl.sh: #8696: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3803 >/dev/null 2>/dev/null
selfserv_9323 with PID 3803 found at Wed May 10 12:03:13 UTC 2017
ssl.sh: #8697: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 3803 at Wed May 10 12:03:13 UTC 2017
kill -USR1 3803
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3803 killed at Wed May 10 12:03:13 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:03:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:03:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:13 UTC 2017
selfserv_9323 with PID 5225 started at Wed May 10 12:03:13 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:13 UTC 2017
ssl.sh: #8698: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:14 UTC 2017
ssl.sh: #8699: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:14 UTC 2017
ssl.sh: #8700: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:14 UTC 2017
ssl.sh: #8701: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:14 UTC 2017
ssl.sh: #8702: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:14 UTC 2017
ssl.sh: #8703: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:15 UTC 2017
ssl.sh: #8704: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:15 UTC 2017
ssl.sh: #8705: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:15 UTC 2017
ssl.sh: #8706: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:15 UTC 2017
ssl.sh: #8707: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:15 UTC 2017
ssl.sh: #8708: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:16 UTC 2017
ssl.sh: #8709: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:16 UTC 2017
ssl.sh: #8710: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8711: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:16 UTC 2017
ssl.sh: #8712: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:16 UTC 2017
ssl.sh: #8713: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:17 UTC 2017
ssl.sh: #8714: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:17 UTC 2017
ssl.sh: #8715: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:17 UTC 2017
ssl.sh: #8716: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:17 UTC 2017
ssl.sh: #8717: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:17 UTC 2017
ssl.sh: #8718: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:17 UTC 2017
ssl.sh: #8719: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:18 UTC 2017
ssl.sh: #8720: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:18 UTC 2017
ssl.sh: #8721: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:18 UTC 2017
ssl.sh: #8722: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:18 UTC 2017
ssl.sh: #8723: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:18 UTC 2017
ssl.sh: #8724: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:19 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8725: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:19 UTC 2017
ssl.sh: #8726: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:19 UTC 2017
ssl.sh: #8727: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:19 UTC 2017
ssl.sh: #8728: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:19 UTC 2017
ssl.sh: #8729: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:19 UTC 2017
ssl.sh: #8730: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:20 UTC 2017
ssl.sh: #8731: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:20 UTC 2017
ssl.sh: #8732: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:20 UTC 2017
ssl.sh: #8733: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:20 UTC 2017
ssl.sh: #8734: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:20 UTC 2017
ssl.sh: #8735: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:21 UTC 2017
ssl.sh: #8736: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:21 UTC 2017
ssl.sh: #8737: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5225 >/dev/null 2>/dev/null
selfserv_9323 with PID 5225 found at Wed May 10 12:03:21 UTC 2017
ssl.sh: #8738: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5225 at Wed May 10 12:03:21 UTC 2017
kill -USR1 5225
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5225 killed at Wed May 10 12:03:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:03:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:03:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:21 UTC 2017
selfserv_9323 with PID 6647 started at Wed May 10 12:03:21 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:21 UTC 2017
ssl.sh: #8739: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:21 UTC 2017
ssl.sh: #8740: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:22 UTC 2017
ssl.sh: #8741: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:22 UTC 2017
ssl.sh: #8742: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:22 UTC 2017
ssl.sh: #8743: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:22 UTC 2017
ssl.sh: #8744: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:22 UTC 2017
ssl.sh: #8745: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:22 UTC 2017
ssl.sh: #8746: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:22 UTC 2017
ssl.sh: #8747: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:23 UTC 2017
ssl.sh: #8748: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:23 UTC 2017
ssl.sh: #8749: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:23 UTC 2017
ssl.sh: #8750: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:23 UTC 2017
ssl.sh: #8751: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8752: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:23 UTC 2017
ssl.sh: #8753: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:24 UTC 2017
ssl.sh: #8754: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:24 UTC 2017
ssl.sh: #8755: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:24 UTC 2017
ssl.sh: #8756: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:24 UTC 2017
ssl.sh: #8757: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:24 UTC 2017
ssl.sh: #8758: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:24 UTC 2017
ssl.sh: #8759: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:24 UTC 2017
ssl.sh: #8760: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:25 UTC 2017
ssl.sh: #8761: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:25 UTC 2017
ssl.sh: #8762: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:25 UTC 2017
ssl.sh: #8763: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:25 UTC 2017
ssl.sh: #8764: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:25 UTC 2017
ssl.sh: #8765: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8766: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:26 UTC 2017
ssl.sh: #8767: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:26 UTC 2017
ssl.sh: #8768: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:26 UTC 2017
ssl.sh: #8769: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:26 UTC 2017
ssl.sh: #8770: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:26 UTC 2017
ssl.sh: #8771: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:26 UTC 2017
ssl.sh: #8772: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:26 UTC 2017
ssl.sh: #8773: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:27 UTC 2017
ssl.sh: #8774: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:27 UTC 2017
ssl.sh: #8775: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:27 UTC 2017
ssl.sh: #8776: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:27 UTC 2017
ssl.sh: #8777: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:27 UTC 2017
ssl.sh: #8778: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6647 >/dev/null 2>/dev/null
selfserv_9323 with PID 6647 found at Wed May 10 12:03:27 UTC 2017
ssl.sh: #8779: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6647 at Wed May 10 12:03:27 UTC 2017
kill -USR1 6647
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6647 killed at Wed May 10 12:03:27 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:03:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:03:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:27 UTC 2017
selfserv_9323 with PID 8076 started at Wed May 10 12:03:27 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:28 UTC 2017
ssl.sh: #8780: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:28 UTC 2017
ssl.sh: #8781: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:28 UTC 2017
ssl.sh: #8782: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:28 UTC 2017
ssl.sh: #8783: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:29 UTC 2017
ssl.sh: #8784: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:29 UTC 2017
ssl.sh: #8785: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:29 UTC 2017
ssl.sh: #8786: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:29 UTC 2017
ssl.sh: #8787: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:29 UTC 2017
ssl.sh: #8788: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:30 UTC 2017
ssl.sh: #8789: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:30 UTC 2017
ssl.sh: #8790: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:30 UTC 2017
ssl.sh: #8791: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:30 UTC 2017
ssl.sh: #8792: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8793: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:31 UTC 2017
ssl.sh: #8794: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:31 UTC 2017
ssl.sh: #8795: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:31 UTC 2017
ssl.sh: #8796: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:31 UTC 2017
ssl.sh: #8797: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:31 UTC 2017
ssl.sh: #8798: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:32 UTC 2017
ssl.sh: #8799: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:32 UTC 2017
ssl.sh: #8800: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:32 UTC 2017
ssl.sh: #8801: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:32 UTC 2017
ssl.sh: #8802: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:32 UTC 2017
ssl.sh: #8803: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:32 UTC 2017
ssl.sh: #8804: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:33 UTC 2017
ssl.sh: #8805: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:33 UTC 2017
ssl.sh: #8806: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8807: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:33 UTC 2017
ssl.sh: #8808: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:33 UTC 2017
ssl.sh: #8809: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:34 UTC 2017
ssl.sh: #8810: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:34 UTC 2017
ssl.sh: #8811: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:34 UTC 2017
ssl.sh: #8812: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:34 UTC 2017
ssl.sh: #8813: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:34 UTC 2017
ssl.sh: #8814: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:35 UTC 2017
ssl.sh: #8815: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:35 UTC 2017
ssl.sh: #8816: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:35 UTC 2017
ssl.sh: #8817: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:35 UTC 2017
ssl.sh: #8818: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:35 UTC 2017
ssl.sh: #8819: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8076 >/dev/null 2>/dev/null
selfserv_9323 with PID 8076 found at Wed May 10 12:03:36 UTC 2017
ssl.sh: #8820: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 8076 at Wed May 10 12:03:36 UTC 2017
kill -USR1 8076
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8076 killed at Wed May 10 12:03:36 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:03:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:03:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:36 UTC 2017
selfserv_9323 with PID 9515 started at Wed May 10 12:03:36 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:36 UTC 2017
ssl.sh: #8821: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:36 UTC 2017
ssl.sh: #8822: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:36 UTC 2017
ssl.sh: #8823: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:36 UTC 2017
ssl.sh: #8824: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:37 UTC 2017
ssl.sh: #8825: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:37 UTC 2017
ssl.sh: #8826: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:37 UTC 2017
ssl.sh: #8827: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:37 UTC 2017
ssl.sh: #8828: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:37 UTC 2017
ssl.sh: #8829: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:38 UTC 2017
ssl.sh: #8830: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:38 UTC 2017
ssl.sh: #8831: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:38 UTC 2017
ssl.sh: #8832: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:38 UTC 2017
ssl.sh: #8833: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8834: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:39 UTC 2017
ssl.sh: #8835: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:39 UTC 2017
ssl.sh: #8836: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:39 UTC 2017
ssl.sh: #8837: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:39 UTC 2017
ssl.sh: #8838: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:39 UTC 2017
ssl.sh: #8839: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:40 UTC 2017
ssl.sh: #8840: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:40 UTC 2017
ssl.sh: #8841: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:40 UTC 2017
ssl.sh: #8842: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:40 UTC 2017
ssl.sh: #8843: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:40 UTC 2017
ssl.sh: #8844: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:41 UTC 2017
ssl.sh: #8845: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:41 UTC 2017
ssl.sh: #8846: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:41 UTC 2017
ssl.sh: #8847: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8848: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:41 UTC 2017
ssl.sh: #8849: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:41 UTC 2017
ssl.sh: #8850: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:42 UTC 2017
ssl.sh: #8851: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:42 UTC 2017
ssl.sh: #8852: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:42 UTC 2017
ssl.sh: #8853: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:42 UTC 2017
ssl.sh: #8854: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:42 UTC 2017
ssl.sh: #8855: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:43 UTC 2017
ssl.sh: #8856: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:43 UTC 2017
ssl.sh: #8857: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:43 UTC 2017
ssl.sh: #8858: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:43 UTC 2017
ssl.sh: #8859: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:43 UTC 2017
ssl.sh: #8860: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9515 >/dev/null 2>/dev/null
selfserv_9323 with PID 9515 found at Wed May 10 12:03:44 UTC 2017
ssl.sh: #8861: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 9515 at Wed May 10 12:03:44 UTC 2017
kill -USR1 9515
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9515 killed at Wed May 10 12:03:44 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:03:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:03:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:44 UTC 2017
selfserv_9323 with PID 10938 started at Wed May 10 12:03:44 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:44 UTC 2017
ssl.sh: #8862: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:44 UTC 2017
ssl.sh: #8863: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:44 UTC 2017
ssl.sh: #8864: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:44 UTC 2017
ssl.sh: #8865: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:45 UTC 2017
ssl.sh: #8866: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:45 UTC 2017
ssl.sh: #8867: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:45 UTC 2017
ssl.sh: #8868: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:45 UTC 2017
ssl.sh: #8869: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:45 UTC 2017
ssl.sh: #8870: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:45 UTC 2017
ssl.sh: #8871: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:46 UTC 2017
ssl.sh: #8872: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:46 UTC 2017
ssl.sh: #8873: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:46 UTC 2017
ssl.sh: #8874: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8875: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:46 UTC 2017
ssl.sh: #8876: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:46 UTC 2017
ssl.sh: #8877: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:47 UTC 2017
ssl.sh: #8878: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:47 UTC 2017
ssl.sh: #8879: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:47 UTC 2017
ssl.sh: #8880: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:47 UTC 2017
ssl.sh: #8881: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:47 UTC 2017
ssl.sh: #8882: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:47 UTC 2017
ssl.sh: #8883: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:48 UTC 2017
ssl.sh: #8884: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:48 UTC 2017
ssl.sh: #8885: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:48 UTC 2017
ssl.sh: #8886: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:48 UTC 2017
ssl.sh: #8887: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:48 UTC 2017
ssl.sh: #8888: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:49 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8889: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:49 UTC 2017
ssl.sh: #8890: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:49 UTC 2017
ssl.sh: #8891: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:49 UTC 2017
ssl.sh: #8892: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:49 UTC 2017
ssl.sh: #8893: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:49 UTC 2017
ssl.sh: #8894: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:49 UTC 2017
ssl.sh: #8895: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:50 UTC 2017
ssl.sh: #8896: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:50 UTC 2017
ssl.sh: #8897: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:50 UTC 2017
ssl.sh: #8898: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:50 UTC 2017
ssl.sh: #8899: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:50 UTC 2017
ssl.sh: #8900: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:51 UTC 2017
ssl.sh: #8901: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10938 >/dev/null 2>/dev/null
selfserv_9323 with PID 10938 found at Wed May 10 12:03:51 UTC 2017
ssl.sh: #8902: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 10938 at Wed May 10 12:03:51 UTC 2017
kill -USR1 10938
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 10938 killed at Wed May 10 12:03:51 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:03:51 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:03:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12361 >/dev/null 2>/dev/null
selfserv_9323 with PID 12361 found at Wed May 10 12:03:51 UTC 2017
selfserv_9323 with PID 12361 started at Wed May 10 12:03:51 UTC 2017
trying to kill selfserv_9323 with PID 12361 at Wed May 10 12:03:51 UTC 2017
kill -USR1 12361
./ssl.sh: line 183: 12361 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9323 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12361 killed at Wed May 10 12:03:51 UTC 2017
TIMESTAMP ssl END: Wed May 10 12:03:51 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Wed May 10 12:03:51 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/tests.v3.24947 -t Test2 -f ../tests.pw
merge.sh: #8903: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id dave --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8904: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id server --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8905: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id ext_client --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8906: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict1 --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8907: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict2 --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8908: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:46 2017
            Not After : Tue May 10 11:36:46 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:49:06:bd:cf:b1:dc:df:cc:ab:91:7e:1b:cd:88:ed:
                    28:8c:03:d8:94:f0:a0:13:36:25:d6:5d:7f:b2:bd:a8:
                    69:a4:6f:f3:f1:c5:5c:24:73:26:29:e5:f0:67:59:81:
                    ea:d2:c4:a2:b1:0c:99:87:e8:d9:4a:9b:94:7c:4e:0c:
                    52:3f:bb:c0:49:83:5a:05:f7:65:ad:7b:f5:cb:6c:02:
                    e1:4a:eb:c1:e6:5e:30:9b:d5:1b:e9:7b:89:33:51:b8:
                    e8:1a:c4:c6:01:88:6e:8d:8a:95:d4:c5:b3:9d:96:fb:
                    cd:5b:4a:76:b7:28:e7:81:c0:9e:17:f2:86:fc:32:11:
                    de:73:26:34:f5:64:1a:9a:e5:71:44:1e:80:dd:7b:83:
                    1a:dd:0e:32:4a:82:af:69:1c:58:f3:ab:08:e6:d8:0a:
                    e5:9a:02:4e:88:c7:53:3f:7c:e9:31:15:ef:4c:79:a2:
                    cf:57:b5:9d:c0:b6:1c:c7:7c:77:c7:89:ae:02:45:e5:
                    c1:16:ec:48:8d:9a:5a:51:be:db:65:aa:b4:da:c0:7f:
                    ca:9b:17:8c:30:c2:ea:24:34:5c:73:aa:9d:75:d3:5c:
                    4a:1d:31:02:e6:ab:99:f9:e8:a4:d5:7d:d0:06:f9:d6:
                    ea:bc:ca:eb:1f:1e:9f:a7:3d:18:3c:b5:45:1d:a0:e5
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:5b:11:46:eb:5c:af:5a:ce:ec:34:ab:0a:12:0d:b1:
        2c:50:63:2a:20:5f:8c:7e:bb:16:e5:09:aa:9b:1a:76:
        22:de:ee:f1:7b:cb:85:f7:26:d4:57:50:7f:62:29:f7:
        b6:b0:f0:45:4a:13:41:91:1f:c3:e2:71:89:1e:80:7b:
        84:12:31:97:3e:7c:5c:3f:a9:28:b8:f5:25:a8:c8:7f:
        6c:bb:93:b1:b1:5e:19:aa:90:ed:b2:9f:db:b4:6f:f6:
        dd:c2:d3:14:b8:0b:d2:9d:40:16:c5:36:12:bb:b9:0f:
        2d:ec:5d:6e:4b:20:c4:9d:34:2e:f9:47:4f:a5:f2:6f:
        c7:4b:fc:ab:86:e6:89:3a:12:4d:04:46:aa:d2:a3:99:
        da:bf:95:e4:2e:f6:4f:bf:5a:f8:8c:08:49:40:fb:1a:
        ba:f6:23:83:a4:dd:8a:8c:c7:e2:05:32:f4:31:6f:24:
        50:8c:cf:86:63:b4:a2:1d:ea:2d:fd:92:c1:f0:e7:36:
        f1:3e:3d:a2:9b:bc:52:da:03:d9:1b:cc:78:e0:4c:65:
        39:02:14:3b:55:ed:d7:4a:93:37:f2:82:49:f2:02:d8:
        b7:bb:dc:3d:86:c9:b1:1b:b3:1a:5f:eb:a4:6d:31:b1:
        0b:6e:44:34:af:0e:21:7c:27:4d:64:f9:dd:80:48:47
    Fingerprint (SHA-256):
        86:6F:D1:4B:BF:BA:07:83:A1:A5:C4:63:66:CE:42:D2:D7:56:29:80:26:C5:50:D3:4E:82:D3:D2:A6:D3:0C:82
    Fingerprint (SHA1):
        5C:51:B0:98:F9:5A:79:69:0E:72:3E:B3:AA:24:7C:A4:4E:99:5F:15
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #8909: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:36:47 2017
            Not After : Tue May 10 11:36:47 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:ea:0d:0e:ef:f4:37:c5:24:a0:6e:fe:8a:1e:6d:ca:
                    a8:a2:03:66:78:30:a3:e0:a5:d4:7b:c9:b7:0e:14:77:
                    cc:2b:bd:7a:9a:45:3d:5b:4c:d9:eb:43:53:1c:ff:c2:
                    0f:2f:de:a2:7f:57:5b:7d:b2:05:88:9b:69:d7:c8:70:
                    25:9c:43:d2:17:4b:d4:17:b9:a9:57:6e:bf:2f:a6:0f:
                    6e:34:75:e4:d1:5b:ac:4e:84:6e:09:eb:ac:c2:0c:0f:
                    22:df:0e:51:1d:4a:9f:c5:5f:ec:fb:00:d5:d7:7a:1c:
                    c9:97:8f:f2:c9:a1:17:d1:2d:1f:aa:9b:2c:a1:ea:e0:
                    87:0b:6b:93:85:59:23:ae:e1:11:68:fb:25:b8:db:22:
                    c3:c6:33:03:39:01:7a:b2:67:86:53:d6:11:f2:4e:09:
                    cf:9c:f0:66:22:72:ab:fc:aa:4d:2f:4f:bd:50:49:12:
                    84:31:7f:f0:91:20:eb:d4:8c:fa:79:0f:ff:64:68:1f:
                    b1:2c:e8:a3:f5:66:1d:32:49:9c:ab:a1:5b:b6:ec:a6:
                    bb:6c:0a:69:6a:5c:ad:ca:bd:f3:2e:7b:db:8d:d7:4d:
                    9b:80:e6:86:4a:35:4a:4c:c4:75:d3:98:e3:47:02:d7:
                    02:44:c5:80:01:16:42:0f:b7:3c:4b:85:5e:1e:6c:7d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5d:e9:3d:08:57:c7:86:31:dd:d5:1d:27:46:85:8a:4f:
        63:73:19:26:5e:d0:c3:98:91:52:46:c7:e4:1f:b0:ca:
        55:1a:31:68:ed:00:3e:aa:fe:ef:74:11:f9:03:eb:5d:
        76:fb:b7:e4:ca:b2:d7:e8:66:37:15:1f:1f:fd:c1:c6:
        a1:9d:1f:95:f5:54:e2:78:2a:f1:62:e6:4e:29:44:9a:
        a3:d8:f6:95:19:85:65:61:aa:49:c3:99:65:2e:c0:2b:
        18:20:54:5e:95:46:bf:6f:7b:14:6e:af:96:8a:ac:4a:
        b3:da:14:39:b7:26:a9:89:6d:bd:5d:19:33:0b:0d:0f:
        06:46:5f:65:e1:c7:86:67:5f:f8:4e:a4:4e:fc:c4:4b:
        38:32:b3:65:fd:cf:3a:3c:c1:3b:7e:58:bd:5e:e9:df:
        3b:40:49:47:c4:7d:eb:e5:2d:c1:86:af:6f:92:a2:ed:
        f4:bf:ef:d6:8c:34:47:2c:fb:13:bc:06:12:a8:ae:dc:
        e0:f4:c7:25:1d:ea:d3:2b:11:70:0f:e8:ca:05:9d:cc:
        aa:92:9b:af:cc:63:42:8e:a4:ff:84:b0:e4:78:65:c5:
        bc:f7:7d:6b:4a:46:1f:0b:2b:57:ed:b7:bc:e4:f5:ca:
        1d:29:36:b6:04:0e:4c:ac:f8:68:96:3b:c1:fd:7c:60
    Fingerprint (SHA-256):
        54:84:A9:86:E1:81:92:12:AF:DE:5E:21:79:17:F2:7A:77:70:75:1F:6A:F2:E7:8B:2E:F2:A9:3D:1F:3E:19:1F
    Fingerprint (SHA1):
        BB:99:4F:EF:AA:E4:37:4E:59:B7:60:63:86:65:64:CD:93:32:76:73
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #8910: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id sdr --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8911: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice                                                        u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-dsa                                                    u,u,u
Alice-ecmixed                                                u,u,u
Dave-dsamixed                                                u,u,u
Dave-dsa                                                     u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
chain-2-clientCA                                             ,,   
clientCA                                                     T,C,C
chain-2-clientCA-ec                                          ,,   
chain-1-clientCA-dsa                                         ,,   
clientCA-ec                                                  T,C,C
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
chain-2-clientCA-dsa                                         ,,   
chain-1-clientCA-ec                                          ,,   
chain-1-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
Alice #1                                                     ,,   
Alice #2                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #100                                                   ,,   
Alice #4                                                     ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/tests.v3.24947 -t Test2 -f ../tests.pw
merge.sh: #8912: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/tests.v1.24947 -t Test1 -f ../tests.pw
merge.sh: #8913: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #8914: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #8915: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #8916: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Wed May 10 11:36:58 2017
    Entry 1 (0x1):
        Serial Number: 42 (0x2a)
        Revocation Date: Wed May 10 11:36:53 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 11:36:24 2017
        Entry Extensions:
            Name: CRL reason code
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #8917: Verifying TestCA CRL  - PASSED
TEST_MODE=UPGRADE_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Wed May 10 12:03:55 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Wed May 10 12:03:55 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Wed May 10 12:03:55 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #8918: ec(perf) test - PASSED
TIMESTAMP ecperf END: Wed May 10 12:03:55 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Wed May 10 12:03:55 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8919: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8920: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8921: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8922: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #8923: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #8924: pk11 ec tests - PASSED
TIMESTAMP ectest END: Wed May 10 12:03:56 UTC 2017
TIMESTAMP ec END: Wed May 10 12:03:56 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Wed May 10 12:03:56 UTC 2017
gtests: prng_gtest der_gtest pk11_gtest util_gtest
gtests.sh: #8925: Skipping prng_gtest (not built) - UNKNOWN
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (1 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (1 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (1 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #8926: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #8927: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #8928: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #8929: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #8930: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #8931: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #8932: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #8933: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #8934: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #8935: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #8936: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #8937: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #8938: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #8939: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #8940: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #8941: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #8942: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #8943: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #8944: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Wed May 10 12:03:56 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Wed May 10 12:03:56 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #8945: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8946: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8947: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8948: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8949: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8950: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8951: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8952: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8953: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8954: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8955: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8956: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8957: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8958: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8959: create certificate: sign  - PASSED
ssl_gtest.sh: #8960: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Wed May 10 12:04:03 UTC 2017
ssl_gtests.sh: Testing with shared library ===============================
Running tests for cert
TIMESTAMP cert BEGIN: Wed May 10 12:04:03 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #8961: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -f ../tests.pw
cert.sh: #8962: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8963: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8964: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #8965: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -f ../tests.pw
cert.sh: #8966: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8967: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8968: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8969: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8970: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8971: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8972: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8973: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -f ../tests.pw
cert.sh: #8974: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8975: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8976: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8977: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8978: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8979: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8980: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8981: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8982: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8983: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8984: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8985: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8986: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8987: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8988: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8989: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8990: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8991: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8992: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8993: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8994: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8995: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8996: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #8997: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8998: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #8999: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9000: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #9001: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9002: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #9003: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9004: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #9005: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9006: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #9007: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9008: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #9009: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw
cert.sh: #9010: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9011: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9012: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #9013: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9014: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #9015: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9016: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #9017: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9018: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #9019: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9020: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #9021: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9022: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9023: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #9024: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9025: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #9026: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9027: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #9028: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9029: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9030: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #9031: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9032: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9033: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9034: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #9035: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9036: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #9037: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9038: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw
cert.sh: #9039: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9040: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9041: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #9042: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9043: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #9044: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9045: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #9046: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9047: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #9048: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9049: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #9050: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9051: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9052: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #9053: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9054: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #9055: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9056: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #9057: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9058: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9059: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9060: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #9061: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9062: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9063: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9064: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9065: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #9066: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #9067: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw
cert.sh: #9068: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9069: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA.ca.cert
cert.sh: #9070: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9071: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #9072: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9073: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #9074: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9075: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9076: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #9077: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9078: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9079: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #9080: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9081: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9082: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #9083: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9084: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9085: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #9086: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9087: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #9088: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9089: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA.ca.cert
cert.sh: #9090: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9091: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #9092: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9093: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #9094: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9095: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9096: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #9097: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9098: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9099: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #9100: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9101: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9102: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #9103: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9104: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9105: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #9106: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9107: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9108: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #9109: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9110: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9111: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #9112: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9113: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9114: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #9115: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9116: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9117: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #9118: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9119: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9120: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #9121: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9122: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #9123: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #9124: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #9125: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw
cert.sh: #9126: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9127: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #9128: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9129: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #9130: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9131: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #9132: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9133: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9134: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #9135: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9136: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9137: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #9138: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9139: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9140: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #9141: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9142: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9143: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #9144: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9145: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw
cert.sh: #9146: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9147: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #9148: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9149: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #9150: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9151: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #9152: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9153: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9154: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #9155: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9156: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9157: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #9158: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9159: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9160: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #9161: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9162: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9163: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #9164: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9165: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw
cert.sh: #9166: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9167: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA.ca.cert
cert.sh: #9168: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9169: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #9170: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9171: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #9172: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9173: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9174: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #9175: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9176: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9177: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #9178: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9179: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9180: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #9181: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9182: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9183: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #9184: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9185: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw
cert.sh: #9186: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9187: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA.ca.cert
cert.sh: #9188: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9189: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #9190: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9191: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #9192: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9193: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9194: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #9195: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9196: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9197: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #9198: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9199: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9200: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #9201: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9202: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9203: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #9204: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9205: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #9206: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #9207: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #9208: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #9209: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #9210: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #9211: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #9212: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #9213: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw
cert.sh: #9214: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9215: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #9216: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9217: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw
cert.sh: #9218: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9219: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #9220: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9221: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #9222: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9223: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9224: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #9225: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9226: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9227: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #9228: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9229: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw
cert.sh: #9230: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9231: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #9232: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9233: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #9234: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9235: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #9236: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9237: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9238: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #9239: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9240: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9241: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #9242: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9243: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9244: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #9245: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9246: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9247: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #9248: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9249: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:49:0b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:05:05 2017
            Not After : Thu Aug 10 12:05:05 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:70:88:48:16:60:9f:c1:ff:b9:1b:1e:89:04:03:0d:
                    f7:1c:3a:f5:bc:3b:80:d1:08:f3:4d:d8:04:cb:d8:d0:
                    5e:52:54:5e:b4:8b:e4:db:81:54:73:51:27:5e:ff:3c:
                    f7:39:7d:d7:76:4d:dc:51:8a:12:82:d8:9b:77:7f:16:
                    04:4c:6f:63:0e:86:02:00:a3:38:0b:89:df:52:2e:c9:
                    f0:7c:9a:c2:97:bf:ba:03:ae:f3:84:5f:f7:b1:64:af:
                    5a:cb:e8:8c:88:e5:ff:7b:6f:3f:55:aa:ab:fd:7e:88:
                    6f:24:f4:76:fa:67:27:7c:8e:6c:03:33:5f:7c:bc:0b:
                    8a:d2:78:bd:20:e9:2d:5f:19:c4:a2:5f:2f:bd:80:6a:
                    37:73:76:93:ff:d2:55:7e:61:20:cc:36:bb:e9:a5:d0:
                    13:2c:b1:b4:4a:17:75:bf:59:f3:6c:b3:73:fe:2e:c4:
                    3d:6f:4e:b8:e3:7c:8f:53:b3:ab:b9:42:69:eb:fb:db:
                    d2:5f:ad:ca:e6:4d:f7:41:2f:7c:1f:19:b2:74:4a:b6:
                    dd:9c:fa:2a:e3:9d:67:b3:5d:6a:7f:93:88:b8:55:e4:
                    8f:c7:b5:0f:3c:80:5a:c4:85:6b:95:21:73:24:93:14:
                    18:66:f4:56:b7:46:d1:e3:89:71:79:be:5c:c3:58:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:1c:76:10:e6:94:86:c9:5d:10:7e:99:10:dd:d8:c0:
        09:b4:71:c7:dc:98:45:0f:90:e5:42:73:e4:10:af:7b:
        18:5f:c8:a2:6a:81:23:fa:d6:b8:d5:8e:27:a4:47:08:
        f8:b6:84:11:70:d2:75:f8:29:4f:be:18:24:67:ca:5e:
        ab:ec:f2:26:cd:9d:f5:7b:62:f1:03:40:3b:05:30:37:
        67:6b:68:12:de:c3:a6:80:a0:57:b7:25:48:53:ee:51:
        1d:5e:6c:4a:78:43:40:a9:24:59:4d:5c:46:29:8e:dc:
        ad:df:d5:73:f4:9b:bb:36:b3:88:56:9f:d4:f0:2e:f8:
        79:e0:bb:c7:93:14:88:6c:28:67:e9:f0:6b:52:ff:6c:
        aa:61:e0:e6:f3:e3:40:11:cf:b3:c2:7f:0c:0e:57:08:
        45:fd:a2:d3:7f:5c:ff:c5:cb:a8:98:b0:75:ac:7e:fc:
        84:10:8a:86:bb:e6:2a:14:b3:17:29:31:65:7c:fd:f1:
        5f:7b:a5:6c:d0:76:99:44:29:26:11:de:65:fc:12:08:
        b6:ce:f5:f3:80:02:8c:d0:ae:a4:cf:2e:96:b1:2e:a4:
        39:0e:c7:ae:a7:8b:68:a4:39:bf:6f:fd:b1:4a:9c:d7:
        c5:e1:b7:33:9a:54:d3:c3:e6:a5:ee:97:3d:12:17:7d
    Fingerprint (SHA-256):
        1A:72:88:AB:CA:B8:DF:D2:D0:1C:76:B2:D6:D0:E7:C7:E1:F3:91:97:77:CC:D0:32:06:1C:01:DA:6A:3F:3F:62
    Fingerprint (SHA1):
        B6:82:2A:DE:83:90:FF:8D:F3:2C:09:73:11:12:3A:EE:72:8B:39:15
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9250: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:49:0d
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:05:06 2017
            Not After : Thu Aug 10 12:05:06 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:44:46:0c:14:63:c6:2e:d3:df:24:c4:7f:9d:7c:fe:
                    83:b0:86:08:9a:73:dd:e6:ad:81:f5:1b:d7:0d:c2:3a:
                    76:3c:41:49:23:87:aa:63:e8:77:44:4e:ce:dc:29:2e:
                    80:4f:fc:66:d9:99:db:49:f7:c9:35:93:fd:a3:86:31:
                    78:ee:e0:3a:be:10:f8:d9:11:3d:04:7d:fc:d4:1a:25:
                    1b:e2:bf:89:6d:db:da:e3:3a:68:e6:95:b3:69:28:80:
                    60:20:c8:22:fe:f8:0b:ea:3b:25:15:33:4e:52:48:70:
                    f8:25:fd:e3:49:2a:3e:80:83:53:5a:01:ac:0b:25:cf:
                    e2:bf:e6:52:db:4c:93:62:45:d8:dd:9e:58:d7:6b:b4:
                    f1:d7:f1:6a:c1:e3:66:a8:14:75:e3:e6:d1:d6:33:b1:
                    1b:2c:77:23:28:d6:df:2b:a0:f9:57:7a:40:2a:e4:ae:
                    0d:99:9b:31:ea:b3:5e:9c:cb:d3:3b:ba:0f:36:04:c2:
                    7f:7e:6a:ca:de:0d:70:8d:d3:ae:47:1e:86:48:6f:15:
                    b2:f6:21:2b:99:e5:28:21:ed:73:5c:51:1c:0a:fa:59:
                    79:80:14:38:6a:0a:3d:eb:3c:ce:91:9a:78:ce:a8:32:
                    b5:73:84:7d:c7:b9:3f:db:7e:cd:70:8d:af:24:18:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:d2:6b:78:72:14:5c:80:43:9b:6f:48:8c:4f:e3:49:
        7d:e8:37:b1:41:43:05:3e:31:92:82:e0:e0:16:a4:4b:
        1b:03:99:53:8b:2b:d0:8e:83:43:f4:0d:71:8c:30:0f:
        88:26:66:a4:b6:9c:bc:dd:98:f4:76:ba:7f:37:58:4d:
        af:00:ad:4a:a1:23:eb:67:28:59:c9:6a:ff:17:ed:4f:
        fc:9a:88:90:c9:43:60:36:82:4f:e5:3b:b9:e9:b0:03:
        91:5b:b9:e3:11:4a:ff:8b:f4:b3:3a:47:77:ca:52:fa:
        9a:8d:74:1a:96:78:2c:f2:1a:e9:a5:0b:28:2e:3d:55:
        ac:cd:70:f2:3e:af:3c:94:e5:22:bc:46:0e:ba:85:ba:
        d5:10:5e:0f:e1:d6:cc:1d:f3:26:dc:9e:45:f3:6a:4b:
        c2:83:8f:d4:26:e0:4e:98:c0:b7:01:fc:dd:8c:8e:5d:
        b7:98:a8:76:dc:fd:79:7d:9d:55:21:76:02:32:f8:25:
        05:d3:98:ff:56:68:c9:b8:cb:d7:50:5a:61:cf:9e:59:
        e8:19:94:75:01:af:40:58:56:cd:2f:a6:1b:81:5a:58:
        88:56:69:12:3d:3b:22:fa:79:64:79:9e:87:bd:e1:de:
        d6:57:1e:6a:82:33:13:bd:4d:a7:57:5e:72:3d:68:52
    Fingerprint (SHA-256):
        F2:C7:5A:8E:7A:78:4B:1F:2E:32:15:87:A9:C5:9D:9C:7F:10:14:C7:77:09:D5:FF:66:B9:1B:EC:16:30:A5:F3
    Fingerprint (SHA1):
        35:85:C7:25:12:50:F4:D9:8C:B6:12:81:03:96:23:72:CE:B1:5B:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9251: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:49:0e
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:05:07 2017
            Not After : Thu Aug 10 12:05:07 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:f0:09:df:ad:04:9c:e1:4d:f7:dc:90:f0:eb:c7:69:
                    2d:91:aa:41:ca:29:12:03:00:94:78:e9:41:5f:3a:1c:
                    a8:51:ea:62:1f:01:cc:21:4a:ba:96:b2:ee:e8:b0:96:
                    ea:af:78:ab:bd:e6:a9:e4:e5:2c:2b:1d:1d:a9:b4:d0:
                    8b:d7:aa:0c:62:92:6d:a0:d2:a5:eb:70:43:7e:0f:41:
                    20:bc:f2:3f:cd:10:42:70:80:7e:5a:b1:9f:e0:9e:58:
                    ac:c0:47:fc:95:8a:97:a2:27:cf:63:a5:28:e4:57:25:
                    5e:50:18:46:26:c8:21:d7:d8:65:29:5a:37:28:78:bb:
                    bd:c0:ff:7d:a6:45:2b:6f:dc:e0:93:ea:f8:97:2f:a7:
                    fd:11:e8:b0:bf:c5:eb:1b:f2:96:98:e7:8f:cf:d6:95:
                    e2:04:8a:cb:1c:fa:c8:94:49:96:74:af:14:82:f4:51:
                    59:b8:b4:72:47:54:06:a1:f5:b1:29:1c:ba:ae:e3:db:
                    85:20:4f:04:4a:2b:30:17:4b:13:d0:2b:94:ae:8a:a1:
                    2b:90:1b:71:33:af:da:5a:86:7b:aa:8f:90:3b:f6:57:
                    04:3e:8d:8b:4e:60:1c:28:7b:04:61:f7:c8:16:53:5f:
                    01:01:bb:43:93:42:19:5e:1b:cc:a9:47:6f:e8:12:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:44:c3:43:20:4a:80:60:9d:f4:1c:b8:e9:3b:22:49:
        4b:31:b5:9e:4e:b0:27:aa:53:17:cf:7c:9b:26:a3:10:
        6f:74:a5:57:e8:d3:b5:e9:dc:b6:fa:4e:c1:b5:0a:29:
        7e:2e:a8:fd:44:8e:cf:34:68:04:02:b9:83:25:d2:8e:
        f4:d1:7a:00:b6:be:cd:28:22:6f:96:7f:3c:6a:ee:7b:
        e7:59:1d:e4:f3:f2:6c:16:ba:b1:ee:36:2e:b2:04:cf:
        84:46:24:25:78:e2:8c:8a:f4:27:23:2b:a1:28:3c:3d:
        8a:58:73:2e:29:7c:a5:09:bc:5c:ba:54:b3:6b:ae:0f:
        85:67:e8:20:bf:61:37:6f:65:ee:be:e8:d0:3b:8f:04:
        c1:f9:2f:5f:bc:90:d5:eb:97:32:20:2b:1a:8d:45:eb:
        3c:9d:90:c3:bb:75:59:86:52:00:a8:38:da:a8:43:a7:
        b1:b1:e3:1e:29:90:92:d8:c2:ce:d4:51:28:e1:98:d2:
        a5:9f:c5:50:77:39:75:d1:08:78:95:37:72:8a:df:14:
        5f:fd:0f:71:94:1b:1f:fe:aa:d3:67:c1:f0:fb:b7:e3:
        ac:39:e3:1f:47:ce:97:88:e5:48:b8:42:a4:9d:a3:2f:
        00:a3:07:80:11:24:41:4b:34:c9:c4:d4:50:37:d6:a0
    Fingerprint (SHA-256):
        DE:1C:CD:92:E6:87:3D:C0:75:E2:40:7B:E8:65:E1:FC:16:4D:BC:1D:CB:2D:19:76:14:86:64:FF:61:21:E3:1C
    Fingerprint (SHA1):
        D6:56:A3:16:B7:ED:13:51:E9:77:62:30:9B:A0:91:45:41:4B:38:AD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9252: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:49:10
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:05:07 2017
            Not After : Thu Aug 10 12:05:07 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:a9:cd:48:1a:3c:a9:2c:9a:df:23:02:c9:fd:81:03:
                    42:a3:29:bd:99:cd:8e:b3:48:48:29:51:d2:c1:df:1e:
                    ca:0b:d5:1d:57:ed:ab:a0:d2:63:59:19:0a:a0:5d:ff:
                    99:e8:e8:2c:af:41:6f:cb:72:0b:1f:6f:fa:5a:53:2f:
                    de:a3:7e:c1:98:c5:dc:14:5c:c0:0a:3f:2e:af:35:5d:
                    a5:5a:2b:1f:3c:7f:c7:98:21:5d:b4:2b:9e:ca:04:46:
                    ca:53:45:08:30:51:4e:86:14:5e:f8:22:78:c9:be:c3:
                    5e:b5:dd:f5:84:3b:8d:6a:43:db:0e:0a:e7:7d:68:7b:
                    9e:dc:10:d3:7c:4d:08:43:44:9d:e3:ec:b0:44:22:74:
                    77:79:86:dc:e8:cd:12:61:5a:5b:d6:9f:87:86:ba:cf:
                    12:ee:b9:3f:9e:61:95:19:2f:8d:b1:aa:00:15:3f:27:
                    d3:13:d1:82:2c:05:d4:f1:76:60:1d:1f:5a:a0:c8:50:
                    06:08:06:cf:25:11:23:cd:38:eb:bb:ae:52:d1:c8:a6:
                    dc:b3:8c:aa:3b:75:92:12:ba:bf:9e:b1:2d:e0:1a:34:
                    a3:31:32:15:9c:a5:b7:3d:fb:80:8d:3c:6b:44:22:49:
                    29:ff:c3:b5:4b:e1:44:84:3e:40:62:1f:9b:05:04:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:b5:bf:f4:d2:d5:26:4c:73:52:de:8f:8c:45:ff:7e:
        c3:28:2c:b3:ed:f7:14:8a:fb:c0:d0:79:42:06:25:96:
        77:42:41:b2:6a:cb:a3:bd:8d:ea:62:a8:90:40:dd:2a:
        f8:8d:3f:66:59:9a:06:9d:11:e0:e5:06:4d:7c:37:0a:
        c2:e7:d2:33:72:94:6f:01:9f:e0:3c:35:da:bf:b7:56:
        63:8f:00:59:7d:d5:89:cd:be:1d:ce:39:d9:9b:41:19:
        5f:c2:8c:b6:8b:8e:f7:cc:c4:b7:a0:92:63:ee:6f:a1:
        c8:44:8b:1d:e1:80:3c:a6:a8:0d:b9:3c:88:3f:15:ed:
        fc:53:da:02:a8:40:a7:7c:9b:5a:93:28:a0:b8:24:d2:
        21:88:b9:df:94:79:a6:1f:f5:86:47:3e:d0:de:45:d8:
        f4:fb:c3:3e:a3:13:81:25:cc:ef:f0:49:2c:82:b2:f9:
        ac:d9:05:25:fd:93:d7:fe:ed:a2:e7:0a:39:28:54:a4:
        66:15:3f:30:f7:17:f5:9c:49:99:f9:f0:e4:40:08:90:
        16:ff:bd:be:3b:3d:7c:c3:2a:ba:48:9b:b4:a7:92:2b:
        fc:7b:68:89:ba:52:ee:c1:ca:98:34:9d:49:2b:94:f5:
        7c:62:d9:ca:ce:c2:0d:c2:a8:94:c0:b7:af:5b:81:9b
    Fingerprint (SHA-256):
        29:93:3D:4D:3B:AB:C2:48:71:B0:B7:FC:8B:CE:0D:63:0E:75:D1:F7:01:C0:E5:3C:82:6A:39:B9:26:13:C6:F9
    Fingerprint (SHA1):
        86:71:27:23:A0:90:6C:B7:D3:33:A4:9A:82:28:09:5D:BC:21:54:46
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9253: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:49:11
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:05:08 2017
            Not After : Thu Aug 10 12:05:08 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:e3:85:92:57:d3:75:85:aa:71:d7:bc:a3:c5:a2:eb:
                    43:00:1e:8c:dc:8f:ab:a7:9d:d4:c8:3d:b4:9f:47:97:
                    1d:3d:48:e3:18:bd:b4:07:38:0d:f9:59:8f:56:2d:e2:
                    4a:74:1a:db:1c:71:bd:8c:db:5d:e9:7a:7d:85:9c:63:
                    bb:db:b2:d6:e9:d0:a8:5d:c6:88:d3:bc:91:b9:21:25:
                    fa:9f:ce:c1:3e:ae:03:da:d6:50:1e:53:90:25:4f:4e:
                    6c:5b:6c:92:bc:ef:63:db:33:17:38:07:c3:6a:87:51:
                    c8:76:98:a6:64:54:62:71:a0:2e:e1:78:60:71:39:16:
                    f3:05:09:93:78:6b:83:72:db:61:ab:5f:85:3b:73:d1:
                    51:ad:2b:bd:91:5d:a5:43:2a:c2:6a:9d:a5:8b:8b:28:
                    60:ac:40:d1:ba:03:05:45:2e:f2:aa:f5:c6:63:c0:ae:
                    44:00:19:36:6c:4b:84:8a:6f:b1:ed:62:df:00:94:cd:
                    2e:d4:4d:c3:94:b1:c6:20:25:c9:b4:eb:bb:56:4f:7b:
                    70:c2:6d:67:57:a4:62:f9:ea:95:2b:98:98:3e:20:d6:
                    f7:e5:09:64:ef:04:a0:30:0d:44:f8:bd:29:a2:b0:15:
                    2b:16:23:05:e0:d1:fd:86:73:81:87:b0:74:75:74:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:dc:19:8d:07:2d:0b:13:3c:b6:14:73:5b:71:bc:28:
        ff:00:78:de:b7:88:6a:d5:58:65:c3:78:85:89:8b:e2:
        02:5a:3a:29:94:f7:bb:02:76:93:45:e7:9c:15:b6:97:
        f2:f8:93:09:27:0d:70:91:50:46:a2:bf:48:59:94:2c:
        cd:84:22:a8:84:cb:08:44:40:0b:2a:5f:bb:d7:ea:8d:
        78:aa:fe:6a:9b:b5:9c:e6:ce:f4:f6:a5:03:08:35:39:
        12:12:cf:7a:cb:7b:25:bc:93:cf:14:b0:19:d2:f0:bc:
        65:71:a2:0b:2b:ee:90:c2:a4:95:3e:58:6a:19:05:fd:
        0b:94:0b:7d:66:3a:f8:68:fb:9b:79:64:99:1d:4c:e1:
        94:3b:8c:82:ae:27:cd:43:70:c6:63:07:9e:46:dd:eb:
        e0:66:27:e4:a6:e3:78:91:58:4a:48:63:c2:65:ab:a6:
        1b:65:29:58:f1:38:23:79:8f:f8:bc:fc:10:19:9a:20:
        72:5b:20:0d:b4:a0:2a:94:eb:23:ad:3d:3a:9b:90:9e:
        ed:5f:a3:f1:eb:57:00:43:c4:c6:57:b4:b8:ab:a7:14:
        f0:03:68:e0:f0:df:a4:04:89:50:55:82:19:e3:1f:f3:
        9f:d6:c6:58:cb:b5:e4:32:71:2f:01:ae:74:d2:d7:87
    Fingerprint (SHA-256):
        71:CE:02:4C:5B:7C:6F:62:DB:22:B3:42:0A:96:22:C1:BE:CE:2F:1E:CC:74:98:03:48:B7:C4:E8:AE:5F:FE:7B
    Fingerprint (SHA1):
        A7:A4:EB:E6:44:05:0C:1D:2A:59:7E:8B:F0:F9:8C:90:B5:47:BF:7A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9254: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:49:12
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:05:09 2017
            Not After : Thu Aug 10 12:05:09 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:5d:01:e4:ef:83:66:91:34:09:97:1b:f9:d5:4c:f8:
                    65:f0:6e:f3:7d:ab:9d:49:4c:88:77:d2:81:1a:c9:27:
                    65:cb:1f:5b:c3:fd:e2:c0:6b:48:d3:ed:00:69:83:22:
                    f9:f7:02:ce:d6:35:d1:6c:6d:6b:d8:6d:85:7a:54:f0:
                    31:1f:18:00:f3:07:e3:87:7e:44:68:a2:8f:5c:80:5f:
                    22:c6:d2:25:db:8b:dd:05:3f:b1:e8:39:38:7b:e2:57:
                    d2:2b:8c:8c:d5:66:d6:5f:8e:08:fe:58:3c:c6:a6:2d:
                    5b:74:cb:a8:68:4b:f1:fb:86:67:0f:ce:23:f4:37:e1:
                    09:1f:a0:b2:e5:34:6c:86:53:94:7b:bc:aa:98:91:53:
                    c0:73:04:db:ff:58:fb:78:76:af:e2:14:4d:ee:5b:08:
                    7e:16:f5:17:6c:b7:3f:99:5c:c4:12:5e:28:d7:46:d6:
                    89:03:f1:81:a5:db:20:da:76:a0:96:85:3a:51:a1:73:
                    65:79:8a:35:c2:d4:10:af:63:5c:29:00:f1:b5:0b:72:
                    1b:cc:ef:34:63:fc:34:11:f2:b2:a2:bd:87:18:da:a8:
                    83:bb:6d:03:25:87:ba:4b:dc:38:23:11:72:4d:7f:d7:
                    ec:03:60:59:8a:f0:f5:82:10:ad:1c:c4:75:03:2d:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:ec:60:25:09:76:fa:8e:0f:69:84:1f:f9:be:6d:4d:
        d8:2a:df:f1:98:89:74:31:3e:8e:ba:c0:9e:71:44:86:
        88:c2:23:0b:c7:03:4b:c3:3f:93:ef:f7:54:39:47:26:
        c8:9d:64:e5:42:ba:32:71:04:6d:c3:d5:91:a3:ba:d5:
        97:4d:b3:5a:0a:c9:b3:4d:c1:f8:e6:a4:d4:84:f9:51:
        a8:7e:2f:67:4b:31:5f:9f:e1:27:24:87:8b:05:16:de:
        35:9a:8a:ae:a1:fa:95:2d:fb:68:31:0c:e0:ab:65:90:
        b3:51:9d:25:d7:6c:4b:06:73:c9:36:0a:79:09:2d:57:
        18:84:74:54:ad:9f:f0:d1:3f:a3:4c:1e:23:41:0d:fa:
        92:3f:f8:91:f4:2c:97:e3:cd:dc:29:b0:fb:10:38:97:
        0e:a7:91:1f:5f:a8:3d:5e:e3:71:a9:21:c2:4a:4f:7e:
        82:18:27:39:14:98:68:b4:8d:21:d0:b3:fc:e2:85:d4:
        c6:81:fa:df:b3:be:c8:4b:73:12:11:2c:49:c5:a6:0c:
        25:be:92:06:e6:cd:64:bc:9b:c9:1b:47:44:25:86:e4:
        74:cb:04:63:e9:c8:2e:8d:cd:17:ea:cc:de:2e:e4:d0:
        7a:33:b1:d0:8a:5e:26:59:b7:a6:76:83:98:0f:b3:9d
    Fingerprint (SHA-256):
        63:CF:16:3B:FA:64:30:48:24:77:7D:47:A2:1C:50:F8:88:A5:20:99:D2:EC:85:21:8C:B3:23:E0:93:6B:46:F2
    Fingerprint (SHA1):
        84:22:C4:FC:3B:7F:05:19:EB:CE:03:F4:3D:58:11:C7:F3:4C:39:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9255: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:49:14
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:05:10 2017
            Not After : Thu Aug 10 12:05:10 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:3c:38:d3:d8:aa:1a:93:7d:ea:3a:e2:3f:7a:b3:89:
                    9f:58:1a:a7:65:5c:f6:bf:af:91:bf:22:cd:3c:9c:f0:
                    fb:de:4f:2e:a6:0c:98:61:ba:58:5a:94:e4:74:d9:a8:
                    aa:6b:df:66:39:6d:90:70:9e:c8:4f:cd:0e:f0:e5:c3:
                    35:ec:35:ce:0e:95:4b:55:be:5d:82:12:b6:24:ea:8f:
                    51:c2:fc:88:a3:9b:d0:dc:83:98:01:3b:90:9b:98:5c:
                    83:f5:d1:36:80:92:b5:84:bc:ef:c8:cc:e1:30:0d:36:
                    e1:06:6f:1a:eb:9e:c1:78:b1:d9:0a:73:d9:0a:8a:61:
                    55:39:31:cd:43:f7:e0:8c:0c:51:8b:26:4d:2e:05:d9:
                    58:d5:43:0d:bb:9d:fd:9f:3c:34:db:c9:35:ca:ef:e5:
                    59:0b:66:20:ab:3f:de:61:60:0f:9b:e7:79:50:c1:d4:
                    77:a7:8a:42:98:7d:8b:ab:1e:60:5e:27:eb:70:3c:a5:
                    2c:87:ec:ea:37:46:94:ea:21:de:29:92:1b:ef:4c:47:
                    22:dc:ce:67:6e:a5:7b:9f:97:7b:50:4e:c7:68:f2:bb:
                    13:d5:27:11:a9:86:52:2a:27:27:d7:66:22:06:e9:d8:
                    0e:f4:67:70:19:c3:8a:a3:95:a2:2f:02:39:82:a7:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:bd:40:47:6f:17:cc:bb:3e:a2:4b:35:da:e8:3f:2d:
        d5:32:53:96:83:d4:fc:57:b1:2a:14:ca:fa:59:a2:47:
        c3:8d:55:bf:4c:b2:7e:ab:fa:f8:12:af:26:32:08:80:
        eb:d8:39:1c:56:c1:67:b6:42:20:45:34:56:ca:80:f5:
        3e:bc:be:9b:00:ba:65:2b:1c:48:3c:b5:1c:88:03:e4:
        1a:f2:71:2a:71:6c:15:a6:23:f0:89:87:74:88:3d:4c:
        85:3e:6a:5e:d0:6a:af:c8:04:9f:be:92:5d:95:35:6a:
        0b:c8:78:95:c8:b4:50:62:13:5a:40:e2:02:84:8d:16:
        15:c9:81:f2:6a:d3:c1:fd:12:21:b2:50:7d:ed:d1:0b:
        7f:67:93:24:ad:c4:7b:e9:8c:a4:f3:79:f2:94:16:7c:
        b4:28:c4:6c:6b:7f:e9:44:f2:9c:0e:fd:b1:75:9b:7d:
        af:8b:01:79:7f:8a:35:33:80:45:5d:47:31:38:c0:69:
        1a:4e:de:cf:8c:a4:df:f5:19:a8:3c:88:3c:c1:51:79:
        bf:8a:a1:fb:d6:e4:e2:d4:03:2d:81:a1:ce:b6:23:ec:
        9e:c4:1f:9a:8d:63:8b:31:e5:62:0b:a3:ff:ee:94:b8:
        9a:b1:2e:05:95:ae:c9:3f:e5:88:3f:3e:47:c2:37:c3
    Fingerprint (SHA-256):
        32:1E:A5:AA:FB:36:B9:74:9B:E0:1D:3D:A9:5D:98:A4:87:64:FE:49:64:78:34:F4:60:28:B5:86:8F:89:AE:E6
    Fingerprint (SHA1):
        11:DC:A4:FC:9F:DC:A3:F0:67:B4:43:56:F4:02:2A:93:25:4B:E6:78
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9256: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:49:16
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:05:10 2017
            Not After : Thu Aug 10 12:05:10 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:fb:c9:a1:b2:ac:09:55:66:50:2b:91:4f:12:2d:2c:
                    cc:33:e0:d5:99:d3:5a:e7:e9:68:d6:d8:93:eb:45:d9:
                    e2:e4:9e:15:65:f2:19:49:aa:d3:3f:05:8a:f9:2f:7b:
                    6a:a1:db:ce:4f:8d:b5:26:47:21:d5:be:89:5f:14:ad:
                    60:30:8b:0a:7c:20:3b:91:24:c4:27:4d:65:d6:a8:b1:
                    a3:8c:06:ac:9f:e7:c9:fb:81:7a:5e:60:8b:ca:5c:52:
                    26:ae:05:29:07:64:25:33:9e:37:96:0f:1f:d0:b0:80:
                    23:65:65:c0:b2:f5:25:66:2a:54:27:6c:26:f6:31:78:
                    0b:2f:e6:73:c2:88:50:ab:a8:25:6b:c5:7d:1b:65:b1:
                    ea:3b:d4:7b:56:bb:33:3e:83:54:a8:d0:4f:d5:7f:31:
                    f5:d1:d7:3b:07:4a:d2:4d:66:55:a4:15:83:89:88:8e:
                    0d:a2:6f:25:44:0f:51:58:c1:78:6e:a9:54:31:2f:5c:
                    86:e0:f7:d1:7b:b2:b3:69:09:11:24:06:6c:78:04:25:
                    19:45:8f:13:5b:e0:81:b2:4d:40:24:7c:ef:fd:19:79:
                    9f:bd:8b:7e:70:f7:b7:43:82:0a:c5:0c:d4:ac:b9:84:
                    86:63:c7:32:14:ef:54:8b:12:e7:99:c7:de:56:ac:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:2c:5a:f8:35:a4:33:8e:a6:4c:c5:49:95:50:49:e1:
        c6:32:f2:1e:85:eb:17:cf:40:6d:5e:6b:c5:26:dc:4c:
        1a:71:11:c5:4a:c5:a7:65:f1:f9:e3:fe:05:ca:50:ef:
        93:f4:e9:db:18:0c:d9:2a:2f:5c:41:06:5b:e8:b9:ad:
        8e:e9:12:0c:4b:8e:ec:65:f2:79:bf:17:1c:4d:ba:82:
        e7:da:22:8a:ab:64:5a:a5:1b:70:c0:a4:15:94:b9:9e:
        c5:d4:14:fb:4f:a7:93:1f:9d:29:c8:4f:1d:e6:c5:11:
        e8:40:29:84:08:2b:3b:fa:90:dc:6f:5f:0f:c7:ef:df:
        3d:81:3f:ce:7d:72:dd:6c:68:e2:29:c1:ee:93:60:b5:
        84:27:1c:e0:06:ea:00:98:0f:cd:3f:a6:e8:8e:6d:1a:
        f7:e1:60:c1:ba:80:7e:48:8f:04:b6:63:3d:d3:87:6d:
        d5:8c:60:96:49:40:b6:24:29:18:3a:07:22:c2:d9:ff:
        24:74:f6:f0:c9:2a:b9:4c:1a:e1:a9:c9:2e:f0:c4:5d:
        09:a1:3f:2e:2c:9f:2f:3b:e4:df:8e:f1:65:18:46:cd:
        a3:72:46:e0:f0:60:a4:1a:a5:af:c9:68:47:32:58:c1:
        88:d4:7e:e7:98:b2:cd:76:e1:d7:64:96:c3:2c:8f:b6
    Fingerprint (SHA-256):
        29:BA:7C:D3:96:BC:06:DA:8D:8F:D2:30:09:38:10:2F:28:09:D9:A8:1A:B6:E3:05:24:53:9D:F4:5E:00:16:21
    Fingerprint (SHA1):
        48:9B:C3:C3:07:60:87:FC:3E:11:FA:BA:81:FD:ED:17:C7:61:36:E8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9257: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:49:17
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:05:11 2017
            Not After : Thu Aug 10 12:05:11 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:d4:46:72:4b:b0:02:3f:c3:3e:bf:34:41:28:89:ee:
                    a0:19:45:a5:08:da:8e:fb:3d:cc:33:73:ca:ac:c5:ee:
                    a5:4f:40:41:78:d0:d2:aa:30:d1:aa:29:f5:12:02:81:
                    e8:07:17:d9:3f:c6:b5:a2:d8:1e:ab:1f:1a:bf:4c:25:
                    44:16:70:96:eb:66:a5:51:ac:6d:89:83:db:90:10:34:
                    40:8b:71:67:a5:86:2b:1e:37:8e:af:b6:1f:9a:c9:17:
                    b3:07:2b:4f:6e:68:19:97:75:e4:ad:6d:21:2b:11:cb:
                    1f:75:b0:a7:79:06:77:9f:79:40:2c:6f:3f:c9:f4:11:
                    ee:f0:5e:af:0c:19:e7:e2:1b:26:56:bc:65:7b:76:8f:
                    94:44:e7:b3:1a:56:85:ea:97:02:5c:05:d4:7c:4b:4d:
                    86:5f:13:3e:e4:69:9e:ed:ee:51:31:d1:48:7e:e1:fc:
                    37:5e:d1:72:36:be:03:3c:33:f3:f8:67:97:9f:29:30:
                    04:11:b5:de:46:1e:9c:44:f4:c8:4f:d6:e1:98:ae:8a:
                    de:f6:57:f6:aa:75:e6:36:9d:e6:55:f8:ca:f7:56:36:
                    48:7a:88:0a:0e:ae:8d:33:fe:fa:2c:33:f1:77:65:16:
                    c6:1b:1e:a5:df:43:7b:43:1f:50:8d:20:1b:c4:14:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:3a:69:d2:f4:e5:97:49:1c:56:37:66:61:56:b0:e4:
        17:5a:b1:39:5c:e1:5c:0b:9d:a4:ae:32:87:79:9c:ce:
        c2:75:ef:8c:fa:dd:76:14:f5:2d:3e:40:c6:c0:b8:5c:
        2c:0e:32:d1:a0:f4:6d:a6:3c:37:a1:61:2d:17:80:b6:
        ee:e9:38:ed:d5:31:99:3c:07:13:af:75:12:eb:bf:b3:
        da:1c:3a:92:b8:61:02:b9:7a:33:fc:74:3a:66:87:1f:
        7a:7f:b4:c0:73:8e:9f:39:ea:a7:40:b2:f4:a0:39:ea:
        11:2d:17:c1:a6:b3:e8:6f:11:48:9f:e6:6a:b8:23:ff:
        68:8c:be:cb:d3:e8:b6:db:63:a8:2b:dd:df:aa:5c:02:
        48:33:39:65:bb:ca:c4:4f:9a:6f:b1:1b:73:1c:87:76:
        9c:4e:3c:37:55:49:cd:b8:9e:ca:ca:d4:b4:60:39:01:
        bb:ba:f3:b5:b4:82:28:d9:34:34:1d:a0:5b:73:a2:5f:
        29:68:6e:71:4b:eb:49:2e:25:83:43:c4:18:f3:7a:aa:
        b3:cd:aa:a6:6c:3f:c1:5d:11:40:8b:bb:1a:45:fb:3b:
        f0:49:72:5c:15:18:d3:a2:de:d9:5a:1d:b6:b0:bf:50:
        a6:d5:2a:cd:b6:59:a6:42:2f:2d:66:25:42:da:9e:60
    Fingerprint (SHA-256):
        79:D5:56:24:5E:D1:CC:6A:DB:AF:D5:85:4B:01:DA:76:16:FA:3D:77:0C:F1:8B:32:67:6F:1D:CB:32:3D:05:B7
    Fingerprint (SHA1):
        23:95:CA:DE:63:4D:5D:9E:BB:D2:62:49:90:8C:CC:F8:30:54:52:3A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9258: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:49:19
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:05:12 2017
            Not After : Thu Aug 10 12:05:12 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:86:d6:cd:0f:b6:f4:72:df:61:4e:5b:6d:4d:f5:75:
                    cc:42:0f:1c:7b:57:aa:e9:03:1c:12:a2:ac:6b:15:c1:
                    3a:da:dc:de:ef:62:30:ea:ae:19:02:14:2f:d4:6e:9c:
                    2f:96:1f:a4:d1:a9:5f:14:df:1c:e1:39:a6:32:e4:ea:
                    60:0b:0c:d5:72:91:b9:4e:b0:41:40:71:94:dd:62:19:
                    1d:b0:98:b3:67:6f:01:66:8b:9e:4c:55:4a:60:ff:db:
                    d1:fa:2d:57:63:95:ab:18:44:5e:3f:08:08:c9:a7:8b:
                    28:74:dd:5c:d9:74:fd:c7:e4:56:7d:eb:3c:4c:f9:f2:
                    8d:19:f7:8f:a1:5d:ec:8e:d5:03:6f:e8:2f:67:48:c1:
                    0f:ba:3d:d6:ce:aa:b7:99:3d:d2:4f:e3:e1:ee:b6:fa:
                    1a:bd:d0:8b:ca:f1:cc:9f:ee:76:9d:15:61:6c:2a:64:
                    88:55:70:0b:79:f2:17:1b:3d:e4:05:12:df:10:be:b6:
                    39:98:fd:ed:a5:3b:4c:2d:b7:e3:5f:f6:1d:45:6b:24:
                    fb:51:f7:88:de:73:a5:2f:ef:85:0f:ef:53:6d:87:8a:
                    05:39:ab:2f:9d:29:b5:23:3f:d4:98:ce:21:08:0f:21:
                    f2:58:fa:59:35:12:a9:1c:14:56:ca:48:cd:76:06:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:a0:5c:da:b3:d3:3a:df:b2:76:ff:a7:23:10:49:e2:
        87:33:41:2a:04:9e:da:63:c8:ad:63:05:48:fe:45:53:
        56:85:94:1c:44:63:c7:0e:0f:95:41:86:9c:82:a6:22:
        4b:d7:cc:cb:68:29:86:27:02:04:48:dc:08:b0:71:0f:
        f2:39:53:f1:f2:9e:78:75:af:01:6d:0b:3d:60:d4:1d:
        56:48:1d:4d:6b:c8:0d:eb:f5:4d:2e:a1:71:2e:cb:36:
        d7:c7:18:f3:46:4a:63:76:28:08:59:49:14:1a:7d:b6:
        56:1e:00:ec:66:95:45:0c:b4:93:8d:b8:43:e2:a4:ec:
        2f:83:1f:40:44:4f:e7:e2:a3:fb:bd:e6:15:48:19:7d:
        ae:ff:ca:bd:1b:5e:af:f1:e6:55:a5:68:3a:f3:90:a4:
        44:3c:12:98:a4:28:94:f1:cf:72:82:d9:cf:11:90:9f:
        c6:d3:6a:c4:2d:a4:b3:36:b6:15:99:d6:d6:8d:9c:d9:
        53:5b:00:dd:fd:e4:01:d8:37:3b:a9:50:6e:fc:5f:32:
        1c:c4:fd:76:e5:2c:d6:1c:2c:4c:6e:4e:a8:1d:7f:d4:
        b8:96:8e:dd:a8:5d:fb:be:90:98:8c:71:32:c3:d4:de:
        09:63:f0:e7:8e:9c:69:da:03:bb:bc:a8:53:55:6b:8c
    Fingerprint (SHA-256):
        E5:A6:CA:1D:C2:93:1D:50:AA:D0:4C:D0:79:46:40:78:3D:93:48:92:72:4C:F0:07:2D:29:8E:5A:DD:F3:54:B5
    Fingerprint (SHA1):
        EF:84:A7:2B:64:46:A4:57:03:EA:53:60:38:C2:61:70:11:29:78:69
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9259: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:49:1b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:05:13 2017
            Not After : Thu Aug 10 12:05:13 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:47:18:1b:97:5d:7e:e2:5c:9a:24:e3:3f:6e:22:71:
                    2a:22:28:0c:55:ba:88:0e:5c:94:f9:21:bb:d1:04:61:
                    7f:03:4e:ed:1a:92:3b:41:04:06:ca:f8:03:a6:dd:f7:
                    fa:96:b9:d5:ac:4e:18:96:ea:ac:5c:de:c9:47:e7:8d:
                    8d:2f:ae:45:5f:72:37:b0:ad:73:0a:bd:b2:c6:8a:bf:
                    8b:6e:c2:c5:d9:20:02:20:05:c2:c7:e8:d5:fc:f5:fb:
                    84:5a:67:d6:62:68:f3:01:75:5a:fc:7a:3f:0b:96:1f:
                    77:ab:35:63:f9:d4:f5:8c:39:ca:11:31:0e:9e:1b:8c:
                    fb:30:62:eb:5d:80:29:71:96:ee:00:c6:dd:9c:cd:fb:
                    44:6b:23:23:1a:e6:05:1e:54:2c:07:b3:58:20:aa:e5:
                    6b:9d:27:d4:6b:11:e1:7e:95:22:62:09:87:4a:70:f3:
                    8a:ff:dd:a7:54:4c:18:11:0d:10:c2:ad:33:1b:2f:c6:
                    2c:02:b4:3c:a0:9d:53:5f:d4:d3:59:0a:85:86:2b:09:
                    80:51:a6:cd:c1:9e:57:d9:2f:92:5c:7b:ad:b4:cc:69:
                    d4:4d:52:4b:4f:be:2a:8e:3c:48:2a:38:30:1b:a4:2c:
                    66:81:71:eb:bf:2f:25:22:9e:88:00:93:67:c6:51:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:3d:8b:50:53:d0:1b:a5:eb:87:94:c5:47:f3:41:e3:
        c0:db:93:6e:3b:36:80:d6:85:10:d1:dd:b8:2c:0b:f9:
        5e:61:b7:6b:54:c8:ff:da:af:23:ff:fe:e4:41:10:d7:
        4e:1f:46:b7:09:03:9f:bc:42:f7:f8:3f:90:36:19:bc:
        79:55:bb:c8:d6:82:e2:6b:f0:7f:9d:9b:7a:d1:a4:59:
        61:64:c1:46:59:18:67:ab:11:1d:6e:2f:38:68:39:5b:
        4f:88:fe:71:93:e1:d1:d0:6e:3a:99:85:90:0f:44:6b:
        c9:a0:a2:69:5f:88:f8:b6:74:20:5b:4e:18:d6:21:1d:
        e2:bf:fb:87:9e:46:f6:8b:70:a9:6f:25:0c:29:ed:9f:
        56:34:95:be:28:f4:2b:a4:cf:56:ea:66:fd:26:14:0c:
        7b:81:dc:c0:55:23:b1:ef:1e:d5:cd:d4:b0:82:c2:c0:
        84:3f:2c:3d:06:03:d8:8b:f9:8b:dc:42:a0:69:71:90:
        bb:12:4e:12:13:5c:4b:24:1c:2f:17:6f:d2:a8:6e:ea:
        d1:cc:fc:da:92:fd:de:d6:97:3e:11:1d:4b:7a:81:15:
        3a:9e:58:d0:4d:57:2f:13:a8:d1:b1:3f:3e:52:bd:6a:
        ca:34:89:38:f2:6e:f9:7f:7b:b6:fc:f1:ba:b6:42:cf
    Fingerprint (SHA-256):
        7D:82:E6:E0:DB:FC:96:5D:48:1B:ED:F7:26:2F:2D:C3:75:BE:4B:02:20:FB:AC:BB:0F:AC:4E:AF:92:29:57:6F
    Fingerprint (SHA1):
        86:7F:B5:83:8B:23:30:D8:53:02:99:6C:7A:DD:2F:53:15:87:27:C7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9260: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #9261: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #9262: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #9263: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:49:20
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed May 10 12:05:16 2017
            Not After : Thu Aug 10 12:05:16 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:7e:13:03:3d:27:c6:7a:3f:76:3b:2b:53:32:e8:14:
                    53:03:ba:24:26:0f:3a:96:85:34:5d:94:b1:d0:08:1b:
                    bd:83:a5:8c:9e:d4:71:79:a1:be:4d:2d:68:f4:40:8d:
                    70:42:bc:ef:e7:87:da:89:a8:75:8d:66:8b:37:34:5d:
                    5f:c5:54:77:fd:6a:e7:65:04:99:63:ca:1e:70:34:47:
                    0c:2f:7f:dc:54:c5:70:28:94:d1:2c:66:6d:35:bf:d9:
                    68:c1:e0:3e:1b:21:93:2c:3f:15:a2:38:87:7a:87:ea:
                    09:28:4b:bc:73:bf:9f:7d:bc:af:d1:b9:d4:95:7e:5f:
                    24:eb:8e:05:70:f7:00:0a:02:32:ee:ea:4a:71:6e:3f:
                    33:b6:9a:39:8c:5b:3d:54:39:8d:74:5d:a7:d2:42:a4:
                    c5:3c:45:3a:a1:1b:c9:1d:b7:f5:7a:0f:cd:91:f1:aa:
                    5e:60:bc:b7:91:f3:10:a0:75:2b:58:d1:0f:15:af:67:
                    03:7a:3f:f9:a7:07:98:ae:3e:ac:34:21:78:cc:86:11:
                    88:2f:b0:1f:e9:50:7e:0f:0a:28:00:b6:3d:28:47:b2:
                    01:ed:93:b7:cf:f5:76:5b:ed:b4:4f:fe:90:13:37:f9:
                    64:62:e8:f2:79:ec:1e:3c:db:67:55:0c:5d:9c:0c:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8e:db:98:1c:d5:91:6c:dd:ff:70:b6:f5:1b:f5:d6:cf:
        00:f4:9c:7c:11:5d:de:dc:a9:8e:23:f2:87:dd:62:da:
        75:5f:71:83:33:91:05:7f:bc:68:ab:53:0b:b9:dd:40:
        c6:06:de:af:60:c5:37:f6:45:78:a0:11:33:50:86:10:
        84:2c:f4:4c:cd:53:d3:c1:c3:b2:d6:5e:65:c1:cd:4f:
        27:6b:fa:db:3c:e9:7d:bf:b8:77:6f:bd:23:ab:cd:27:
        9a:91:11:14:19:45:52:a1:33:b2:50:97:16:ec:fb:04:
        08:f8:2c:b9:78:21:9e:fd:98:e6:b0:98:0c:cd:4d:8b:
        a6:e9:84:70:f9:ce:a2:46:7c:1c:c0:18:5f:17:5a:17:
        24:11:0e:2d:2b:cb:a6:fe:41:31:8e:73:f7:40:7a:f4:
        9c:ed:6b:aa:63:90:fe:2b:1d:3b:1e:96:02:88:e6:35:
        80:8d:87:e9:cc:4b:4e:98:cd:b7:97:94:23:06:34:16:
        87:72:e7:27:4d:c8:80:db:c1:24:7a:c6:40:f4:d7:5b:
        c4:2f:0d:ea:6c:db:ae:12:b0:1b:b2:6e:8d:b3:7c:59:
        21:a9:af:f4:24:9f:88:56:0d:36:7a:a7:c8:6d:c8:66:
        bf:67:4b:5f:84:bc:6a:3f:7a:a1:76:00:ae:a9:de:a1
    Fingerprint (SHA-256):
        12:4A:00:C8:B5:69:40:0C:75:89:E0:41:EE:E3:44:A1:FF:72:BC:28:1C:A7:7B:90:59:2D:AE:AF:18:38:3E:C1
    Fingerprint (SHA1):
        FE:7A:8B:72:00:B1:9B:94:F3:CC:CE:E1:B2:25:54:82:7F:49:B3:7F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9264: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
cert.sh: #9265: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #9266: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #9267: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9268: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9269: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9270: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #9271: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:49:27
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed May 10 12:05:19 2017
            Not After : Thu Aug 10 12:05:19 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    98:84:80:de:60:1a:bd:6f:69:b9:76:74:66:0c:ac:cf:
                    4b:22:84:2e:a3:42:9c:59:d6:62:d9:42:2c:9a:06:e7:
                    c8:8b:2b:98:e8:f0:48:89:66:89:23:a9:1b:43:66:76:
                    f8:ad:d1:ab:e1:af:00:59:29:d8:f8:fc:49:1c:50:45:
                    95:55:98:62:17:2f:58:34:c2:b4:3d:21:5a:cd:2a:9a:
                    59:b1:f3:35:d9:a3:fe:9a:69:80:63:b9:af:2b:1e:1e:
                    a4:67:54:39:09:37:90:63:ab:45:e7:b5:e6:19:90:f3:
                    35:c8:34:1d:66:bd:ae:2e:92:53:2c:02:d8:16:84:77:
                    83:8f:10:c6:f5:3a:ac:77:78:f9:6b:87:ec:c0:ff:2f:
                    bc:f1:d2:a5:17:6f:1b:4f:92:43:8e:ae:d2:45:92:c4:
                    07:fb:50:d2:ce:e9:e6:9d:5b:5d:2f:2c:0d:85:31:50:
                    cd:f5:10:f5:0c:55:09:80:af:73:85:b5:01:fb:e3:1f:
                    61:1a:f0:88:df:76:ab:fb:60:a0:69:bb:6b:22:a1:81:
                    29:e6:12:13:94:88:32:02:f6:64:a6:23:d2:d1:b1:e0:
                    a1:87:2b:55:ad:7f:4f:75:ea:8c:42:83:f8:9e:df:a1:
                    f8:69:eb:33:9f:42:10:bf:68:76:f5:d7:c6:43:82:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:7d:99:58:0b:47:60:e0:49:ce:34:ab:43:49:f2:d5:
        3f:aa:31:5f:c8:f9:bc:49:e4:d6:57:fc:46:bb:67:0d:
        92:94:33:e0:37:62:89:0f:bb:d3:4c:b7:b5:7e:7a:8b:
        12:10:c5:a6:3c:2a:a7:f6:1e:32:8c:05:3f:5f:aa:5d:
        44:14:b3:b6:da:ab:71:47:6a:d2:6c:9c:4f:e8:b6:2a:
        8f:b6:69:0f:08:2b:2e:aa:8d:b3:ee:68:b7:a3:eb:14:
        d5:80:e8:82:d9:4e:1b:24:c8:a4:f8:50:86:20:a5:80:
        15:5c:02:5a:89:d2:4c:16:ee:dd:54:67:32:4c:d9:d8:
        07:92:49:88:8b:79:81:aa:1f:a8:38:57:8a:04:b3:a3:
        84:09:13:c8:cd:25:89:6e:cd:63:d0:70:d5:fe:78:2f:
        2f:3d:ef:27:6d:d6:c4:94:c0:f7:5a:07:8d:b3:ae:ca:
        02:34:bb:36:32:89:98:ec:af:6d:9e:fb:aa:b0:c0:bc:
        9c:69:9c:7c:de:1e:1d:4d:32:a5:32:e1:4a:b2:98:03:
        e7:05:95:0a:31:ab:56:b7:75:d2:51:e6:a9:89:5e:42:
        78:5d:57:57:60:e7:54:1d:47:e7:29:9e:ac:af:dc:be:
        a8:ca:6f:06:d3:98:80:d6:26:04:be:98:0e:83:d3:b9
    Fingerprint (SHA-256):
        8D:19:A1:09:C4:B2:5E:BD:D0:5F:4D:A0:9C:D0:1F:36:30:61:5A:55:42:54:DC:14:CB:66:10:0C:16:3D:29:01
    Fingerprint (SHA1):
        9C:18:44:20:ED:2A:7C:E9:DE:6C:9D:8E:06:5A:03:56:05:E2:20:53
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9272: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #9273: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #9274: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw
cert.sh: #9275: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9276: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9277: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass -o root.cert
cert.sh: #9278: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #9279: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9280: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #9281: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #9282: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9283: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA.ca.cert
cert.sh: #9284: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9285: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #9286: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9287: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #9288: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9289: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9290: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #9291: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9292: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9293: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #9294: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9295: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9296: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #9297: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9298: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9299: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #9300: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9301: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #9302: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #9303: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #9304: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #9305: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9306: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #9307: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9308: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9309: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9310: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9311: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9312: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9313: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9314: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9315: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9316: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9317: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9318: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9319: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9320: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #9321: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9322: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #9323: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9324: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9325: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #9326: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9327: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9328: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #9329: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9330: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9331: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #9332: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9333: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9334: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #9335: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9336: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9337: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #9338: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9339: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9340: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #9341: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9342: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9343: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #9344: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9345: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9346: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #9347: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9348: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9349: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #9350: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9351: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9352: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #9353: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9354: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9355: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #9356: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9357: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9358: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #9359: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9360: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9361: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #9362: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9363: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9364: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #9365: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9366: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9367: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #9368: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9369: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9370: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #9371: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9372: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9373: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #9374: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9375: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9376: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #9377: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9378: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9379: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #9380: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9381: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9382: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #9383: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9384: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9385: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #9386: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9387: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9388: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #9389: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9390: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9391: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #9392: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9393: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9394: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #9395: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9396: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9397: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #9398: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9399: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9400: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #9401: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9402: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9403: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #9404: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9405: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9406: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #9407: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9408: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9409: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #9410: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9411: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9412: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #9413: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9414: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9415: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #9416: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9417: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9418: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #9419: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9420: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9421: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #9422: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9423: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9424: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #9425: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9426: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9427: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #9428: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9429: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9430: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #9431: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9432: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9433: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #9434: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9435: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9436: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #9437: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9438: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9439: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #9440: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9441: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9442: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #9443: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9444: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9445: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #9446: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9447: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9448: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #9449: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9450: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9451: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #9452: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9453: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9454: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #9455: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9456: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9457: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #9458: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9459: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9460: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #9461: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9462: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9463: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #9464: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9465: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9466: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #9467: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9468: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9469: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #9470: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9471: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9472: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #9473: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9474: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9475: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #9476: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9477: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9478: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #9479: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9480: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9481: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #9482: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9483: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9484: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #9485: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9486: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9487: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #9488: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9489: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9490: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #9491: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9492: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9493: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #9494: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9495: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9496: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #9497: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9498: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9499: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #9500: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9501: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9502: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #9503: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9504: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9505: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #9506: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9507: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9508: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #9509: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9510: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9511: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #9512: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9513: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9514: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #9515: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9516: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #9517: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #9518: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #9519: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #9520: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #9521: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #9522: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #9523: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #9524: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #9525: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #9526: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #9527: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #9528: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #9529: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #9530: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #9531: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #9532: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #9533: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Wed May 10 12:06:28 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Wed May 10 12:06:28 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9534: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9535: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #9536: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9537: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9538: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #9539: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #9540: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #9541: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtests.sh: #9542: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_READ_ONLY: security library: read-only database.
dbtests.sh: #9543: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #9544: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #9545: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #9546: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir
---------------------------------------------------------------
dr-xr-xr-x. 2 mockbuild mockbuild   4096 May 10 12:06 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir
-r--r-----. 1 mockbuild mockbuild   1222 May 10 12:06 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsa.cert
-r--r-----. 1 mockbuild mockbuild   1425 May 10 12:06 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsamixed.cert
-r--r-----. 1 mockbuild mockbuild    579 May 10 12:06 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ec.cert
-r--r-----. 1 mockbuild mockbuild    705 May 10 12:06 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ecmixed.cert
-r--r-----. 1 mockbuild mockbuild    870 May 10 12:06 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/TestUser.cert
-r--------. 1 mockbuild mockbuild 233472 May 10 12:06 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/cert9.db
-r--------. 1 mockbuild mockbuild 131072 May 10 12:06 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/key4.db
-r--------. 1 mockbuild mockbuild    625 May 10 12:06 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/pkcs11.txt
-r--r-----. 1 mockbuild mockbuild    393 May 10 12:06 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/req
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #9547: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:46 2017
            Not After : Tue May 10 12:04:46 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:f2:dc:fb:53:d8:40:62:32:0b:05:be:aa:5d:de:8d:
                    7d:60:ce:a0:d0:09:ef:8c:f7:53:19:2a:de:03:73:d5:
                    40:49:59:d0:9f:f5:83:04:70:6c:5b:14:26:e9:06:17:
                    33:54:f6:12:af:18:3f:d6:52:be:b6:1d:21:31:97:1f:
                    a0:08:78:22:6c:b3:ec:52:08:5c:11:7c:d0:0e:48:e8:
                    74:44:11:0d:24:87:f5:46:b1:d6:34:e4:26:6b:61:6d:
                    0e:71:a2:1f:79:75:10:62:75:57:f3:8e:6d:8f:14:ed:
                    bc:75:e0:96:6d:51:e7:c5:97:fb:50:ea:94:1b:a5:1c:
                    79:73:5e:7b:7f:76:4e:35:b3:84:8a:f5:40:f9:86:7d:
                    c2:13:03:65:6a:35:48:1e:91:b2:d3:1f:11:cb:18:05:
                    73:d4:94:7f:e2:45:db:d3:64:af:a5:23:cf:f5:84:94:
                    39:1a:4f:c8:83:1c:7a:cd:eb:12:97:cc:20:11:f3:7d:
                    b8:86:8d:b0:c1:f0:af:be:a8:78:e1:fd:e6:96:5c:4b:
                    fb:a9:0c:ad:29:1a:90:44:eb:91:92:64:19:3c:61:48:
                    43:5c:32:45:c2:3d:5b:5f:1d:a7:8f:37:a0:8d:ad:ea:
                    2e:d7:68:a5:35:02:db:a6:d9:20:22:a1:d0:46:a7:fd
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:ac:06:dd:be:23:09:ab:59:be:75:b1:4d:b4:ec:ff:
        46:2a:9a:8b:f4:53:86:34:1c:6f:a9:7f:c6:0b:15:c1:
        ea:ba:42:39:6e:78:59:cd:96:9e:3e:9e:c4:04:1a:5b:
        0b:5c:c7:f6:b3:51:95:df:68:2e:e7:a6:e4:60:a4:94:
        46:c9:91:5e:2a:4a:f4:69:b4:00:46:bd:96:93:fe:1a:
        6e:40:30:26:af:e2:e5:5d:51:e8:4d:e6:a7:19:25:95:
        23:29:89:60:37:6c:c9:a1:33:67:f1:29:01:b5:0c:28:
        01:3c:88:47:a9:5c:c8:c8:01:1c:69:9d:98:88:e5:fb:
        c0:b0:5a:c0:c0:82:c6:fb:f4:ac:bf:40:24:e7:7e:8d:
        35:eb:24:4a:9b:e9:92:d2:55:ea:51:2c:39:9c:ed:fe:
        32:37:57:cb:6a:0f:f7:d7:15:2a:21:a5:e6:f9:c0:98:
        dd:45:85:68:f0:c4:e4:b9:65:70:4d:96:1e:c3:9a:38:
        22:18:48:5a:fe:ed:e6:6e:3f:18:0c:01:91:8e:6e:cc:
        1b:ae:f2:a9:98:c5:0f:2c:e8:ae:53:19:16:52:f5:eb:
        6b:78:78:bd:92:b5:64:87:90:c1:d7:d4:e5:80:8c:e9:
        98:11:81:72:5d:cc:02:c4:8d:dc:33:da:e4:50:83:0e
    Fingerprint (SHA-256):
        FF:5D:AE:FC:97:19:F4:9A:C0:6F:97:4F:37:FC:FC:B7:12:BB:32:31:09:50:E4:10:91:6D:AF:9A:04:5C:42:C0
    Fingerprint (SHA1):
        00:DF:51:6C:66:C1:CA:2A:31:45:B3:CB:C7:02:05:3A:CE:C5:27:D3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #9548: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Wed May 10 12:06:30 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Wed May 10 12:06:30 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9549: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                10:30:e9:3e:0f:0f:32:0c:75:bf:2f:f9:64:6a:ba:e2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9550: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9551: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9552: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9553: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                46:f8:49:b7:53:9e:f8:d6:eb:50:f9:0d:4a:5b:1b:e3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 12:04:13 2017
            Not After : Tue May 10 12:04:13 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:1e:8e:82:bd:15:74:98:d7:3e:c4:10:a7:2b:71:
                    1b:53:75:32:a3:d8:9e:d3:45:b7:84:1a:9c:3a:8b:e3:
                    6c:97:a3:1b:18:9d:eb:62:1d:99:ac:07:6d:1f:d3:e9:
                    07:da:55:fb:4b:4f:4a:90:10:a5:1c:7a:31:d1:19:1b:
                    97:ed:96:00:ee:23:a4:db:89:66:aa:d7:d8:70:58:7f:
                    c8:f6:e5:85:b0:98:9b:41:aa:1e:ff:66:5a:d1:22:78:
                    6e:28:23:cc:78:31:7d:0b:f3:e8:a6:9b:10:dc:7b:d6:
                    3d:93:48:c9:d2:7c:84:4f:cb:db:c9:a8:00:8b:2d:77:
                    31:33:1d:92:9e
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:00:b6:a5:43:ac:d3:42:9e:f5:8e:70:
        38:97:e6:f7:8a:dd:4b:51:ab:51:d4:f6:ae:eb:d1:85:
        00:c7:e1:e7:13:0c:87:56:82:5b:e4:84:43:fe:0a:b5:
        5c:c8:58:07:9f:ec:a9:44:28:2a:49:f8:a6:1e:9e:2b:
        3a:06:43:6c:a3:99:56:02:42:01:6b:67:c9:6a:92:27:
        70:d0:bf:2a:eb:5d:1d:c8:bc:5e:48:df:1a:ac:97:97:
        f9:8d:c4:e0:29:36:f7:51:3a:f2:92:ce:74:ed:80:7d:
        cb:09:0b:94:95:b8:8c:f3:92:24:3e:78:18:63:60:f3:
        01:04:a4:55:7f:05:b3:e2:35:b0:c1
    Fingerprint (SHA-256):
        3F:55:60:B0:07:3C:CE:A3:B3:0E:43:AD:A1:F7:2A:65:31:40:0F:46:1B:0C:7A:38:59:A6:2B:75:06:3C:3B:F2
    Fingerprint (SHA1):
        70:06:88:03:B9:29:01:25:2D:B2:12:BC:04:A1:9D:AC:5A:AE:36:A0
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 12:04:43 2017
            Not After : Tue May 10 12:04:43 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:6b:e0:68:8b:10:ae:6d:c5:c9:d5:5b:c1:48:c7:ca:
                    df:ef:c4:b9:f7:f8:3b:16:d1:72:88:90:ad:4d:23:5b:
                    93:b5:e6:aa:a9:2c:cf:61:c8:a0:d3:17:9f:60:59:88:
                    2f:d8:b5:9e:b2:7c:26:7f:46:67:53:88:49:34:5a:6f:
                    c7:8d:e0:a0:57:37:2d:12:e6:aa:18:66:62:95:ce:67:
                    03:49:74:4c:1f:e2:65:72:c0:ce:da:a8:94:b3:b2:53:
                    6a
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:00:ec:01:38:be:83:8f:ee:64:3b:04:
        71:51:60:ef:ae:ef:5a:34:5a:c2:8a:16:a5:51:a4:3b:
        3b:7d:bb:f1:e3:fb:4e:a7:5d:28:35:b6:e1:56:b9:91:
        b2:85:35:7c:29:84:54:79:da:4e:56:52:8d:7b:8d:dc:
        39:ca:9e:9d:3b:c6:79:02:42:01:56:09:90:a4:af:e3:
        6f:79:f5:c0:c4:a8:b0:6c:d2:da:ef:c8:17:03:e9:45:
        19:72:02:49:2f:03:8b:57:81:65:02:e7:97:85:e1:2d:
        a9:8f:57:03:2c:2a:98:fb:8f:c2:70:ed:a6:bd:c6:f7:
        bb:33:ee:7b:b8:90:81:d3:a0:71:05
    Fingerprint (SHA-256):
        CA:46:E6:BF:61:8A:37:B8:B9:CC:64:19:94:27:B5:E2:4C:52:A7:4F:72:28:4B:6F:DE:5F:B7:08:99:51:C4:A1
    Fingerprint (SHA1):
        38:12:D0:AF:F2:57:4C:11:4C:40:54:A7:C8:85:F6:01:CF:7B:55:62
    Friendly Name: Alice-ec
tools.sh: #9554: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9555: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                e1:b6:dd:ce:5e:b9:40:72:8f:22:f1:d6:10:33:9a:93
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9556: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9557: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9558: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                44:28:0b:e0:f4:de:51:cd:ca:9c:4a:95:cc:c0:65:54
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9559: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9560: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9561: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                1c:b8:51:02:cb:2c:61:5c:2b:ba:15:78:9b:93:e1:15
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9562: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9563: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9564: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                9d:b3:40:22:66:71:33:15:a2:d2:d7:5b:5e:51:14:63
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9565: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9566: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9567: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                ee:61:74:89:ff:d4:5e:19:e5:a2:1a:d8:96:55:cb:cd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9568: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9569: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9570: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                86:63:0c:65:d3:9c:9e:db:e8:3b:73:14:f8:44:34:44
            Iteration Count: 2000 (0x7d0)
tools.sh: #9571: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9572: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9573: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                03:0a:ef:02:16:5f:97:59:6c:f4:64:24:c6:4e:2a:88
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9574: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9575: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9576: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                09:01:71:cc:3b:9d:40:48:a3:8f:36:74:c3:6c:ca:05
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9577: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9578: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9579: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1f:c2:13:cf:54:99:4d:fc:3d:8a:91:08:3c:12:08:d6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9580: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9581: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9582: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7c:94:a6:c4:ab:8a:cb:6f:85:bb:ba:6f:43:4a:82:a3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9583: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9584: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9585: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1b:99:b0:d7:a8:08:0c:9b:67:aa:e4:ae:92:1f:d1:8b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9586: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9587: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9588: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                25:82:d8:06:e9:6b:f6:b5:53:91:f0:6e:8c:de:29:e2
            Iteration Count: 2000 (0x7d0)
tools.sh: #9589: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9590: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9591: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        16:16:2f:d3:6a:80:c7:57:a2:6c:13:81:d5:17:6d:21
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:df:41:42:21:db:2d:0c:8b:09:36:10:10:21:6d:
                    dc:bf
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9592: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9593: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9594: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4e:ff:7b:57:61:58:9c:a8:13:92:03:2a:23:a1:d9:cd
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:a7:3c:19:e7:f7:c6:66:17:6c:14:6e:de:9b:81:
                    03:91
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9595: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9596: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9597: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        08:e2:c5:65:b4:7b:72:33:e9:e3:d0:3f:a1:91:32:a4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:c9:2e:0a:5e:14:44:6c:c8:29:ec:29:64:76:93:
                    e0:17
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9598: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9599: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9600: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ab:f1:bd:c8:a3:1a:bf:5c:85:7c:e3:c1:05:40:91:9f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:64:c7:30:fb:6f:06:c5:bd:e9:2e:cb:cc:50:b5:
                    99:69
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9601: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9602: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9603: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9b:91:e6:af:22:a0:bb:d2:61:6b:e2:75:c5:31:8f:c9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:f7:04:ee:93:2f:ac:08:f7:ea:d5:5a:92:7a:b1:
                    7f:84
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9604: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9605: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9606: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        64:29:4e:ca:0e:74:45:e5:c4:a4:d2:10:7e:3f:ee:9f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:c8:93:0c:d4:46:61:d4:b0:a5:df:b9:6c:9b:bd:
                    3b:a3
tools.sh: #9607: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9608: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9609: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b9:de:ff:3d:5a:95:7f:ab:38:95:6d:54:7f:a0:97:25
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:f6:26:87:6f:90:1f:06:3f:32:23:d1:63:a3:1a:
                    0d:e3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9610: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9611: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9612: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b2:59:0c:ec:a3:34:f9:d2:27:af:e9:22:29:9e:f3:70
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:cb:1a:76:4f:1a:73:e6:09:cf:6c:bb:2e:2a:88:
                    fb:a0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9613: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9614: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9615: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fb:e5:a8:3d:7d:8c:7b:de:25:61:3a:47:fc:d1:c1:83
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:5d:37:c7:57:ea:8c:57:83:82:1f:c0:65:7d:b8:
                    5c:76
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9616: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9617: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9618: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        58:e9:39:00:0c:72:6e:e4:b5:c2:54:51:b0:83:0d:25
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:7c:aa:34:6d:ff:ca:4c:29:fa:89:7b:5d:7d:ca:
                    bd:05
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9619: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9620: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9621: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ee:8d:78:5f:69:d0:6b:66:a4:84:b7:cd:ea:6f:ac:e9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:05:7b:73:69:bd:8e:0f:02:42:29:52:34:bd:6c:
                    be:b7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9622: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9623: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9624: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ff:8f:89:c4:2f:5b:b9:fa:1d:e1:19:5e:a2:85:73:c9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:1e:6c:ee:41:0e:35:25:47:48:0b:06:79:1f:6f:
                    80:04
tools.sh: #9625: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9626: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9627: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4a:8c:13:a4:63:73:f3:67:93:17:c3:8b:46:02:02:52
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:2a:1f:a0:47:4d:91:39:a5:ef:a0:2c:fb:42:f6:
                    37:12
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9628: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9629: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9630: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        68:34:a4:b1:22:2c:e0:bc:8d:06:c2:5f:97:3a:9d:fc
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:a1:31:d2:40:78:dd:e7:ff:1a:e5:72:25:03:c5:
                    43:71
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9631: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9632: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9633: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        29:b7:66:90:88:e6:3f:9d:0d:1d:e5:c7:37:96:a9:7c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:3f:49:55:bd:45:60:7a:b9:cf:fc:53:c9:b2:6f:
                    df:10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9634: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9635: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9636: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6c:9e:16:90:46:93:fc:f6:da:c6:d9:6b:9a:eb:b4:1b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:fa:bc:a5:c4:cc:ed:a5:74:ae:4b:c5:17:ff:03:
                    70:5f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9637: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9638: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9639: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fb:b6:ed:17:98:9a:8b:d5:35:8f:b7:ed:fd:34:2e:29
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:9e:59:55:22:5a:9a:f1:b3:1c:8e:c0:ac:c3:5d:
                    d3:2c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9640: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9641: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9642: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e0:6a:b7:1e:ac:39:24:3a:d4:b5:d7:2a:57:77:b6:b6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:9b:fd:67:b0:ae:65:1a:bb:ff:1b:c7:79:2d:99:
                    32:32
tools.sh: #9643: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9644: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9645: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        81:0b:9c:73:f0:9a:13:c4:2a:6b:ef:a7:54:ef:ea:ce
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:79:9c:0d:92:43:7b:2b:f1:68:8c:5e:94:f2:c3:
                    1c:db
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9646: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9647: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9648: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        36:ea:3d:1a:8d:ca:e5:11:65:38:b8:68:4c:91:f9:8c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:fb:97:2b:1f:51:d8:db:15:5a:c9:1e:47:5e:78:
                    eb:41
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9649: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9650: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9651: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f0:3d:72:23:7a:86:80:36:97:4a:28:fc:65:56:14:40
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:b5:5c:a3:9d:b8:e1:3d:36:e1:a5:5c:ca:6a:25:
                    27:66
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9652: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9653: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9654: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d9:d3:0b:cd:55:bd:9b:65:c8:bf:46:07:ab:08:34:a3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:02:44:15:87:97:40:9b:9d:99:97:01:aa:d9:01:
                    e0:ee
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9655: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9656: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9657: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        98:c6:a6:2d:3b:db:d8:0d:d0:1b:79:e5:a6:46:fd:37
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:0c:25:49:37:02:03:ec:08:5e:7a:d9:bc:0e:f3:
                    76:c7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9658: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9659: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9660: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ea:a6:a4:42:9f:55:fa:4c:e1:24:ab:1d:01:08:1b:af
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:1c:37:d0:e1:e2:8a:ca:6c:f9:eb:c5:d0:7f:e3:
                    6d:e7
tools.sh: #9661: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9662: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9663: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        88:22:b4:b7:33:43:28:61:68:cf:84:82:ec:f4:cb:c8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:14:5b:df:5c:d8:b1:13:4b:dd:1f:c5:7f:c0:7f:
                    98:10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9664: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9665: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9666: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        23:11:45:66:fa:fc:95:ef:b8:ec:8a:38:ac:ae:f8:ec
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:1d:2f:58:94:e5:1d:1d:63:9b:c7:30:d5:41:6d:
                    e1:81
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9667: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9668: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9669: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        7e:8d:6f:3f:87:c9:93:68:3b:58:16:44:bb:ce:d1:0a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:d9:2a:1d:c3:32:9c:5f:21:b6:f1:8a:0b:a8:80:
                    cb:43
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9670: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9671: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9672: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8b:bb:26:9e:6a:27:f8:68:77:81:43:10:2e:b2:2a:b2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:92:08:82:2b:49:41:3d:b0:ee:17:2f:b8:da:2a:
                    d9:b5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9673: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9674: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9675: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fd:ff:8e:fa:61:65:a2:2d:d8:89:a9:ca:20:71:91:25
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:fc:30:03:fd:e2:83:68:7c:9b:4f:ce:60:ee:65:
                    bd:06
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9676: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9677: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9678: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        33:f2:ab:72:98:d1:89:d6:4e:58:90:af:50:b5:c7:93
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:59:62:4b:4c:49:90:f7:a1:67:22:33:dd:7d:4d:
                    0b:70
tools.sh: #9679: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9680: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9681: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        39:8a:c2:15:dd:1d:1f:41:42:29:05:bf:05:b7:99:c4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:74:ed:7d:6c:e4:91:fa:bd:72:7e:8a:fb:46:32:
                    6f:b8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9682: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9683: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9684: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        66:85:c6:a6:e5:b0:f2:c9:0d:ff:c8:17:75:51:52:b3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:7e:63:29:1d:09:86:1e:3b:ad:b8:ec:6c:e4:09:
                    cc:04
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9685: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9686: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9687: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a6:70:2e:e4:43:74:29:b4:77:5e:18:f7:80:ef:49:b9
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:ea:12:ba:77:c1:00:26:4e:29:68:3a:85:af:8d:
                    cb:d5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9688: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9689: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9690: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bf:5b:69:bf:de:a2:27:e4:20:93:b0:97:2f:13:c6:00
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:d5:ee:be:4a:15:06:ad:fd:be:16:25:75:e4:21:
                    d2:fb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9691: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9692: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9693: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1e:d9:3d:ce:d0:f5:48:56:4f:6e:56:31:00:2a:2a:1e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:1d:77:78:82:87:2e:9a:b9:39:93:b5:a6:eb:e6:
                    04:5a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9694: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9695: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9696: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        42:0c:58:b9:6e:ec:3f:f7:d8:56:fb:f2:a0:ff:8d:a6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:65:b7:8a:92:7b:ba:9f:eb:0e:63:ec:e2:62:6e:
                    d7:79
tools.sh: #9697: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9698: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9699: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                ae:51:2c:81:7a:5c:78:1f:f6:11:a5:d7:fd:31:e4:6c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9700: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9701: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9702: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                42:ff:9b:5a:d8:a6:4c:ab:f5:2b:0a:50:a5:3b:bf:88
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9703: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9704: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9705: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                82:44:b4:a1:5a:46:aa:b9:75:78:88:ef:57:25:81:5d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9706: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9707: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9708: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                82:6c:e0:d2:82:08:56:0e:88:66:b2:8a:6b:f2:aa:60
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9709: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9710: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9711: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                8e:f1:c2:77:a8:46:0b:3a:ec:40:17:d9:1f:f1:fc:fc
            Iteration Count: 2000 (0x7d0)
tools.sh: #9712: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9713: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9714: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                4b:d2:50:8d:15:83:5f:d4:17:07:b3:10:93:80:15:b1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9715: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9716: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9717: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                4d:71:25:d7:46:9e:a3:c5:2e:12:fb:32:b3:a9:41:f0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9718: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9719: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9720: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                eb:df:e5:7b:f2:d0:45:12:8b:b1:0a:65:88:81:90:5b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9721: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9722: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9723: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                66:d7:ce:49:d0:20:ae:68:ee:27:40:14:ef:f2:52:f3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9724: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9725: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9726: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                91:b8:79:47:ef:a7:07:7b:a0:72:41:6b:6d:ac:69:8b
            Iteration Count: 2000 (0x7d0)
tools.sh: #9727: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9728: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9729: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                5a:2d:1d:06:8f:4a:a2:88:7f:50:46:57:37:51:1f:3e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9730: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9731: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9732: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                34:a0:ae:3d:6f:54:9b:ca:51:74:d7:ed:bf:cf:93:f8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9733: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9734: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9735: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                b8:08:6f:6f:29:ed:af:f4:4f:bc:d2:47:c5:27:ec:95
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9736: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9737: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9738: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                86:9a:9a:2c:1f:23:2c:3c:7e:8e:d4:78:98:89:42:8d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9739: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9740: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9741: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                1d:96:a5:b1:c5:a2:d7:79:6a:34:18:7b:f1:b7:2d:d3
            Iteration Count: 2000 (0x7d0)
tools.sh: #9742: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9743: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9744: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f0:a9:57:aa:80:40:ca:bc:15:d2:2d:5a:52:98:49:d2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9745: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9746: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9747: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d7:35:3f:e7:68:30:ec:ac:c2:4c:88:55:52:a9:cd:46
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9748: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9749: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9750: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b1:07:c5:50:08:55:19:ec:ca:ed:de:d2:72:8c:f1:ef
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9751: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9752: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9753: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b4:94:6a:a8:ff:9f:36:3b:85:c1:2c:12:aa:c4:ef:ab
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9754: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9755: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9756: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                bb:07:a1:01:57:9f:00:ea:9a:97:aa:12:bc:e0:c1:10
            Iteration Count: 2000 (0x7d0)
tools.sh: #9757: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9758: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9759: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                58:bd:df:20:b7:f0:5a:ca:22:d0:b5:82:f3:a7:42:ad
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9760: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9761: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9762: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2a:cc:8b:46:ca:d6:37:98:6b:01:d8:b8:da:46:0e:8c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9763: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9764: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9765: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7d:b0:ca:02:08:01:85:26:ef:a9:b0:78:ab:8f:0c:d7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9766: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9767: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9768: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8b:81:91:e5:43:d6:b6:bd:5f:53:d0:b4:d0:84:a1:13
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9769: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9770: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9771: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d5:f0:6c:0d:a5:4c:d6:79:20:ad:f8:48:73:fc:11:c9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9772: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9773: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9774: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                36:29:07:02:e4:fe:51:74:7c:2c:13:b4:e0:ae:2e:bf
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9775: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9776: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9777: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                42:fa:dc:c0:1a:92:07:4a:77:d3:c4:1e:07:26:23:78
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9778: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9779: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9780: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c9:a8:53:d4:49:8f:a7:41:4f:57:f5:a4:b5:8c:49:f3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9781: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9782: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9783: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                bf:76:97:9d:8d:48:22:b0:ac:0a:f7:13:f2:5f:02:ea
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9784: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9785: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9786: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1f:27:0b:9c:e7:19:a5:b8:dd:9a:c9:03:15:03:42:69
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:04 2017
            Not After : Tue May 10 12:04:04 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:ee:f8:0f:b3:12:7c:d8:14:57:77:81:03:be:57:9a:
                    3d:91:a5:83:57:c9:52:c0:13:da:30:8f:90:71:d0:d4:
                    ed:fe:e9:fc:df:00:07:d7:e5:ff:1f:71:34:e8:54:74:
                    20:4f:e9:36:2c:f2:68:51:0f:14:41:c6:30:5e:e8:0f:
                    5f:31:b1:90:97:08:9e:f7:54:be:04:54:ed:99:8c:e1:
                    ed:fc:f8:9e:17:72:c4:d8:83:6f:af:36:a9:8b:25:fb:
                    d7:35:59:c4:98:1d:3a:a3:70:16:ec:ff:31:69:a1:59:
                    59:83:43:60:a6:2b:00:04:41:2c:cb:a6:d0:61:7c:2d:
                    b2:d2:de:37:26:08:5e:b9:29:5e:4e:07:88:06:18:a5:
                    90:ec:58:5c:1c:29:26:69:e4:16:fc:6d:7e:b2:49:d7:
                    b3:5d:e2:27:fb:d0:3a:f0:35:86:e7:f9:c5:d0:77:40:
                    98:01:07:47:59:26:62:1b:74:e2:23:7f:be:be:84:18:
                    6f:a3:29:bc:a9:db:fb:c4:de:f4:1c:9f:c3:8d:32:60:
                    bc:83:f6:03:9f:a4:36:b3:39:d1:4c:21:45:7d:d3:31:
                    20:8d:9d:18:6c:2c:29:15:18:45:e5:97:74:43:97:cb:
                    a4:6d:4a:24:04:b9:96:0c:1f:80:f4:a9:ac:67:2f:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:47:75:ea:ed:ae:34:4a:c5:76:62:69:66:0a:bf:94:
        b3:ea:cd:09:4d:f9:81:2b:2c:d0:cc:07:55:a0:2e:0d:
        a6:78:de:fe:fc:91:a7:87:8c:e0:2a:4a:ae:68:f8:0c:
        ee:1f:2b:04:36:9a:9c:62:df:c8:1f:ab:17:32:aa:6b:
        06:af:4a:9e:30:be:2f:d1:43:bb:ed:5f:60:09:63:a5:
        f2:ab:28:5e:73:91:d1:c0:3b:b4:18:94:5a:65:e7:89:
        9a:5d:72:92:c1:b3:97:4b:f2:17:c5:96:e7:d6:22:5d:
        1b:84:05:ad:64:92:43:cd:ea:f9:70:c9:e4:bb:be:40:
        0e:50:1c:a6:90:7e:ce:39:4c:28:7f:0e:8a:df:37:86:
        1c:38:1d:2f:8b:b9:4a:13:81:19:4f:f3:57:34:cc:5a:
        ee:5c:e4:d7:3a:75:f7:33:77:c8:14:10:4c:78:d8:cd:
        c0:cb:fd:4b:f2:6c:db:09:66:60:42:24:1c:6a:01:e8:
        68:80:46:1d:55:71:3d:25:a5:32:7a:bb:fd:76:04:e3:
        b7:6e:8f:c3:d0:08:7e:01:e9:da:12:ef:c6:4c:db:a9:
        a2:15:16:ce:44:b9:d9:28:b0:fc:25:4b:98:c1:af:db:
        8d:21:cd:78:01:dc:2f:ab:ec:0d:3c:b4:8b:02:51:1f
    Fingerprint (SHA-256):
        5F:0F:6B:4C:FC:25:E4:CE:E7:4C:F9:02:9A:EF:41:C3:66:C4:EE:B6:56:70:95:7F:24:B6:16:B9:A1:66:B7:C5
    Fingerprint (SHA1):
        D0:6B:50:45:B9:CC:44:E3:95:AD:97:90:CF:25:85:5D:E3:8B:A8:94
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:04:42 2017
            Not After : Tue May 10 12:04:42 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:90:57:aa:26:70:d4:43:03:ac:f7:cd:4a:bf:6d:94:
                    b1:b4:f8:ea:cb:b3:a5:fe:e3:e5:d0:35:e1:3f:bd:c1:
                    c2:0b:3b:c4:4f:99:d9:ba:2f:0d:6e:5f:6f:ff:aa:ba:
                    32:ee:4f:3e:b4:5f:79:54:7c:cf:bf:85:bd:f8:e5:1e:
                    cc:2e:87:35:64:40:f2:7e:e7:47:c8:37:13:06:ff:68:
                    01:bf:a5:31:fd:ba:83:9a:4d:6f:92:d2:f6:81:35:ca:
                    a0:76:8b:3f:b3:d7:f2:f0:c2:8d:40:f4:d8:16:0d:06:
                    24:9d:2c:e3:6c:b0:0b:ee:b4:dd:85:26:6f:a2:da:b3:
                    d7:45:c5:37:34:46:63:09:f9:fd:bc:22:f5:fa:dc:4e:
                    e2:08:4d:88:1d:dd:8d:aa:35:7b:34:e7:c5:b5:41:85:
                    64:e7:31:24:17:59:b1:b4:11:10:9b:21:b4:e4:17:28:
                    30:a9:e5:b4:2d:c8:69:e7:c1:76:3b:d0:a1:ea:52:6c:
                    08:33:4e:be:92:eb:3e:a1:b3:75:4e:48:d0:71:e9:9e:
                    f9:43:18:81:22:8d:7e:73:3f:25:70:ee:38:7f:b2:de:
                    5b:6d:95:f4:e5:0d:ed:e4:1a:b0:d0:43:66:b3:82:ed:
                    5b:ed:3d:31:72:d4:5b:8d:58:f5:4b:b7:8a:cc:d7:c9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:65:29:b9:3c:33:54:d0:6e:4e:97:96:b9:b5:b9:93:
        de:ee:bd:a9:31:30:5d:7c:f4:5d:06:25:22:3c:61:4a:
        9a:14:50:53:b0:6e:b8:fc:7b:ae:86:c8:3d:02:77:18:
        2f:33:0d:66:25:dc:58:e6:26:d4:09:5c:76:47:59:93:
        c1:72:7e:e5:62:ee:61:05:10:ae:5e:50:15:20:f9:d9:
        ab:c7:87:ff:65:f4:b4:9b:0d:0e:95:33:95:11:ee:71:
        67:70:65:68:91:c8:d9:b4:a8:30:b4:0a:b3:cf:99:f8:
        b7:e4:e4:e6:02:a5:e7:11:6d:39:48:76:ad:24:11:7a:
        a2:76:d1:60:57:38:a0:1f:a3:04:44:4e:77:18:9c:78:
        13:f2:e1:09:55:2c:31:69:79:9c:7e:64:6e:9a:68:d0:
        0a:c5:3c:6f:36:ef:92:94:c0:44:16:b9:80:3e:4a:9d:
        8e:3d:fc:3a:5a:d9:0a:38:e8:58:fd:d3:9b:04:97:4e:
        cc:95:3b:37:9c:e5:67:a1:02:c9:60:87:73:7e:5d:c7:
        fc:92:75:d4:01:a3:5a:6c:ed:8c:30:76:df:04:ba:94:
        98:28:b3:4a:7a:10:65:8d:89:42:d7:15:5d:3a:ee:f6:
        15:4e:23:ff:d9:11:35:2a:72:b9:06:a5:50:65:ea:e6
    Fingerprint (SHA-256):
        55:59:A8:AB:E9:5B:1A:62:46:C1:AA:9A:F3:9F:8D:00:6B:B7:41:65:AE:94:40:CD:71:6A:A4:7C:FB:69:56:A6
    Fingerprint (SHA1):
        20:3C:89:36:F0:7A:62:6F:CA:D0:96:E2:DE:4D:ED:5D:CD:7B:87:22
    Friendly Name: Alice
tools.sh: #9787: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9788: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #9789: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9790: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #9791: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 37%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #9792: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #9793: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9794: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
--> sign.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 37%)
tree "../tools/html" signed successfully
tools.sh: #9795: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #9796: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9797: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Wed May 10 12:07:07 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Wed May 10 12:07:07 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #9798: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9799: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      6f20b50a078762a7d00438e52caf00aaf1cf21d4   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #9800: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #9801: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #9802: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #9803: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #9804: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9805: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #9806: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9807: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #9808: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9809: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9810: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      6f20b50a078762a7d00438e52caf00aaf1cf21d4   FIPS_PUB_140_Test_Certificate
fips.sh: #9811: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #9812: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9813: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9814: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9815: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      6f20b50a078762a7d00438e52caf00aaf1cf21d4   FIPS_PUB_140_Test_Certificate
fips.sh: #9816: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #9817: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #9818: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
Changing byte 0x000633b0 (406448): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle dbtest -r -d ../fips
fips.sh: #9819: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Wed May 10 12:07:20 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Wed May 10 12:07:20 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #9820: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #9821: CMMF test . - PASSED
TIMESTAMP crmf END: Wed May 10 12:07:21 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Wed May 10 12:07:21 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #9822: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9823: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #9824: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #9825: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #9826: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #9827: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9828: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #9829: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #9830: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #9831: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #9832: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9833: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #9834: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #9835: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #9836: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #9837: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9838: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #9839: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #9840: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #9841: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #9842: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9843: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #9844: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #9845: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #9846: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #9847: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9848: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #9849: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #9850: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #9851: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #9852: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9853: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #9854: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #9855: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #9856: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #9857: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9858: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #9859: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #9860: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #9861: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #9862: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #9863: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #9864: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #9865: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #9866: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #9867: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #9868: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #9869: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #9870: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #9871: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #9872: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #9873: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #9874: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #9875: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #9876: Decode Encrypted-Data . - PASSED
smime.sh: #9877: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #9878: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #9879: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #9880: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #9881: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #9882: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Wed May 10 12:07:25 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Wed May 10 12:07:25 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:25 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23074 >/dev/null 2>/dev/null
selfserv_9323 with PID 23074 found at Wed May 10 12:07:25 UTC 2017
selfserv_9323 with PID 23074 started at Wed May 10 12:07:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9883: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23074 at Wed May 10 12:07:25 UTC 2017
kill -USR1 23074
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23074 killed at Wed May 10 12:07:25 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:25 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23130 >/dev/null 2>/dev/null
selfserv_9323 with PID 23130 found at Wed May 10 12:07:25 UTC 2017
selfserv_9323 with PID 23130 started at Wed May 10 12:07:25 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9884: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23130 at Wed May 10 12:07:26 UTC 2017
kill -USR1 23130
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23130 killed at Wed May 10 12:07:26 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23186 >/dev/null 2>/dev/null
selfserv_9323 with PID 23186 found at Wed May 10 12:07:26 UTC 2017
selfserv_9323 with PID 23186 started at Wed May 10 12:07:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9885: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23186 at Wed May 10 12:07:26 UTC 2017
kill -USR1 23186
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23186 killed at Wed May 10 12:07:26 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23254 >/dev/null 2>/dev/null
selfserv_9323 with PID 23254 found at Wed May 10 12:07:26 UTC 2017
selfserv_9323 with PID 23254 started at Wed May 10 12:07:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9886: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23254 at Wed May 10 12:07:26 UTC 2017
kill -USR1 23254
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23254 killed at Wed May 10 12:07:26 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23319 >/dev/null 2>/dev/null
selfserv_9323 with PID 23319 found at Wed May 10 12:07:26 UTC 2017
selfserv_9323 with PID 23319 started at Wed May 10 12:07:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9887: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23319 at Wed May 10 12:07:26 UTC 2017
kill -USR1 23319
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23319 killed at Wed May 10 12:07:26 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23376 >/dev/null 2>/dev/null
selfserv_9323 with PID 23376 found at Wed May 10 12:07:27 UTC 2017
selfserv_9323 with PID 23376 started at Wed May 10 12:07:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9888: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23376 at Wed May 10 12:07:27 UTC 2017
kill -USR1 23376
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23376 killed at Wed May 10 12:07:27 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23444 >/dev/null 2>/dev/null
selfserv_9323 with PID 23444 found at Wed May 10 12:07:27 UTC 2017
selfserv_9323 with PID 23444 started at Wed May 10 12:07:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9889: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 23444 at Wed May 10 12:07:27 UTC 2017
kill -USR1 23444
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23444 killed at Wed May 10 12:07:27 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23500 >/dev/null 2>/dev/null
selfserv_9323 with PID 23500 found at Wed May 10 12:07:27 UTC 2017
selfserv_9323 with PID 23500 started at Wed May 10 12:07:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9890: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 23500 at Wed May 10 12:07:27 UTC 2017
kill -USR1 23500
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23500 killed at Wed May 10 12:07:27 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23556 >/dev/null 2>/dev/null
selfserv_9323 with PID 23556 found at Wed May 10 12:07:27 UTC 2017
selfserv_9323 with PID 23556 started at Wed May 10 12:07:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9891: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 23556 at Wed May 10 12:07:28 UTC 2017
kill -USR1 23556
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23556 killed at Wed May 10 12:07:28 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:28 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23624 >/dev/null 2>/dev/null
selfserv_9323 with PID 23624 found at Wed May 10 12:07:28 UTC 2017
selfserv_9323 with PID 23624 started at Wed May 10 12:07:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9892: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 23624 at Wed May 10 12:07:28 UTC 2017
kill -USR1 23624
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23624 killed at Wed May 10 12:07:28 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:28 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23680 >/dev/null 2>/dev/null
selfserv_9323 with PID 23680 found at Wed May 10 12:07:28 UTC 2017
selfserv_9323 with PID 23680 started at Wed May 10 12:07:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9893: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 23680 at Wed May 10 12:07:28 UTC 2017
kill -USR1 23680
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23680 killed at Wed May 10 12:07:28 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:28 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23736 >/dev/null 2>/dev/null
selfserv_9323 with PID 23736 found at Wed May 10 12:07:28 UTC 2017
selfserv_9323 with PID 23736 started at Wed May 10 12:07:28 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9894: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 23736 at Wed May 10 12:07:29 UTC 2017
kill -USR1 23736
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23736 killed at Wed May 10 12:07:29 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:29 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23804 >/dev/null 2>/dev/null
selfserv_9323 with PID 23804 found at Wed May 10 12:07:29 UTC 2017
selfserv_9323 with PID 23804 started at Wed May 10 12:07:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9895: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 23804 at Wed May 10 12:07:29 UTC 2017
kill -USR1 23804
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23804 killed at Wed May 10 12:07:29 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:29 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23860 >/dev/null 2>/dev/null
selfserv_9323 with PID 23860 found at Wed May 10 12:07:29 UTC 2017
selfserv_9323 with PID 23860 started at Wed May 10 12:07:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9896: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 23860 at Wed May 10 12:07:29 UTC 2017
kill -USR1 23860
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23860 killed at Wed May 10 12:07:29 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:29 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23916 >/dev/null 2>/dev/null
selfserv_9323 with PID 23916 found at Wed May 10 12:07:29 UTC 2017
selfserv_9323 with PID 23916 started at Wed May 10 12:07:29 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9897: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 23916 at Wed May 10 12:07:29 UTC 2017
kill -USR1 23916
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23916 killed at Wed May 10 12:07:29 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:30 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23984 >/dev/null 2>/dev/null
selfserv_9323 with PID 23984 found at Wed May 10 12:07:30 UTC 2017
selfserv_9323 with PID 23984 started at Wed May 10 12:07:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9898: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 23984 at Wed May 10 12:07:30 UTC 2017
kill -USR1 23984
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 23984 killed at Wed May 10 12:07:30 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:30 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24040 >/dev/null 2>/dev/null
selfserv_9323 with PID 24040 found at Wed May 10 12:07:30 UTC 2017
selfserv_9323 with PID 24040 started at Wed May 10 12:07:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9899: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 24040 at Wed May 10 12:07:30 UTC 2017
kill -USR1 24040
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24040 killed at Wed May 10 12:07:30 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:30 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24096 >/dev/null 2>/dev/null
selfserv_9323 with PID 24096 found at Wed May 10 12:07:30 UTC 2017
selfserv_9323 with PID 24096 started at Wed May 10 12:07:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9900: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 24096 at Wed May 10 12:07:30 UTC 2017
kill -USR1 24096
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24096 killed at Wed May 10 12:07:30 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:30 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24164 >/dev/null 2>/dev/null
selfserv_9323 with PID 24164 found at Wed May 10 12:07:30 UTC 2017
selfserv_9323 with PID 24164 started at Wed May 10 12:07:30 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9901: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 24164 at Wed May 10 12:07:31 UTC 2017
kill -USR1 24164
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24164 killed at Wed May 10 12:07:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24220 >/dev/null 2>/dev/null
selfserv_9323 with PID 24220 found at Wed May 10 12:07:31 UTC 2017
selfserv_9323 with PID 24220 started at Wed May 10 12:07:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9902: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 24220 at Wed May 10 12:07:31 UTC 2017
kill -USR1 24220
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24220 killed at Wed May 10 12:07:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24276 >/dev/null 2>/dev/null
selfserv_9323 with PID 24276 found at Wed May 10 12:07:31 UTC 2017
selfserv_9323 with PID 24276 started at Wed May 10 12:07:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9903: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 24276 at Wed May 10 12:07:31 UTC 2017
kill -USR1 24276
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24276 killed at Wed May 10 12:07:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:31 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24344 >/dev/null 2>/dev/null
selfserv_9323 with PID 24344 found at Wed May 10 12:07:31 UTC 2017
selfserv_9323 with PID 24344 started at Wed May 10 12:07:31 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9904: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 24344 at Wed May 10 12:07:32 UTC 2017
kill -USR1 24344
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24344 killed at Wed May 10 12:07:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24400 >/dev/null 2>/dev/null
selfserv_9323 with PID 24400 found at Wed May 10 12:07:32 UTC 2017
selfserv_9323 with PID 24400 started at Wed May 10 12:07:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9905: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 24400 at Wed May 10 12:07:32 UTC 2017
kill -USR1 24400
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24400 killed at Wed May 10 12:07:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24456 >/dev/null 2>/dev/null
selfserv_9323 with PID 24456 found at Wed May 10 12:07:32 UTC 2017
selfserv_9323 with PID 24456 started at Wed May 10 12:07:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9906: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 24456 at Wed May 10 12:07:32 UTC 2017
kill -USR1 24456
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24456 killed at Wed May 10 12:07:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24524 >/dev/null 2>/dev/null
selfserv_9323 with PID 24524 found at Wed May 10 12:07:32 UTC 2017
selfserv_9323 with PID 24524 started at Wed May 10 12:07:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9907: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 24524 at Wed May 10 12:07:32 UTC 2017
kill -USR1 24524
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24524 killed at Wed May 10 12:07:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:32 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24580 >/dev/null 2>/dev/null
selfserv_9323 with PID 24580 found at Wed May 10 12:07:32 UTC 2017
selfserv_9323 with PID 24580 started at Wed May 10 12:07:32 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9908: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 24580 at Wed May 10 12:07:33 UTC 2017
kill -USR1 24580
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24580 killed at Wed May 10 12:07:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24636 >/dev/null 2>/dev/null
selfserv_9323 with PID 24636 found at Wed May 10 12:07:33 UTC 2017
selfserv_9323 with PID 24636 started at Wed May 10 12:07:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9909: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 24636 at Wed May 10 12:07:33 UTC 2017
kill -USR1 24636
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24636 killed at Wed May 10 12:07:33 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24704 >/dev/null 2>/dev/null
selfserv_9323 with PID 24704 found at Wed May 10 12:07:33 UTC 2017
selfserv_9323 with PID 24704 started at Wed May 10 12:07:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9910: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 24704 at Wed May 10 12:07:33 UTC 2017
kill -USR1 24704
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24704 killed at Wed May 10 12:07:33 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:33 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24760 >/dev/null 2>/dev/null
selfserv_9323 with PID 24760 found at Wed May 10 12:07:33 UTC 2017
selfserv_9323 with PID 24760 started at Wed May 10 12:07:33 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9911: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 24760 at Wed May 10 12:07:34 UTC 2017
kill -USR1 24760
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24760 killed at Wed May 10 12:07:34 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24816 >/dev/null 2>/dev/null
selfserv_9323 with PID 24816 found at Wed May 10 12:07:34 UTC 2017
selfserv_9323 with PID 24816 started at Wed May 10 12:07:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9912: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 24816 at Wed May 10 12:07:34 UTC 2017
kill -USR1 24816
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24816 killed at Wed May 10 12:07:34 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24884 >/dev/null 2>/dev/null
selfserv_9323 with PID 24884 found at Wed May 10 12:07:34 UTC 2017
selfserv_9323 with PID 24884 started at Wed May 10 12:07:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9913: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 24884 at Wed May 10 12:07:34 UTC 2017
kill -USR1 24884
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24884 killed at Wed May 10 12:07:34 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24941 >/dev/null 2>/dev/null
selfserv_9323 with PID 24941 found at Wed May 10 12:07:34 UTC 2017
selfserv_9323 with PID 24941 started at Wed May 10 12:07:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9914: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 24941 at Wed May 10 12:07:34 UTC 2017
kill -USR1 24941
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24941 killed at Wed May 10 12:07:34 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24998 >/dev/null 2>/dev/null
selfserv_9323 with PID 24998 found at Wed May 10 12:07:35 UTC 2017
selfserv_9323 with PID 24998 started at Wed May 10 12:07:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9915: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 24998 at Wed May 10 12:07:35 UTC 2017
kill -USR1 24998
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 24998 killed at Wed May 10 12:07:35 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25066 >/dev/null 2>/dev/null
selfserv_9323 with PID 25066 found at Wed May 10 12:07:35 UTC 2017
selfserv_9323 with PID 25066 started at Wed May 10 12:07:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9916: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 25066 at Wed May 10 12:07:35 UTC 2017
kill -USR1 25066
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25066 killed at Wed May 10 12:07:35 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25124 >/dev/null 2>/dev/null
selfserv_9323 with PID 25124 found at Wed May 10 12:07:35 UTC 2017
selfserv_9323 with PID 25124 started at Wed May 10 12:07:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9917: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 25124 at Wed May 10 12:07:35 UTC 2017
kill -USR1 25124
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25124 killed at Wed May 10 12:07:35 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:35 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25180 >/dev/null 2>/dev/null
selfserv_9323 with PID 25180 found at Wed May 10 12:07:35 UTC 2017
selfserv_9323 with PID 25180 started at Wed May 10 12:07:35 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9918: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 25180 at Wed May 10 12:07:36 UTC 2017
kill -USR1 25180
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25180 killed at Wed May 10 12:07:36 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25248 >/dev/null 2>/dev/null
selfserv_9323 with PID 25248 found at Wed May 10 12:07:36 UTC 2017
selfserv_9323 with PID 25248 started at Wed May 10 12:07:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9919: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 25248 at Wed May 10 12:07:36 UTC 2017
kill -USR1 25248
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25248 killed at Wed May 10 12:07:36 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25304 >/dev/null 2>/dev/null
selfserv_9323 with PID 25304 found at Wed May 10 12:07:36 UTC 2017
selfserv_9323 with PID 25304 started at Wed May 10 12:07:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9920: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 25304 at Wed May 10 12:07:36 UTC 2017
kill -USR1 25304
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25304 killed at Wed May 10 12:07:36 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:36 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25360 >/dev/null 2>/dev/null
selfserv_9323 with PID 25360 found at Wed May 10 12:07:36 UTC 2017
selfserv_9323 with PID 25360 started at Wed May 10 12:07:36 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9921: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 25360 at Wed May 10 12:07:37 UTC 2017
kill -USR1 25360
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25360 killed at Wed May 10 12:07:37 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25428 >/dev/null 2>/dev/null
selfserv_9323 with PID 25428 found at Wed May 10 12:07:37 UTC 2017
selfserv_9323 with PID 25428 started at Wed May 10 12:07:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9922: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 25428 at Wed May 10 12:07:37 UTC 2017
kill -USR1 25428
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25428 killed at Wed May 10 12:07:37 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:37 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25484 >/dev/null 2>/dev/null
selfserv_9323 with PID 25484 found at Wed May 10 12:07:37 UTC 2017
selfserv_9323 with PID 25484 started at Wed May 10 12:07:37 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9923: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 25484 at Wed May 10 12:07:37 UTC 2017
kill -USR1 25484
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25484 killed at Wed May 10 12:07:37 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25540 >/dev/null 2>/dev/null
selfserv_9323 with PID 25540 found at Wed May 10 12:07:38 UTC 2017
selfserv_9323 with PID 25540 started at Wed May 10 12:07:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9924: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 25540 at Wed May 10 12:07:38 UTC 2017
kill -USR1 25540
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25540 killed at Wed May 10 12:07:38 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25608 >/dev/null 2>/dev/null
selfserv_9323 with PID 25608 found at Wed May 10 12:07:38 UTC 2017
selfserv_9323 with PID 25608 started at Wed May 10 12:07:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9925: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 25608 at Wed May 10 12:07:38 UTC 2017
kill -USR1 25608
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25608 killed at Wed May 10 12:07:38 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:38 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25664 >/dev/null 2>/dev/null
selfserv_9323 with PID 25664 found at Wed May 10 12:07:38 UTC 2017
selfserv_9323 with PID 25664 started at Wed May 10 12:07:38 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9926: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 25664 at Wed May 10 12:07:39 UTC 2017
kill -USR1 25664
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25664 killed at Wed May 10 12:07:39 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25720 >/dev/null 2>/dev/null
selfserv_9323 with PID 25720 found at Wed May 10 12:07:39 UTC 2017
selfserv_9323 with PID 25720 started at Wed May 10 12:07:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9927: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 25720 at Wed May 10 12:07:39 UTC 2017
kill -USR1 25720
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25720 killed at Wed May 10 12:07:39 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25788 >/dev/null 2>/dev/null
selfserv_9323 with PID 25788 found at Wed May 10 12:07:39 UTC 2017
selfserv_9323 with PID 25788 started at Wed May 10 12:07:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9928: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 25788 at Wed May 10 12:07:39 UTC 2017
kill -USR1 25788
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25788 killed at Wed May 10 12:07:39 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:39 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25844 >/dev/null 2>/dev/null
selfserv_9323 with PID 25844 found at Wed May 10 12:07:39 UTC 2017
selfserv_9323 with PID 25844 started at Wed May 10 12:07:39 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9929: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 25844 at Wed May 10 12:07:40 UTC 2017
kill -USR1 25844
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25844 killed at Wed May 10 12:07:40 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25900 >/dev/null 2>/dev/null
selfserv_9323 with PID 25900 found at Wed May 10 12:07:40 UTC 2017
selfserv_9323 with PID 25900 started at Wed May 10 12:07:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9930: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 25900 at Wed May 10 12:07:40 UTC 2017
kill -USR1 25900
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25900 killed at Wed May 10 12:07:40 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25968 >/dev/null 2>/dev/null
selfserv_9323 with PID 25968 found at Wed May 10 12:07:40 UTC 2017
selfserv_9323 with PID 25968 started at Wed May 10 12:07:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9931: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 25968 at Wed May 10 12:07:40 UTC 2017
kill -USR1 25968
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 25968 killed at Wed May 10 12:07:40 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26024 >/dev/null 2>/dev/null
selfserv_9323 with PID 26024 found at Wed May 10 12:07:40 UTC 2017
selfserv_9323 with PID 26024 started at Wed May 10 12:07:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9932: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 26024 at Wed May 10 12:07:41 UTC 2017
kill -USR1 26024
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26024 killed at Wed May 10 12:07:41 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26080 >/dev/null 2>/dev/null
selfserv_9323 with PID 26080 found at Wed May 10 12:07:41 UTC 2017
selfserv_9323 with PID 26080 started at Wed May 10 12:07:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9933: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 26080 at Wed May 10 12:07:41 UTC 2017
kill -USR1 26080
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26080 killed at Wed May 10 12:07:41 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26148 >/dev/null 2>/dev/null
selfserv_9323 with PID 26148 found at Wed May 10 12:07:41 UTC 2017
selfserv_9323 with PID 26148 started at Wed May 10 12:07:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9934: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 26148 at Wed May 10 12:07:41 UTC 2017
kill -USR1 26148
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26148 killed at Wed May 10 12:07:41 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:41 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26204 >/dev/null 2>/dev/null
selfserv_9323 with PID 26204 found at Wed May 10 12:07:41 UTC 2017
selfserv_9323 with PID 26204 started at Wed May 10 12:07:41 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9935: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 26204 at Wed May 10 12:07:42 UTC 2017
kill -USR1 26204
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26204 killed at Wed May 10 12:07:42 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26260 >/dev/null 2>/dev/null
selfserv_9323 with PID 26260 found at Wed May 10 12:07:42 UTC 2017
selfserv_9323 with PID 26260 started at Wed May 10 12:07:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9936: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 26260 at Wed May 10 12:07:42 UTC 2017
kill -USR1 26260
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26260 killed at Wed May 10 12:07:42 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26328 >/dev/null 2>/dev/null
selfserv_9323 with PID 26328 found at Wed May 10 12:07:42 UTC 2017
selfserv_9323 with PID 26328 started at Wed May 10 12:07:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9937: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 26328 at Wed May 10 12:07:42 UTC 2017
kill -USR1 26328
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26328 killed at Wed May 10 12:07:42 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26384 >/dev/null 2>/dev/null
selfserv_9323 with PID 26384 found at Wed May 10 12:07:42 UTC 2017
selfserv_9323 with PID 26384 started at Wed May 10 12:07:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9938: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 26384 at Wed May 10 12:07:43 UTC 2017
kill -USR1 26384
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26384 killed at Wed May 10 12:07:43 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26441 >/dev/null 2>/dev/null
selfserv_9323 with PID 26441 found at Wed May 10 12:07:43 UTC 2017
selfserv_9323 with PID 26441 started at Wed May 10 12:07:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9939: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 26441 at Wed May 10 12:07:43 UTC 2017
kill -USR1 26441
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26441 killed at Wed May 10 12:07:43 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:43 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26509 >/dev/null 2>/dev/null
selfserv_9323 with PID 26509 found at Wed May 10 12:07:43 UTC 2017
selfserv_9323 with PID 26509 started at Wed May 10 12:07:43 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9940: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 26509 at Wed May 10 12:07:44 UTC 2017
kill -USR1 26509
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26509 killed at Wed May 10 12:07:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26565 >/dev/null 2>/dev/null
selfserv_9323 with PID 26565 found at Wed May 10 12:07:44 UTC 2017
selfserv_9323 with PID 26565 started at Wed May 10 12:07:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9941: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 26565 at Wed May 10 12:07:44 UTC 2017
kill -USR1 26565
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26565 killed at Wed May 10 12:07:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26621 >/dev/null 2>/dev/null
selfserv_9323 with PID 26621 found at Wed May 10 12:07:44 UTC 2017
selfserv_9323 with PID 26621 started at Wed May 10 12:07:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9942: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 26621 at Wed May 10 12:07:44 UTC 2017
kill -USR1 26621
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26621 killed at Wed May 10 12:07:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:44 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26689 >/dev/null 2>/dev/null
selfserv_9323 with PID 26689 found at Wed May 10 12:07:44 UTC 2017
selfserv_9323 with PID 26689 started at Wed May 10 12:07:44 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9943: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 26689 at Wed May 10 12:07:45 UTC 2017
kill -USR1 26689
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26689 killed at Wed May 10 12:07:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26745 >/dev/null 2>/dev/null
selfserv_9323 with PID 26745 found at Wed May 10 12:07:45 UTC 2017
selfserv_9323 with PID 26745 started at Wed May 10 12:07:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9944: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 26745 at Wed May 10 12:07:45 UTC 2017
kill -USR1 26745
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26745 killed at Wed May 10 12:07:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26801 >/dev/null 2>/dev/null
selfserv_9323 with PID 26801 found at Wed May 10 12:07:45 UTC 2017
selfserv_9323 with PID 26801 started at Wed May 10 12:07:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9945: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 26801 at Wed May 10 12:07:45 UTC 2017
kill -USR1 26801
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26801 killed at Wed May 10 12:07:45 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:45 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26869 >/dev/null 2>/dev/null
selfserv_9323 with PID 26869 found at Wed May 10 12:07:45 UTC 2017
selfserv_9323 with PID 26869 started at Wed May 10 12:07:45 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9946: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 26869 at Wed May 10 12:07:46 UTC 2017
kill -USR1 26869
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26869 killed at Wed May 10 12:07:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26928 >/dev/null 2>/dev/null
selfserv_9323 with PID 26928 found at Wed May 10 12:07:46 UTC 2017
selfserv_9323 with PID 26928 started at Wed May 10 12:07:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9947: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 26928 at Wed May 10 12:07:46 UTC 2017
kill -USR1 26928
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26928 killed at Wed May 10 12:07:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26984 >/dev/null 2>/dev/null
selfserv_9323 with PID 26984 found at Wed May 10 12:07:46 UTC 2017
selfserv_9323 with PID 26984 started at Wed May 10 12:07:46 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9948: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 26984 at Wed May 10 12:07:46 UTC 2017
kill -USR1 26984
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 26984 killed at Wed May 10 12:07:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:46 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27052 >/dev/null 2>/dev/null
selfserv_9323 with PID 27052 found at Wed May 10 12:07:47 UTC 2017
selfserv_9323 with PID 27052 started at Wed May 10 12:07:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9949: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 27052 at Wed May 10 12:07:47 UTC 2017
kill -USR1 27052
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27052 killed at Wed May 10 12:07:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27108 >/dev/null 2>/dev/null
selfserv_9323 with PID 27108 found at Wed May 10 12:07:47 UTC 2017
selfserv_9323 with PID 27108 started at Wed May 10 12:07:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9950: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 27108 at Wed May 10 12:07:47 UTC 2017
kill -USR1 27108
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27108 killed at Wed May 10 12:07:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:47 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27164 >/dev/null 2>/dev/null
selfserv_9323 with PID 27164 found at Wed May 10 12:07:47 UTC 2017
selfserv_9323 with PID 27164 started at Wed May 10 12:07:47 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9951: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 27164 at Wed May 10 12:07:48 UTC 2017
kill -USR1 27164
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27164 killed at Wed May 10 12:07:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27232 >/dev/null 2>/dev/null
selfserv_9323 with PID 27232 found at Wed May 10 12:07:48 UTC 2017
selfserv_9323 with PID 27232 started at Wed May 10 12:07:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9952: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 27232 at Wed May 10 12:07:48 UTC 2017
kill -USR1 27232
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27232 killed at Wed May 10 12:07:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27288 >/dev/null 2>/dev/null
selfserv_9323 with PID 27288 found at Wed May 10 12:07:48 UTC 2017
selfserv_9323 with PID 27288 started at Wed May 10 12:07:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9953: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 27288 at Wed May 10 12:07:48 UTC 2017
kill -USR1 27288
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27288 killed at Wed May 10 12:07:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27344 >/dev/null 2>/dev/null
selfserv_9323 with PID 27344 found at Wed May 10 12:07:48 UTC 2017
selfserv_9323 with PID 27344 started at Wed May 10 12:07:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9954: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 27344 at Wed May 10 12:07:49 UTC 2017
kill -USR1 27344
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27344 killed at Wed May 10 12:07:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27412 >/dev/null 2>/dev/null
selfserv_9323 with PID 27412 found at Wed May 10 12:07:49 UTC 2017
selfserv_9323 with PID 27412 started at Wed May 10 12:07:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9955: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 27412 at Wed May 10 12:07:49 UTC 2017
kill -USR1 27412
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27412 killed at Wed May 10 12:07:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27468 >/dev/null 2>/dev/null
selfserv_9323 with PID 27468 found at Wed May 10 12:07:49 UTC 2017
selfserv_9323 with PID 27468 started at Wed May 10 12:07:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9956: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 27468 at Wed May 10 12:07:49 UTC 2017
kill -USR1 27468
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27468 killed at Wed May 10 12:07:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27524 >/dev/null 2>/dev/null
selfserv_9323 with PID 27524 found at Wed May 10 12:07:49 UTC 2017
selfserv_9323 with PID 27524 started at Wed May 10 12:07:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9957: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 27524 at Wed May 10 12:07:50 UTC 2017
kill -USR1 27524
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27524 killed at Wed May 10 12:07:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:50 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27592 >/dev/null 2>/dev/null
selfserv_9323 with PID 27592 found at Wed May 10 12:07:50 UTC 2017
selfserv_9323 with PID 27592 started at Wed May 10 12:07:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9958: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 27592 at Wed May 10 12:07:50 UTC 2017
kill -USR1 27592
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27592 killed at Wed May 10 12:07:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:50 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27648 >/dev/null 2>/dev/null
selfserv_9323 with PID 27648 found at Wed May 10 12:07:50 UTC 2017
selfserv_9323 with PID 27648 started at Wed May 10 12:07:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9959: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 27648 at Wed May 10 12:07:50 UTC 2017
kill -USR1 27648
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27648 killed at Wed May 10 12:07:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:50 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27704 >/dev/null 2>/dev/null
selfserv_9323 with PID 27704 found at Wed May 10 12:07:50 UTC 2017
selfserv_9323 with PID 27704 started at Wed May 10 12:07:50 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9960: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 27704 at Wed May 10 12:07:50 UTC 2017
kill -USR1 27704
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27704 killed at Wed May 10 12:07:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:51 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27772 >/dev/null 2>/dev/null
selfserv_9323 with PID 27772 found at Wed May 10 12:07:51 UTC 2017
selfserv_9323 with PID 27772 started at Wed May 10 12:07:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9961: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 27772 at Wed May 10 12:07:51 UTC 2017
kill -USR1 27772
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27772 killed at Wed May 10 12:07:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:51 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27828 >/dev/null 2>/dev/null
selfserv_9323 with PID 27828 found at Wed May 10 12:07:51 UTC 2017
selfserv_9323 with PID 27828 started at Wed May 10 12:07:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9962: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 27828 at Wed May 10 12:07:51 UTC 2017
kill -USR1 27828
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27828 killed at Wed May 10 12:07:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:51 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27884 >/dev/null 2>/dev/null
selfserv_9323 with PID 27884 found at Wed May 10 12:07:51 UTC 2017
selfserv_9323 with PID 27884 started at Wed May 10 12:07:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9963: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 27884 at Wed May 10 12:07:51 UTC 2017
kill -USR1 27884
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27884 killed at Wed May 10 12:07:51 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:51 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27952 >/dev/null 2>/dev/null
selfserv_9323 with PID 27952 found at Wed May 10 12:07:51 UTC 2017
selfserv_9323 with PID 27952 started at Wed May 10 12:07:51 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9964: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 27952 at Wed May 10 12:07:52 UTC 2017
kill -USR1 27952
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 27952 killed at Wed May 10 12:07:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:52 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28008 >/dev/null 2>/dev/null
selfserv_9323 with PID 28008 found at Wed May 10 12:07:52 UTC 2017
selfserv_9323 with PID 28008 started at Wed May 10 12:07:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9965: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28008 at Wed May 10 12:07:52 UTC 2017
kill -USR1 28008
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28008 killed at Wed May 10 12:07:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9323 starting at Wed May 10 12:07:52 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28064 >/dev/null 2>/dev/null
selfserv_9323 with PID 28064 found at Wed May 10 12:07:52 UTC 2017
selfserv_9323 with PID 28064 started at Wed May 10 12:07:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9966: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28064 at Wed May 10 12:07:52 UTC 2017
kill -USR1 28064
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28064 killed at Wed May 10 12:07:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:52 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28132 >/dev/null 2>/dev/null
selfserv_9323 with PID 28132 found at Wed May 10 12:07:52 UTC 2017
selfserv_9323 with PID 28132 started at Wed May 10 12:07:52 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9967: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28132 at Wed May 10 12:07:53 UTC 2017
kill -USR1 28132
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28132 killed at Wed May 10 12:07:53 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:53 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28188 >/dev/null 2>/dev/null
selfserv_9323 with PID 28188 found at Wed May 10 12:07:53 UTC 2017
selfserv_9323 with PID 28188 started at Wed May 10 12:07:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9968: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28188 at Wed May 10 12:07:53 UTC 2017
kill -USR1 28188
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28188 killed at Wed May 10 12:07:53 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:53 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28244 >/dev/null 2>/dev/null
selfserv_9323 with PID 28244 found at Wed May 10 12:07:53 UTC 2017
selfserv_9323 with PID 28244 started at Wed May 10 12:07:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9969: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28244 at Wed May 10 12:07:53 UTC 2017
kill -USR1 28244
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28244 killed at Wed May 10 12:07:53 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:53 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28312 >/dev/null 2>/dev/null
selfserv_9323 with PID 28312 found at Wed May 10 12:07:53 UTC 2017
selfserv_9323 with PID 28312 started at Wed May 10 12:07:53 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9970: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28312 at Wed May 10 12:07:54 UTC 2017
kill -USR1 28312
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28312 killed at Wed May 10 12:07:54 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:54 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28368 >/dev/null 2>/dev/null
selfserv_9323 with PID 28368 found at Wed May 10 12:07:54 UTC 2017
selfserv_9323 with PID 28368 started at Wed May 10 12:07:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9971: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 28368 at Wed May 10 12:07:54 UTC 2017
kill -USR1 28368
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28368 killed at Wed May 10 12:07:54 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:54 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28424 >/dev/null 2>/dev/null
selfserv_9323 with PID 28424 found at Wed May 10 12:07:54 UTC 2017
selfserv_9323 with PID 28424 started at Wed May 10 12:07:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9972: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 28424 at Wed May 10 12:07:54 UTC 2017
kill -USR1 28424
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28424 killed at Wed May 10 12:07:54 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:54 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28501 >/dev/null 2>/dev/null
selfserv_9323 with PID 28501 found at Wed May 10 12:07:54 UTC 2017
selfserv_9323 with PID 28501 started at Wed May 10 12:07:54 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9973: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 28501 at Wed May 10 12:07:55 UTC 2017
kill -USR1 28501
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28501 killed at Wed May 10 12:07:55 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:55 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28557 >/dev/null 2>/dev/null
selfserv_9323 with PID 28557 found at Wed May 10 12:07:55 UTC 2017
selfserv_9323 with PID 28557 started at Wed May 10 12:07:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9974: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 28557 at Wed May 10 12:07:55 UTC 2017
kill -USR1 28557
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28557 killed at Wed May 10 12:07:55 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:55 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28613 >/dev/null 2>/dev/null
selfserv_9323 with PID 28613 found at Wed May 10 12:07:55 UTC 2017
selfserv_9323 with PID 28613 started at Wed May 10 12:07:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9975: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 28613 at Wed May 10 12:07:55 UTC 2017
kill -USR1 28613
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28613 killed at Wed May 10 12:07:55 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:55 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28681 >/dev/null 2>/dev/null
selfserv_9323 with PID 28681 found at Wed May 10 12:07:55 UTC 2017
selfserv_9323 with PID 28681 started at Wed May 10 12:07:55 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9976: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 28681 at Wed May 10 12:07:56 UTC 2017
kill -USR1 28681
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28681 killed at Wed May 10 12:07:56 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28737 >/dev/null 2>/dev/null
selfserv_9323 with PID 28737 found at Wed May 10 12:07:56 UTC 2017
selfserv_9323 with PID 28737 started at Wed May 10 12:07:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9977: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 28737 at Wed May 10 12:07:56 UTC 2017
kill -USR1 28737
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28737 killed at Wed May 10 12:07:56 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28793 >/dev/null 2>/dev/null
selfserv_9323 with PID 28793 found at Wed May 10 12:07:56 UTC 2017
selfserv_9323 with PID 28793 started at Wed May 10 12:07:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9978: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 28793 at Wed May 10 12:07:56 UTC 2017
kill -USR1 28793
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28793 killed at Wed May 10 12:07:56 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28861 >/dev/null 2>/dev/null
selfserv_9323 with PID 28861 found at Wed May 10 12:07:56 UTC 2017
selfserv_9323 with PID 28861 started at Wed May 10 12:07:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9979: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 28861 at Wed May 10 12:07:57 UTC 2017
kill -USR1 28861
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28861 killed at Wed May 10 12:07:57 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28917 >/dev/null 2>/dev/null
selfserv_9323 with PID 28917 found at Wed May 10 12:07:57 UTC 2017
selfserv_9323 with PID 28917 started at Wed May 10 12:07:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9980: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 28917 at Wed May 10 12:07:57 UTC 2017
kill -USR1 28917
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28917 killed at Wed May 10 12:07:57 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28973 >/dev/null 2>/dev/null
selfserv_9323 with PID 28973 found at Wed May 10 12:07:57 UTC 2017
selfserv_9323 with PID 28973 started at Wed May 10 12:07:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9981: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 28973 at Wed May 10 12:07:57 UTC 2017
kill -USR1 28973
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 28973 killed at Wed May 10 12:07:57 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29041 >/dev/null 2>/dev/null
selfserv_9323 with PID 29041 found at Wed May 10 12:07:57 UTC 2017
selfserv_9323 with PID 29041 started at Wed May 10 12:07:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9982: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 29041 at Wed May 10 12:07:57 UTC 2017
kill -USR1 29041
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29041 killed at Wed May 10 12:07:58 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29097 >/dev/null 2>/dev/null
selfserv_9323 with PID 29097 found at Wed May 10 12:07:58 UTC 2017
selfserv_9323 with PID 29097 started at Wed May 10 12:07:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9983: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 29097 at Wed May 10 12:07:58 UTC 2017
kill -USR1 29097
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29097 killed at Wed May 10 12:07:58 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29153 >/dev/null 2>/dev/null
selfserv_9323 with PID 29153 found at Wed May 10 12:07:58 UTC 2017
selfserv_9323 with PID 29153 started at Wed May 10 12:07:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9984: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 29153 at Wed May 10 12:07:58 UTC 2017
kill -USR1 29153
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29153 killed at Wed May 10 12:07:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:58 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29221 >/dev/null 2>/dev/null
selfserv_9323 with PID 29221 found at Wed May 10 12:07:58 UTC 2017
selfserv_9323 with PID 29221 started at Wed May 10 12:07:58 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9985: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 29221 at Wed May 10 12:07:59 UTC 2017
kill -USR1 29221
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29221 killed at Wed May 10 12:07:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:59 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29277 >/dev/null 2>/dev/null
selfserv_9323 with PID 29277 found at Wed May 10 12:07:59 UTC 2017
selfserv_9323 with PID 29277 started at Wed May 10 12:07:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9986: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 29277 at Wed May 10 12:07:59 UTC 2017
kill -USR1 29277
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29277 killed at Wed May 10 12:07:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:07:59 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29333 >/dev/null 2>/dev/null
selfserv_9323 with PID 29333 found at Wed May 10 12:07:59 UTC 2017
selfserv_9323 with PID 29333 started at Wed May 10 12:07:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9987: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 29333 at Wed May 10 12:07:59 UTC 2017
kill -USR1 29333
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29333 killed at Wed May 10 12:07:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:59 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:07:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29401 >/dev/null 2>/dev/null
selfserv_9323 with PID 29401 found at Wed May 10 12:07:59 UTC 2017
selfserv_9323 with PID 29401 started at Wed May 10 12:07:59 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9988: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 29401 at Wed May 10 12:07:59 UTC 2017
kill -USR1 29401
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29401 killed at Wed May 10 12:07:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:07:59 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29457 >/dev/null 2>/dev/null
selfserv_9323 with PID 29457 found at Wed May 10 12:08:00 UTC 2017
selfserv_9323 with PID 29457 started at Wed May 10 12:08:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9989: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 29457 at Wed May 10 12:08:00 UTC 2017
kill -USR1 29457
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29457 killed at Wed May 10 12:08:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29513 >/dev/null 2>/dev/null
selfserv_9323 with PID 29513 found at Wed May 10 12:08:00 UTC 2017
selfserv_9323 with PID 29513 started at Wed May 10 12:08:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9990: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 29513 at Wed May 10 12:08:00 UTC 2017
kill -USR1 29513
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29513 killed at Wed May 10 12:08:00 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29581 >/dev/null 2>/dev/null
selfserv_9323 with PID 29581 found at Wed May 10 12:08:00 UTC 2017
selfserv_9323 with PID 29581 started at Wed May 10 12:08:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9991: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 29581 at Wed May 10 12:08:00 UTC 2017
kill -USR1 29581
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29581 killed at Wed May 10 12:08:00 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:00 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29637 >/dev/null 2>/dev/null
selfserv_9323 with PID 29637 found at Wed May 10 12:08:00 UTC 2017
selfserv_9323 with PID 29637 started at Wed May 10 12:08:00 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9992: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 29637 at Wed May 10 12:08:01 UTC 2017
kill -USR1 29637
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29637 killed at Wed May 10 12:08:01 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:01 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29693 >/dev/null 2>/dev/null
selfserv_9323 with PID 29693 found at Wed May 10 12:08:01 UTC 2017
selfserv_9323 with PID 29693 started at Wed May 10 12:08:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9993: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 29693 at Wed May 10 12:08:01 UTC 2017
kill -USR1 29693
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29693 killed at Wed May 10 12:08:01 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:01 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29761 >/dev/null 2>/dev/null
selfserv_9323 with PID 29761 found at Wed May 10 12:08:01 UTC 2017
selfserv_9323 with PID 29761 started at Wed May 10 12:08:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9994: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 29761 at Wed May 10 12:08:01 UTC 2017
kill -USR1 29761
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29761 killed at Wed May 10 12:08:01 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:01 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29817 >/dev/null 2>/dev/null
selfserv_9323 with PID 29817 found at Wed May 10 12:08:01 UTC 2017
selfserv_9323 with PID 29817 started at Wed May 10 12:08:01 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9995: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 29817 at Wed May 10 12:08:02 UTC 2017
kill -USR1 29817
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29817 killed at Wed May 10 12:08:02 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:02 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29873 >/dev/null 2>/dev/null
selfserv_9323 with PID 29873 found at Wed May 10 12:08:02 UTC 2017
selfserv_9323 with PID 29873 started at Wed May 10 12:08:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9996: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 29873 at Wed May 10 12:08:02 UTC 2017
kill -USR1 29873
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29873 killed at Wed May 10 12:08:02 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:02 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29941 >/dev/null 2>/dev/null
selfserv_9323 with PID 29941 found at Wed May 10 12:08:02 UTC 2017
selfserv_9323 with PID 29941 started at Wed May 10 12:08:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9997: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 29941 at Wed May 10 12:08:02 UTC 2017
kill -USR1 29941
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29941 killed at Wed May 10 12:08:02 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:02 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29997 >/dev/null 2>/dev/null
selfserv_9323 with PID 29997 found at Wed May 10 12:08:02 UTC 2017
selfserv_9323 with PID 29997 started at Wed May 10 12:08:02 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9998: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 29997 at Wed May 10 12:08:03 UTC 2017
kill -USR1 29997
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 29997 killed at Wed May 10 12:08:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30053 >/dev/null 2>/dev/null
selfserv_9323 with PID 30053 found at Wed May 10 12:08:03 UTC 2017
selfserv_9323 with PID 30053 started at Wed May 10 12:08:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9999: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 30053 at Wed May 10 12:08:03 UTC 2017
kill -USR1 30053
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30053 killed at Wed May 10 12:08:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30121 >/dev/null 2>/dev/null
selfserv_9323 with PID 30121 found at Wed May 10 12:08:03 UTC 2017
selfserv_9323 with PID 30121 started at Wed May 10 12:08:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10000: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 30121 at Wed May 10 12:08:03 UTC 2017
kill -USR1 30121
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30121 killed at Wed May 10 12:08:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30177 >/dev/null 2>/dev/null
selfserv_9323 with PID 30177 found at Wed May 10 12:08:03 UTC 2017
selfserv_9323 with PID 30177 started at Wed May 10 12:08:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10001: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 30177 at Wed May 10 12:08:04 UTC 2017
kill -USR1 30177
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30177 killed at Wed May 10 12:08:04 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:04 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30233 >/dev/null 2>/dev/null
selfserv_9323 with PID 30233 found at Wed May 10 12:08:04 UTC 2017
selfserv_9323 with PID 30233 started at Wed May 10 12:08:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10002: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 30233 at Wed May 10 12:08:04 UTC 2017
kill -USR1 30233
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30233 killed at Wed May 10 12:08:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:04 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30301 >/dev/null 2>/dev/null
selfserv_9323 with PID 30301 found at Wed May 10 12:08:04 UTC 2017
selfserv_9323 with PID 30301 started at Wed May 10 12:08:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10003: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 30301 at Wed May 10 12:08:04 UTC 2017
kill -USR1 30301
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30301 killed at Wed May 10 12:08:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:04 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30357 >/dev/null 2>/dev/null
selfserv_9323 with PID 30357 found at Wed May 10 12:08:04 UTC 2017
selfserv_9323 with PID 30357 started at Wed May 10 12:08:04 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10004: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 30357 at Wed May 10 12:08:05 UTC 2017
kill -USR1 30357
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30357 killed at Wed May 10 12:08:05 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30413 >/dev/null 2>/dev/null
selfserv_9323 with PID 30413 found at Wed May 10 12:08:05 UTC 2017
selfserv_9323 with PID 30413 started at Wed May 10 12:08:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10005: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 30413 at Wed May 10 12:08:05 UTC 2017
kill -USR1 30413
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30413 killed at Wed May 10 12:08:05 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30481 >/dev/null 2>/dev/null
selfserv_9323 with PID 30481 found at Wed May 10 12:08:05 UTC 2017
selfserv_9323 with PID 30481 started at Wed May 10 12:08:05 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10006: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 30481 at Wed May 10 12:08:05 UTC 2017
kill -USR1 30481
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30481 killed at Wed May 10 12:08:05 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:05 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30537 >/dev/null 2>/dev/null
selfserv_9323 with PID 30537 found at Wed May 10 12:08:06 UTC 2017
selfserv_9323 with PID 30537 started at Wed May 10 12:08:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10007: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 30537 at Wed May 10 12:08:06 UTC 2017
kill -USR1 30537
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30537 killed at Wed May 10 12:08:06 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30593 >/dev/null 2>/dev/null
selfserv_9323 with PID 30593 found at Wed May 10 12:08:06 UTC 2017
selfserv_9323 with PID 30593 started at Wed May 10 12:08:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10008: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 30593 at Wed May 10 12:08:06 UTC 2017
kill -USR1 30593
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30593 killed at Wed May 10 12:08:06 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30661 >/dev/null 2>/dev/null
selfserv_9323 with PID 30661 found at Wed May 10 12:08:06 UTC 2017
selfserv_9323 with PID 30661 started at Wed May 10 12:08:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10009: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 30661 at Wed May 10 12:08:07 UTC 2017
kill -USR1 30661
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30661 killed at Wed May 10 12:08:07 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30717 >/dev/null 2>/dev/null
selfserv_9323 with PID 30717 found at Wed May 10 12:08:07 UTC 2017
selfserv_9323 with PID 30717 started at Wed May 10 12:08:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10010: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 30717 at Wed May 10 12:08:07 UTC 2017
kill -USR1 30717
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30717 killed at Wed May 10 12:08:07 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30773 >/dev/null 2>/dev/null
selfserv_9323 with PID 30773 found at Wed May 10 12:08:07 UTC 2017
selfserv_9323 with PID 30773 started at Wed May 10 12:08:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10011: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 30773 at Wed May 10 12:08:07 UTC 2017
kill -USR1 30773
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30773 killed at Wed May 10 12:08:07 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:07 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30841 >/dev/null 2>/dev/null
selfserv_9323 with PID 30841 found at Wed May 10 12:08:07 UTC 2017
selfserv_9323 with PID 30841 started at Wed May 10 12:08:07 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10012: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 30841 at Wed May 10 12:08:08 UTC 2017
kill -USR1 30841
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30841 killed at Wed May 10 12:08:08 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30897 >/dev/null 2>/dev/null
selfserv_9323 with PID 30897 found at Wed May 10 12:08:08 UTC 2017
selfserv_9323 with PID 30897 started at Wed May 10 12:08:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10013: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 30897 at Wed May 10 12:08:08 UTC 2017
kill -USR1 30897
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30897 killed at Wed May 10 12:08:08 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:08 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30953 >/dev/null 2>/dev/null
selfserv_9323 with PID 30953 found at Wed May 10 12:08:08 UTC 2017
selfserv_9323 with PID 30953 started at Wed May 10 12:08:08 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10014: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 30953 at Wed May 10 12:08:08 UTC 2017
kill -USR1 30953
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 30953 killed at Wed May 10 12:08:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31021 >/dev/null 2>/dev/null
selfserv_9323 with PID 31021 found at Wed May 10 12:08:09 UTC 2017
selfserv_9323 with PID 31021 started at Wed May 10 12:08:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10015: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 31021 at Wed May 10 12:08:09 UTC 2017
kill -USR1 31021
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31021 killed at Wed May 10 12:08:09 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31077 >/dev/null 2>/dev/null
selfserv_9323 with PID 31077 found at Wed May 10 12:08:09 UTC 2017
selfserv_9323 with PID 31077 started at Wed May 10 12:08:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10016: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 31077 at Wed May 10 12:08:09 UTC 2017
kill -USR1 31077
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31077 killed at Wed May 10 12:08:09 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:09 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31133 >/dev/null 2>/dev/null
selfserv_9323 with PID 31133 found at Wed May 10 12:08:09 UTC 2017
selfserv_9323 with PID 31133 started at Wed May 10 12:08:09 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10017: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 31133 at Wed May 10 12:08:10 UTC 2017
kill -USR1 31133
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31133 killed at Wed May 10 12:08:10 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31201 >/dev/null 2>/dev/null
selfserv_9323 with PID 31201 found at Wed May 10 12:08:10 UTC 2017
selfserv_9323 with PID 31201 started at Wed May 10 12:08:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10018: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 31201 at Wed May 10 12:08:10 UTC 2017
kill -USR1 31201
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31201 killed at Wed May 10 12:08:10 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31257 >/dev/null 2>/dev/null
selfserv_9323 with PID 31257 found at Wed May 10 12:08:10 UTC 2017
selfserv_9323 with PID 31257 started at Wed May 10 12:08:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10019: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 31257 at Wed May 10 12:08:10 UTC 2017
kill -USR1 31257
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31257 killed at Wed May 10 12:08:10 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:10 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31313 >/dev/null 2>/dev/null
selfserv_9323 with PID 31313 found at Wed May 10 12:08:10 UTC 2017
selfserv_9323 with PID 31313 started at Wed May 10 12:08:10 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10020: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 31313 at Wed May 10 12:08:11 UTC 2017
kill -USR1 31313
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31313 killed at Wed May 10 12:08:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:11 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31381 >/dev/null 2>/dev/null
selfserv_9323 with PID 31381 found at Wed May 10 12:08:11 UTC 2017
selfserv_9323 with PID 31381 started at Wed May 10 12:08:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10021: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 31381 at Wed May 10 12:08:11 UTC 2017
kill -USR1 31381
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31381 killed at Wed May 10 12:08:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:11 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31437 >/dev/null 2>/dev/null
selfserv_9323 with PID 31437 found at Wed May 10 12:08:11 UTC 2017
selfserv_9323 with PID 31437 started at Wed May 10 12:08:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10022: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 31437 at Wed May 10 12:08:11 UTC 2017
kill -USR1 31437
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31437 killed at Wed May 10 12:08:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:11 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31493 >/dev/null 2>/dev/null
selfserv_9323 with PID 31493 found at Wed May 10 12:08:11 UTC 2017
selfserv_9323 with PID 31493 started at Wed May 10 12:08:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10023: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 31493 at Wed May 10 12:08:12 UTC 2017
kill -USR1 31493
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31493 killed at Wed May 10 12:08:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:12 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31561 >/dev/null 2>/dev/null
selfserv_9323 with PID 31561 found at Wed May 10 12:08:12 UTC 2017
selfserv_9323 with PID 31561 started at Wed May 10 12:08:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10024: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 31561 at Wed May 10 12:08:12 UTC 2017
kill -USR1 31561
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31561 killed at Wed May 10 12:08:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:12 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31617 >/dev/null 2>/dev/null
selfserv_9323 with PID 31617 found at Wed May 10 12:08:12 UTC 2017
selfserv_9323 with PID 31617 started at Wed May 10 12:08:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10025: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 31617 at Wed May 10 12:08:12 UTC 2017
kill -USR1 31617
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31617 killed at Wed May 10 12:08:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:12 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31673 >/dev/null 2>/dev/null
selfserv_9323 with PID 31673 found at Wed May 10 12:08:12 UTC 2017
selfserv_9323 with PID 31673 started at Wed May 10 12:08:12 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10026: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 31673 at Wed May 10 12:08:13 UTC 2017
kill -USR1 31673
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31673 killed at Wed May 10 12:08:13 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31741 >/dev/null 2>/dev/null
selfserv_9323 with PID 31741 found at Wed May 10 12:08:13 UTC 2017
selfserv_9323 with PID 31741 started at Wed May 10 12:08:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10027: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 31741 at Wed May 10 12:08:13 UTC 2017
kill -USR1 31741
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31741 killed at Wed May 10 12:08:13 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31797 >/dev/null 2>/dev/null
selfserv_9323 with PID 31797 found at Wed May 10 12:08:13 UTC 2017
selfserv_9323 with PID 31797 started at Wed May 10 12:08:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10028: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 31797 at Wed May 10 12:08:13 UTC 2017
kill -USR1 31797
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31797 killed at Wed May 10 12:08:13 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9323 starting at Wed May 10 12:08:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31853 >/dev/null 2>/dev/null
selfserv_9323 with PID 31853 found at Wed May 10 12:08:13 UTC 2017
selfserv_9323 with PID 31853 started at Wed May 10 12:08:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10029: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 31853 at Wed May 10 12:08:13 UTC 2017
kill -USR1 31853
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31853 killed at Wed May 10 12:08:13 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31921 >/dev/null 2>/dev/null
selfserv_9323 with PID 31921 found at Wed May 10 12:08:14 UTC 2017
selfserv_9323 with PID 31921 started at Wed May 10 12:08:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10030: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 31921 at Wed May 10 12:08:14 UTC 2017
kill -USR1 31921
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31921 killed at Wed May 10 12:08:14 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:14 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31977 >/dev/null 2>/dev/null
selfserv_9323 with PID 31977 found at Wed May 10 12:08:14 UTC 2017
selfserv_9323 with PID 31977 started at Wed May 10 12:08:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10031: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9323 with PID 31977 at Wed May 10 12:08:14 UTC 2017
kill -USR1 31977
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 31977 killed at Wed May 10 12:08:14 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:14 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32033 >/dev/null 2>/dev/null
selfserv_9323 with PID 32033 found at Wed May 10 12:08:14 UTC 2017
selfserv_9323 with PID 32033 started at Wed May 10 12:08:14 UTC 2017
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10032: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 32033 at Wed May 10 12:08:14 UTC 2017
kill -USR1 32033
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 32033 killed at Wed May 10 12:08:14 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/authin.tl.tmp
0
selfserv_9323 starting at Wed May 10 12:08:14 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:15 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:15 UTC 2017
selfserv_9323 with PID 32096 started at Wed May 10 12:08:15 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:15 UTC 2017
ssl.sh: #10033: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:15 UTC 2017
ssl.sh: #10034: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:15 UTC 2017
ssl.sh: #10035: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:15 UTC 2017
ssl.sh: #10036: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:15 UTC 2017
ssl.sh: #10037: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:16 UTC 2017
ssl.sh: #10038: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:16 UTC 2017
ssl.sh: #10039: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:16 UTC 2017
ssl.sh: #10040: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:16 UTC 2017
ssl.sh: #10041: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:16 UTC 2017
ssl.sh: #10042: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:16 UTC 2017
ssl.sh: #10043: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:17 UTC 2017
ssl.sh: #10044: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:17 UTC 2017
ssl.sh: #10045: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10046: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:17 UTC 2017
ssl.sh: #10047: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:17 UTC 2017
ssl.sh: #10048: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:17 UTC 2017
ssl.sh: #10049: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:18 UTC 2017
ssl.sh: #10050: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:18 UTC 2017
ssl.sh: #10051: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:18 UTC 2017
ssl.sh: #10052: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:18 UTC 2017
ssl.sh: #10053: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:18 UTC 2017
ssl.sh: #10054: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:18 UTC 2017
ssl.sh: #10055: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:18 UTC 2017
ssl.sh: #10056: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:19 UTC 2017
ssl.sh: #10057: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:19 UTC 2017
ssl.sh: #10058: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:19 UTC 2017
ssl.sh: #10059: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:19 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10060: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:19 UTC 2017
ssl.sh: #10061: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:19 UTC 2017
ssl.sh: #10062: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:20 UTC 2017
ssl.sh: #10063: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:20 UTC 2017
ssl.sh: #10064: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:20 UTC 2017
ssl.sh: #10065: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:20 UTC 2017
ssl.sh: #10066: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:20 UTC 2017
ssl.sh: #10067: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:20 UTC 2017
ssl.sh: #10068: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:21 UTC 2017
ssl.sh: #10069: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:21 UTC 2017
ssl.sh: #10070: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:21 UTC 2017
ssl.sh: #10071: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:21 UTC 2017
ssl.sh: #10072: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9323 with PID 32096 found at Wed May 10 12:08:21 UTC 2017
ssl.sh: #10073: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 32096 at Wed May 10 12:08:21 UTC 2017
kill -USR1 32096
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 32096 killed at Wed May 10 12:08:21 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:21 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:21 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:21 UTC 2017
selfserv_9323 with PID 1057 started at Wed May 10 12:08:21 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:21 UTC 2017
ssl.sh: #10074: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:22 UTC 2017
ssl.sh: #10075: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:22 UTC 2017
ssl.sh: #10076: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:22 UTC 2017
ssl.sh: #10077: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:22 UTC 2017
ssl.sh: #10078: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:22 UTC 2017
ssl.sh: #10079: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:22 UTC 2017
ssl.sh: #10080: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:22 UTC 2017
ssl.sh: #10081: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:23 UTC 2017
ssl.sh: #10082: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:23 UTC 2017
ssl.sh: #10083: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:23 UTC 2017
ssl.sh: #10084: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:23 UTC 2017
ssl.sh: #10085: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:23 UTC 2017
ssl.sh: #10086: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10087: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:23 UTC 2017
ssl.sh: #10088: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:24 UTC 2017
ssl.sh: #10089: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:24 UTC 2017
ssl.sh: #10090: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:24 UTC 2017
ssl.sh: #10091: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:24 UTC 2017
ssl.sh: #10092: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:24 UTC 2017
ssl.sh: #10093: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:24 UTC 2017
ssl.sh: #10094: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:24 UTC 2017
ssl.sh: #10095: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:25 UTC 2017
ssl.sh: #10096: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:25 UTC 2017
ssl.sh: #10097: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:25 UTC 2017
ssl.sh: #10098: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:25 UTC 2017
ssl.sh: #10099: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:25 UTC 2017
ssl.sh: #10100: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10101: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:25 UTC 2017
ssl.sh: #10102: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:26 UTC 2017
ssl.sh: #10103: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:26 UTC 2017
ssl.sh: #10104: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:26 UTC 2017
ssl.sh: #10105: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:26 UTC 2017
ssl.sh: #10106: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:26 UTC 2017
ssl.sh: #10107: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:26 UTC 2017
ssl.sh: #10108: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:26 UTC 2017
ssl.sh: #10109: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:27 UTC 2017
ssl.sh: #10110: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:27 UTC 2017
ssl.sh: #10111: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:27 UTC 2017
ssl.sh: #10112: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:27 UTC 2017
ssl.sh: #10113: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1057 >/dev/null 2>/dev/null
selfserv_9323 with PID 1057 found at Wed May 10 12:08:27 UTC 2017
ssl.sh: #10114: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 1057 at Wed May 10 12:08:27 UTC 2017
kill -USR1 1057
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 1057 killed at Wed May 10 12:08:27 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:27 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:27 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:27 UTC 2017
selfserv_9323 with PID 2545 started at Wed May 10 12:08:27 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:27 UTC 2017
ssl.sh: #10115: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:28 UTC 2017
ssl.sh: #10116: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:28 UTC 2017
ssl.sh: #10117: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:28 UTC 2017
ssl.sh: #10118: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:28 UTC 2017
ssl.sh: #10119: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:28 UTC 2017
ssl.sh: #10120: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:28 UTC 2017
ssl.sh: #10121: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:29 UTC 2017
ssl.sh: #10122: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:29 UTC 2017
ssl.sh: #10123: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:29 UTC 2017
ssl.sh: #10124: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:29 UTC 2017
ssl.sh: #10125: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:29 UTC 2017
ssl.sh: #10126: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:30 UTC 2017
ssl.sh: #10127: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10128: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:30 UTC 2017
ssl.sh: #10129: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:30 UTC 2017
ssl.sh: #10130: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:30 UTC 2017
ssl.sh: #10131: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:30 UTC 2017
ssl.sh: #10132: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:30 UTC 2017
ssl.sh: #10133: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:31 UTC 2017
ssl.sh: #10134: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:31 UTC 2017
ssl.sh: #10135: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:31 UTC 2017
ssl.sh: #10136: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:31 UTC 2017
ssl.sh: #10137: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:31 UTC 2017
ssl.sh: #10138: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:31 UTC 2017
ssl.sh: #10139: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:32 UTC 2017
ssl.sh: #10140: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:32 UTC 2017
ssl.sh: #10141: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10142: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:32 UTC 2017
ssl.sh: #10143: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:32 UTC 2017
ssl.sh: #10144: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:32 UTC 2017
ssl.sh: #10145: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:33 UTC 2017
ssl.sh: #10146: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:33 UTC 2017
ssl.sh: #10147: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:33 UTC 2017
ssl.sh: #10148: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:33 UTC 2017
ssl.sh: #10149: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:33 UTC 2017
ssl.sh: #10150: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:33 UTC 2017
ssl.sh: #10151: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:34 UTC 2017
ssl.sh: #10152: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:34 UTC 2017
ssl.sh: #10153: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:34 UTC 2017
ssl.sh: #10154: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9323 with PID 2545 found at Wed May 10 12:08:34 UTC 2017
ssl.sh: #10155: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 2545 at Wed May 10 12:08:34 UTC 2017
kill -USR1 2545
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 2545 killed at Wed May 10 12:08:34 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:34 UTC 2017
selfserv_9323 with PID 3967 started at Wed May 10 12:08:34 UTC 2017
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:34 UTC 2017
ssl.sh: #10156: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:34 UTC 2017
ssl.sh: #10157: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:35 UTC 2017
ssl.sh: #10158: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:35 UTC 2017
ssl.sh: #10159: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:35 UTC 2017
ssl.sh: #10160: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:35 UTC 2017
ssl.sh: #10161: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:35 UTC 2017
ssl.sh: #10162: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:35 UTC 2017
ssl.sh: #10163: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:35 UTC 2017
ssl.sh: #10164: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:36 UTC 2017
ssl.sh: #10165: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:36 UTC 2017
ssl.sh: #10166: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:36 UTC 2017
ssl.sh: #10167: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:36 UTC 2017
ssl.sh: #10168: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:36 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10169: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:36 UTC 2017
ssl.sh: #10170: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:37 UTC 2017
ssl.sh: #10171: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:37 UTC 2017
ssl.sh: #10172: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:37 UTC 2017
ssl.sh: #10173: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:37 UTC 2017
ssl.sh: #10174: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:37 UTC 2017
ssl.sh: #10175: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:37 UTC 2017
ssl.sh: #10176: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:37 UTC 2017
ssl.sh: #10177: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:38 UTC 2017
ssl.sh: #10178: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:38 UTC 2017
ssl.sh: #10179: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:38 UTC 2017
ssl.sh: #10180: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:38 UTC 2017
ssl.sh: #10181: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:38 UTC 2017
ssl.sh: #10182: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10183: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:39 UTC 2017
ssl.sh: #10184: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:39 UTC 2017
ssl.sh: #10185: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:39 UTC 2017
ssl.sh: #10186: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:39 UTC 2017
ssl.sh: #10187: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:39 UTC 2017
ssl.sh: #10188: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:39 UTC 2017
ssl.sh: #10189: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:39 UTC 2017
ssl.sh: #10190: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:40 UTC 2017
ssl.sh: #10191: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:40 UTC 2017
ssl.sh: #10192: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:40 UTC 2017
ssl.sh: #10193: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:40 UTC 2017
ssl.sh: #10194: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:40 UTC 2017
ssl.sh: #10195: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3967 >/dev/null 2>/dev/null
selfserv_9323 with PID 3967 found at Wed May 10 12:08:40 UTC 2017
ssl.sh: #10196: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9323 with PID 3967 at Wed May 10 12:08:40 UTC 2017
kill -USR1 3967
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 3967 killed at Wed May 10 12:08:40 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5389 >/dev/null 2>/dev/null
selfserv_9323 with PID 5389 found at Wed May 10 12:08:40 UTC 2017
selfserv_9323 with PID 5389 started at Wed May 10 12:08:40 UTC 2017
trying to kill selfserv_9323 with PID 5389 at Wed May 10 12:08:40 UTC 2017
kill -USR1 5389
./ssl.sh: line 183:  5389 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9323 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5389 killed at Wed May 10 12:08:40 UTC 2017
selfserv_9323 starting at Wed May 10 12:08:40 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:40 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:40 UTC 2017
selfserv_9323 with PID 5423 started at Wed May 10 12:08:40 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:41 UTC 2017
ssl.sh: #10197: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:41 UTC 2017
ssl.sh: #10198: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:41 UTC 2017
ssl.sh: #10199: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:41 UTC 2017
ssl.sh: #10200: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:41 UTC 2017
ssl.sh: #10201: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:42 UTC 2017
ssl.sh: #10202: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:42 UTC 2017
ssl.sh: #10203: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:42 UTC 2017
ssl.sh: #10204: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:42 UTC 2017
ssl.sh: #10205: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:42 UTC 2017
ssl.sh: #10206: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:43 UTC 2017
ssl.sh: #10207: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:43 UTC 2017
ssl.sh: #10208: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:43 UTC 2017
ssl.sh: #10209: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10210: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:43 UTC 2017
ssl.sh: #10211: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:44 UTC 2017
ssl.sh: #10212: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:44 UTC 2017
ssl.sh: #10213: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:44 UTC 2017
ssl.sh: #10214: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:44 UTC 2017
ssl.sh: #10215: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:44 UTC 2017
ssl.sh: #10216: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:44 UTC 2017
ssl.sh: #10217: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:45 UTC 2017
ssl.sh: #10218: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:45 UTC 2017
ssl.sh: #10219: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:45 UTC 2017
ssl.sh: #10220: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:45 UTC 2017
ssl.sh: #10221: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:45 UTC 2017
ssl.sh: #10222: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:46 UTC 2017
ssl.sh: #10223: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10224: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:46 UTC 2017
ssl.sh: #10225: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:46 UTC 2017
ssl.sh: #10226: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:46 UTC 2017
ssl.sh: #10227: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:46 UTC 2017
ssl.sh: #10228: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:47 UTC 2017
ssl.sh: #10229: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:47 UTC 2017
ssl.sh: #10230: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:47 UTC 2017
ssl.sh: #10231: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:47 UTC 2017
ssl.sh: #10232: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:47 UTC 2017
ssl.sh: #10233: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:47 UTC 2017
ssl.sh: #10234: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:48 UTC 2017
ssl.sh: #10235: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:48 UTC 2017
ssl.sh: #10236: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5423 >/dev/null 2>/dev/null
selfserv_9323 with PID 5423 found at Wed May 10 12:08:48 UTC 2017
ssl.sh: #10237: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 5423 at Wed May 10 12:08:48 UTC 2017
kill -USR1 5423
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 5423 killed at Wed May 10 12:08:48 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:48 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:48 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:48 UTC 2017
selfserv_9323 with PID 6845 started at Wed May 10 12:08:48 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:48 UTC 2017
ssl.sh: #10238: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:49 UTC 2017
ssl.sh: #10239: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:49 UTC 2017
ssl.sh: #10240: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:49 UTC 2017
ssl.sh: #10241: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:49 UTC 2017
ssl.sh: #10242: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:49 UTC 2017
ssl.sh: #10243: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:50 UTC 2017
ssl.sh: #10244: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:50 UTC 2017
ssl.sh: #10245: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:50 UTC 2017
ssl.sh: #10246: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:50 UTC 2017
ssl.sh: #10247: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:50 UTC 2017
ssl.sh: #10248: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:50 UTC 2017
ssl.sh: #10249: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:51 UTC 2017
ssl.sh: #10250: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10251: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:51 UTC 2017
ssl.sh: #10252: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:51 UTC 2017
ssl.sh: #10253: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:51 UTC 2017
ssl.sh: #10254: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:52 UTC 2017
ssl.sh: #10255: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:52 UTC 2017
ssl.sh: #10256: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:52 UTC 2017
ssl.sh: #10257: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:52 UTC 2017
ssl.sh: #10258: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:52 UTC 2017
ssl.sh: #10259: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:53 UTC 2017
ssl.sh: #10260: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:53 UTC 2017
ssl.sh: #10261: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:53 UTC 2017
ssl.sh: #10262: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:53 UTC 2017
ssl.sh: #10263: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:53 UTC 2017
ssl.sh: #10264: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10265: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:54 UTC 2017
ssl.sh: #10266: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:54 UTC 2017
ssl.sh: #10267: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:54 UTC 2017
ssl.sh: #10268: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:54 UTC 2017
ssl.sh: #10269: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:54 UTC 2017
ssl.sh: #10270: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:55 UTC 2017
ssl.sh: #10271: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:55 UTC 2017
ssl.sh: #10272: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:55 UTC 2017
ssl.sh: #10273: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:55 UTC 2017
ssl.sh: #10274: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:55 UTC 2017
ssl.sh: #10275: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:56 UTC 2017
ssl.sh: #10276: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:56 UTC 2017
ssl.sh: #10277: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6845 >/dev/null 2>/dev/null
selfserv_9323 with PID 6845 found at Wed May 10 12:08:56 UTC 2017
ssl.sh: #10278: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 6845 at Wed May 10 12:08:56 UTC 2017
kill -USR1 6845
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 6845 killed at Wed May 10 12:08:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:08:56 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:08:56 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:56 UTC 2017
selfserv_9323 with PID 8279 started at Wed May 10 12:08:56 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:56 UTC 2017
ssl.sh: #10279: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:56 UTC 2017
ssl.sh: #10280: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:57 UTC 2017
ssl.sh: #10281: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:57 UTC 2017
ssl.sh: #10282: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:57 UTC 2017
ssl.sh: #10283: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:57 UTC 2017
ssl.sh: #10284: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:57 UTC 2017
ssl.sh: #10285: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:57 UTC 2017
ssl.sh: #10286: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:58 UTC 2017
ssl.sh: #10287: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:58 UTC 2017
ssl.sh: #10288: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:58 UTC 2017
ssl.sh: #10289: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:58 UTC 2017
ssl.sh: #10290: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:58 UTC 2017
ssl.sh: #10291: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:58 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10292: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:58 UTC 2017
ssl.sh: #10293: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:59 UTC 2017
ssl.sh: #10294: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:59 UTC 2017
ssl.sh: #10295: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:59 UTC 2017
ssl.sh: #10296: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:59 UTC 2017
ssl.sh: #10297: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:59 UTC 2017
ssl.sh: #10298: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:08:59 UTC 2017
ssl.sh: #10299: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:00 UTC 2017
ssl.sh: #10300: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:00 UTC 2017
ssl.sh: #10301: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:00 UTC 2017
ssl.sh: #10302: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:00 UTC 2017
ssl.sh: #10303: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:00 UTC 2017
ssl.sh: #10304: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:00 UTC 2017
ssl.sh: #10305: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10306: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:01 UTC 2017
ssl.sh: #10307: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:01 UTC 2017
ssl.sh: #10308: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:01 UTC 2017
ssl.sh: #10309: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:01 UTC 2017
ssl.sh: #10310: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:01 UTC 2017
ssl.sh: #10311: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:02 UTC 2017
ssl.sh: #10312: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:02 UTC 2017
ssl.sh: #10313: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:02 UTC 2017
ssl.sh: #10314: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:02 UTC 2017
ssl.sh: #10315: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:02 UTC 2017
ssl.sh: #10316: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:02 UTC 2017
ssl.sh: #10317: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:02 UTC 2017
ssl.sh: #10318: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8279 >/dev/null 2>/dev/null
selfserv_9323 with PID 8279 found at Wed May 10 12:09:03 UTC 2017
ssl.sh: #10319: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 8279 at Wed May 10 12:09:03 UTC 2017
kill -USR1 8279
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 8279 killed at Wed May 10 12:09:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:09:03 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:09:03 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:03 UTC 2017
selfserv_9323 with PID 9713 started at Wed May 10 12:09:03 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:03 UTC 2017
ssl.sh: #10320: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:03 UTC 2017
ssl.sh: #10321: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:03 UTC 2017
ssl.sh: #10322: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:04 UTC 2017
ssl.sh: #10323: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:04 UTC 2017
ssl.sh: #10324: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:04 UTC 2017
ssl.sh: #10325: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:04 UTC 2017
ssl.sh: #10326: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:04 UTC 2017
ssl.sh: #10327: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:05 UTC 2017
ssl.sh: #10328: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:05 UTC 2017
ssl.sh: #10329: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:05 UTC 2017
ssl.sh: #10330: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:05 UTC 2017
ssl.sh: #10331: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:05 UTC 2017
ssl.sh: #10332: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10333: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:06 UTC 2017
ssl.sh: #10334: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:06 UTC 2017
ssl.sh: #10335: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:06 UTC 2017
ssl.sh: #10336: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:06 UTC 2017
ssl.sh: #10337: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:07 UTC 2017
ssl.sh: #10338: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:07 UTC 2017
ssl.sh: #10339: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:07 UTC 2017
ssl.sh: #10340: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:07 UTC 2017
ssl.sh: #10341: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:07 UTC 2017
ssl.sh: #10342: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:07 UTC 2017
ssl.sh: #10343: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:08 UTC 2017
ssl.sh: #10344: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:08 UTC 2017
ssl.sh: #10345: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:08 UTC 2017
ssl.sh: #10346: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10347: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:09 UTC 2017
ssl.sh: #10348: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:09 UTC 2017
ssl.sh: #10349: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:09 UTC 2017
ssl.sh: #10350: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:09 UTC 2017
ssl.sh: #10351: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:09 UTC 2017
ssl.sh: #10352: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:09 UTC 2017
ssl.sh: #10353: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:10 UTC 2017
ssl.sh: #10354: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:10 UTC 2017
ssl.sh: #10355: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:10 UTC 2017
ssl.sh: #10356: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:10 UTC 2017
ssl.sh: #10357: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:10 UTC 2017
ssl.sh: #10358: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:11 UTC 2017
ssl.sh: #10359: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9713 >/dev/null 2>/dev/null
selfserv_9323 with PID 9713 found at Wed May 10 12:09:11 UTC 2017
ssl.sh: #10360: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 9713 at Wed May 10 12:09:11 UTC 2017
kill -USR1 9713
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 9713 killed at Wed May 10 12:09:11 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:09:11 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:09:11 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:11 UTC 2017
selfserv_9323 with PID 11136 started at Wed May 10 12:09:11 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:11 UTC 2017
ssl.sh: #10361: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:11 UTC 2017
ssl.sh: #10362: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:12 UTC 2017
ssl.sh: #10363: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:12 UTC 2017
ssl.sh: #10364: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:12 UTC 2017
ssl.sh: #10365: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:12 UTC 2017
ssl.sh: #10366: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:12 UTC 2017
ssl.sh: #10367: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:13 UTC 2017
ssl.sh: #10368: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:13 UTC 2017
ssl.sh: #10369: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:13 UTC 2017
ssl.sh: #10370: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:13 UTC 2017
ssl.sh: #10371: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:13 UTC 2017
ssl.sh: #10372: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:14 UTC 2017
ssl.sh: #10373: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:14 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10374: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:14 UTC 2017
ssl.sh: #10375: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:14 UTC 2017
ssl.sh: #10376: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:14 UTC 2017
ssl.sh: #10377: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:15 UTC 2017
ssl.sh: #10378: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:15 UTC 2017
ssl.sh: #10379: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:15 UTC 2017
ssl.sh: #10380: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:15 UTC 2017
ssl.sh: #10381: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:15 UTC 2017
ssl.sh: #10382: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:16 UTC 2017
ssl.sh: #10383: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:16 UTC 2017
ssl.sh: #10384: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:16 UTC 2017
ssl.sh: #10385: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:16 UTC 2017
ssl.sh: #10386: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:16 UTC 2017
ssl.sh: #10387: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10388: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:17 UTC 2017
ssl.sh: #10389: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:17 UTC 2017
ssl.sh: #10390: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:17 UTC 2017
ssl.sh: #10391: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:17 UTC 2017
ssl.sh: #10392: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:18 UTC 2017
ssl.sh: #10393: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:18 UTC 2017
ssl.sh: #10394: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:18 UTC 2017
ssl.sh: #10395: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:18 UTC 2017
ssl.sh: #10396: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:18 UTC 2017
ssl.sh: #10397: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:19 UTC 2017
ssl.sh: #10398: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:19 UTC 2017
ssl.sh: #10399: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:19 UTC 2017
ssl.sh: #10400: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11136 >/dev/null 2>/dev/null
selfserv_9323 with PID 11136 found at Wed May 10 12:09:19 UTC 2017
ssl.sh: #10401: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 11136 at Wed May 10 12:09:19 UTC 2017
kill -USR1 11136
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 11136 killed at Wed May 10 12:09:19 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:09:19 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:09:19 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:19 UTC 2017
selfserv_9323 with PID 12560 started at Wed May 10 12:09:19 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:20 UTC 2017
ssl.sh: #10402: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:20 UTC 2017
ssl.sh: #10403: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:20 UTC 2017
ssl.sh: #10404: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:20 UTC 2017
ssl.sh: #10405: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:20 UTC 2017
ssl.sh: #10406: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:20 UTC 2017
ssl.sh: #10407: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:21 UTC 2017
ssl.sh: #10408: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:21 UTC 2017
ssl.sh: #10409: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:21 UTC 2017
ssl.sh: #10410: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:21 UTC 2017
ssl.sh: #10411: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:21 UTC 2017
ssl.sh: #10412: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:21 UTC 2017
ssl.sh: #10413: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:22 UTC 2017
ssl.sh: #10414: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10415: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:22 UTC 2017
ssl.sh: #10416: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:22 UTC 2017
ssl.sh: #10417: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:22 UTC 2017
ssl.sh: #10418: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:22 UTC 2017
ssl.sh: #10419: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:23 UTC 2017
ssl.sh: #10420: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:23 UTC 2017
ssl.sh: #10421: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:23 UTC 2017
ssl.sh: #10422: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:23 UTC 2017
ssl.sh: #10423: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:23 UTC 2017
ssl.sh: #10424: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:23 UTC 2017
ssl.sh: #10425: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:24 UTC 2017
ssl.sh: #10426: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:24 UTC 2017
ssl.sh: #10427: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:24 UTC 2017
ssl.sh: #10428: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10429: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:24 UTC 2017
ssl.sh: #10430: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:24 UTC 2017
ssl.sh: #10431: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:25 UTC 2017
ssl.sh: #10432: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:25 UTC 2017
ssl.sh: #10433: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:25 UTC 2017
ssl.sh: #10434: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:25 UTC 2017
ssl.sh: #10435: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:25 UTC 2017
ssl.sh: #10436: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:25 UTC 2017
ssl.sh: #10437: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:26 UTC 2017
ssl.sh: #10438: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:26 UTC 2017
ssl.sh: #10439: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:26 UTC 2017
ssl.sh: #10440: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:26 UTC 2017
ssl.sh: #10441: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12560 >/dev/null 2>/dev/null
selfserv_9323 with PID 12560 found at Wed May 10 12:09:26 UTC 2017
ssl.sh: #10442: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 12560 at Wed May 10 12:09:26 UTC 2017
kill -USR1 12560
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 12560 killed at Wed May 10 12:09:26 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:09:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:09:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13984 >/dev/null 2>/dev/null
selfserv_9323 with PID 13984 found at Wed May 10 12:09:26 UTC 2017
selfserv_9323 with PID 13984 started at Wed May 10 12:09:26 UTC 2017
trying to kill selfserv_9323 with PID 13984 at Wed May 10 12:09:26 UTC 2017
kill -USR1 13984
./ssl.sh: line 183: 13984 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9323 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 13984 killed at Wed May 10 12:09:26 UTC 2017
selfserv_9323 starting at Wed May 10 12:09:26 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:09:26 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:26 UTC 2017
selfserv_9323 with PID 14018 started at Wed May 10 12:09:26 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:27 UTC 2017
ssl.sh: #10443: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:27 UTC 2017
ssl.sh: #10444: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:27 UTC 2017
ssl.sh: #10445: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:27 UTC 2017
ssl.sh: #10446: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:27 UTC 2017
ssl.sh: #10447: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:27 UTC 2017
ssl.sh: #10448: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:28 UTC 2017
ssl.sh: #10449: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:28 UTC 2017
ssl.sh: #10450: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:28 UTC 2017
ssl.sh: #10451: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:28 UTC 2017
ssl.sh: #10452: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:28 UTC 2017
ssl.sh: #10453: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:29 UTC 2017
ssl.sh: #10454: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:29 UTC 2017
ssl.sh: #10455: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:29 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10456: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:29 UTC 2017
ssl.sh: #10457: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:29 UTC 2017
ssl.sh: #10458: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:29 UTC 2017
ssl.sh: #10459: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:30 UTC 2017
ssl.sh: #10460: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:30 UTC 2017
ssl.sh: #10461: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:30 UTC 2017
ssl.sh: #10462: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:30 UTC 2017
ssl.sh: #10463: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:30 UTC 2017
ssl.sh: #10464: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:31 UTC 2017
ssl.sh: #10465: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:31 UTC 2017
ssl.sh: #10466: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:31 UTC 2017
ssl.sh: #10467: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:31 UTC 2017
ssl.sh: #10468: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:31 UTC 2017
ssl.sh: #10469: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10470: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:32 UTC 2017
ssl.sh: #10471: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:32 UTC 2017
ssl.sh: #10472: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:32 UTC 2017
ssl.sh: #10473: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:32 UTC 2017
ssl.sh: #10474: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:32 UTC 2017
ssl.sh: #10475: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:32 UTC 2017
ssl.sh: #10476: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:33 UTC 2017
ssl.sh: #10477: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:33 UTC 2017
ssl.sh: #10478: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:33 UTC 2017
ssl.sh: #10479: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:33 UTC 2017
ssl.sh: #10480: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:33 UTC 2017
ssl.sh: #10481: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:34 UTC 2017
ssl.sh: #10482: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14018 >/dev/null 2>/dev/null
selfserv_9323 with PID 14018 found at Wed May 10 12:09:34 UTC 2017
ssl.sh: #10483: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 14018 at Wed May 10 12:09:34 UTC 2017
kill -USR1 14018
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 14018 killed at Wed May 10 12:09:34 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:09:34 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:09:34 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:34 UTC 2017
selfserv_9323 with PID 15441 started at Wed May 10 12:09:34 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:34 UTC 2017
ssl.sh: #10484: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:34 UTC 2017
ssl.sh: #10485: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:34 UTC 2017
ssl.sh: #10486: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:35 UTC 2017
ssl.sh: #10487: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:35 UTC 2017
ssl.sh: #10488: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:35 UTC 2017
ssl.sh: #10489: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:35 UTC 2017
ssl.sh: #10490: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:35 UTC 2017
ssl.sh: #10491: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:36 UTC 2017
ssl.sh: #10492: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:36 UTC 2017
ssl.sh: #10493: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:36 UTC 2017
ssl.sh: #10494: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:36 UTC 2017
ssl.sh: #10495: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:37 UTC 2017
ssl.sh: #10496: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10497: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:37 UTC 2017
ssl.sh: #10498: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:37 UTC 2017
ssl.sh: #10499: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:37 UTC 2017
ssl.sh: #10500: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:37 UTC 2017
ssl.sh: #10501: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:38 UTC 2017
ssl.sh: #10502: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:38 UTC 2017
ssl.sh: #10503: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:38 UTC 2017
ssl.sh: #10504: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:38 UTC 2017
ssl.sh: #10505: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:38 UTC 2017
ssl.sh: #10506: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:39 UTC 2017
ssl.sh: #10507: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:39 UTC 2017
ssl.sh: #10508: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:39 UTC 2017
ssl.sh: #10509: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:39 UTC 2017
ssl.sh: #10510: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10511: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:40 UTC 2017
ssl.sh: #10512: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:40 UTC 2017
ssl.sh: #10513: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:40 UTC 2017
ssl.sh: #10514: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:40 UTC 2017
ssl.sh: #10515: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:40 UTC 2017
ssl.sh: #10516: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:40 UTC 2017
ssl.sh: #10517: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:41 UTC 2017
ssl.sh: #10518: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:41 UTC 2017
ssl.sh: #10519: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:41 UTC 2017
ssl.sh: #10520: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:41 UTC 2017
ssl.sh: #10521: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:41 UTC 2017
ssl.sh: #10522: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:42 UTC 2017
ssl.sh: #10523: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15441 >/dev/null 2>/dev/null
selfserv_9323 with PID 15441 found at Wed May 10 12:09:42 UTC 2017
ssl.sh: #10524: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 15441 at Wed May 10 12:09:42 UTC 2017
kill -USR1 15441
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 15441 killed at Wed May 10 12:09:42 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:09:42 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:09:42 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:42 UTC 2017
selfserv_9323 with PID 16866 started at Wed May 10 12:09:42 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:42 UTC 2017
ssl.sh: #10525: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:42 UTC 2017
ssl.sh: #10526: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:42 UTC 2017
ssl.sh: #10527: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:43 UTC 2017
ssl.sh: #10528: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:43 UTC 2017
ssl.sh: #10529: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:43 UTC 2017
ssl.sh: #10530: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:43 UTC 2017
ssl.sh: #10531: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:43 UTC 2017
ssl.sh: #10532: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:43 UTC 2017
ssl.sh: #10533: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:44 UTC 2017
ssl.sh: #10534: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:44 UTC 2017
ssl.sh: #10535: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:44 UTC 2017
ssl.sh: #10536: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:44 UTC 2017
ssl.sh: #10537: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:44 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10538: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:44 UTC 2017
ssl.sh: #10539: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:45 UTC 2017
ssl.sh: #10540: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:45 UTC 2017
ssl.sh: #10541: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:45 UTC 2017
ssl.sh: #10542: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:45 UTC 2017
ssl.sh: #10543: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:45 UTC 2017
ssl.sh: #10544: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:45 UTC 2017
ssl.sh: #10545: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:45 UTC 2017
ssl.sh: #10546: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:46 UTC 2017
ssl.sh: #10547: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:46 UTC 2017
ssl.sh: #10548: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:46 UTC 2017
ssl.sh: #10549: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:46 UTC 2017
ssl.sh: #10550: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:46 UTC 2017
ssl.sh: #10551: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10552: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:47 UTC 2017
ssl.sh: #10553: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:47 UTC 2017
ssl.sh: #10554: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:47 UTC 2017
ssl.sh: #10555: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:47 UTC 2017
ssl.sh: #10556: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:47 UTC 2017
ssl.sh: #10557: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:47 UTC 2017
ssl.sh: #10558: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:48 UTC 2017
ssl.sh: #10559: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:48 UTC 2017
ssl.sh: #10560: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:48 UTC 2017
ssl.sh: #10561: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:48 UTC 2017
ssl.sh: #10562: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:48 UTC 2017
ssl.sh: #10563: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:48 UTC 2017
ssl.sh: #10564: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16866 >/dev/null 2>/dev/null
selfserv_9323 with PID 16866 found at Wed May 10 12:09:49 UTC 2017
ssl.sh: #10565: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 16866 at Wed May 10 12:09:49 UTC 2017
kill -USR1 16866
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 16866 killed at Wed May 10 12:09:49 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9323 starting at Wed May 10 12:09:49 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:09:49 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:49 UTC 2017
selfserv_9323 with PID 18288 started at Wed May 10 12:09:49 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:49 UTC 2017
ssl.sh: #10566: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:49 UTC 2017
ssl.sh: #10567: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:49 UTC 2017
ssl.sh: #10568: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:50 UTC 2017
ssl.sh: #10569: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:50 UTC 2017
ssl.sh: #10570: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:50 UTC 2017
ssl.sh: #10571: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:50 UTC 2017
ssl.sh: #10572: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:50 UTC 2017
ssl.sh: #10573: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:51 UTC 2017
ssl.sh: #10574: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:51 UTC 2017
ssl.sh: #10575: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:51 UTC 2017
ssl.sh: #10576: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:51 UTC 2017
ssl.sh: #10577: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:51 UTC 2017
ssl.sh: #10578: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:52 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10579: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:52 UTC 2017
ssl.sh: #10580: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:52 UTC 2017
ssl.sh: #10581: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:52 UTC 2017
ssl.sh: #10582: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:52 UTC 2017
ssl.sh: #10583: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:53 UTC 2017
ssl.sh: #10584: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:53 UTC 2017
ssl.sh: #10585: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:53 UTC 2017
ssl.sh: #10586: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:53 UTC 2017
ssl.sh: #10587: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:53 UTC 2017
ssl.sh: #10588: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:54 UTC 2017
ssl.sh: #10589: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:54 UTC 2017
ssl.sh: #10590: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:54 UTC 2017
ssl.sh: #10591: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:54 UTC 2017
ssl.sh: #10592: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10593: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:55 UTC 2017
ssl.sh: #10594: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:55 UTC 2017
ssl.sh: #10595: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:55 UTC 2017
ssl.sh: #10596: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:55 UTC 2017
ssl.sh: #10597: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:55 UTC 2017
ssl.sh: #10598: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:56 UTC 2017
ssl.sh: #10599: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:56 UTC 2017
ssl.sh: #10600: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:56 UTC 2017
ssl.sh: #10601: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:56 UTC 2017
ssl.sh: #10602: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:56 UTC 2017
ssl.sh: #10603: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:57 UTC 2017
ssl.sh: #10604: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:57 UTC 2017
ssl.sh: #10605: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18288 >/dev/null 2>/dev/null
selfserv_9323 with PID 18288 found at Wed May 10 12:09:57 UTC 2017
ssl.sh: #10606: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 18288 at Wed May 10 12:09:57 UTC 2017
kill -USR1 18288
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 18288 killed at Wed May 10 12:09:57 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:09:57 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:09:57 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:09:57 UTC 2017
selfserv_9323 with PID 19713 started at Wed May 10 12:09:57 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:09:57 UTC 2017
ssl.sh: #10607: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:09:58 UTC 2017
ssl.sh: #10608: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:09:58 UTC 2017
ssl.sh: #10609: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:09:58 UTC 2017
ssl.sh: #10610: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:09:58 UTC 2017
ssl.sh: #10611: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:09:58 UTC 2017
ssl.sh: #10612: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:09:59 UTC 2017
ssl.sh: #10613: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:09:59 UTC 2017
ssl.sh: #10614: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:09:59 UTC 2017
ssl.sh: #10615: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:09:59 UTC 2017
ssl.sh: #10616: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:09:59 UTC 2017
ssl.sh: #10617: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:00 UTC 2017
ssl.sh: #10618: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:00 UTC 2017
ssl.sh: #10619: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10620: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:00 UTC 2017
ssl.sh: #10621: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:00 UTC 2017
ssl.sh: #10622: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:01 UTC 2017
ssl.sh: #10623: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:01 UTC 2017
ssl.sh: #10624: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:01 UTC 2017
ssl.sh: #10625: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:01 UTC 2017
ssl.sh: #10626: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:01 UTC 2017
ssl.sh: #10627: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:02 UTC 2017
ssl.sh: #10628: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:02 UTC 2017
ssl.sh: #10629: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:02 UTC 2017
ssl.sh: #10630: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:02 UTC 2017
ssl.sh: #10631: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:02 UTC 2017
ssl.sh: #10632: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:03 UTC 2017
ssl.sh: #10633: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:03 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10634: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:03 UTC 2017
ssl.sh: #10635: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:03 UTC 2017
ssl.sh: #10636: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:03 UTC 2017
ssl.sh: #10637: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:04 UTC 2017
ssl.sh: #10638: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:04 UTC 2017
ssl.sh: #10639: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:04 UTC 2017
ssl.sh: #10640: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:04 UTC 2017
ssl.sh: #10641: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:04 UTC 2017
ssl.sh: #10642: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:05 UTC 2017
ssl.sh: #10643: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:05 UTC 2017
ssl.sh: #10644: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:05 UTC 2017
ssl.sh: #10645: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:05 UTC 2017
ssl.sh: #10646: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19713 >/dev/null 2>/dev/null
selfserv_9323 with PID 19713 found at Wed May 10 12:10:05 UTC 2017
ssl.sh: #10647: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 19713 at Wed May 10 12:10:05 UTC 2017
kill -USR1 19713
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 19713 killed at Wed May 10 12:10:06 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:10:06 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:10:06 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:06 UTC 2017
selfserv_9323 with PID 21135 started at Wed May 10 12:10:06 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:06 UTC 2017
ssl.sh: #10648: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:06 UTC 2017
ssl.sh: #10649: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:06 UTC 2017
ssl.sh: #10650: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:06 UTC 2017
ssl.sh: #10651: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:06 UTC 2017
ssl.sh: #10652: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:07 UTC 2017
ssl.sh: #10653: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:07 UTC 2017
ssl.sh: #10654: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:07 UTC 2017
ssl.sh: #10655: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:07 UTC 2017
ssl.sh: #10656: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:07 UTC 2017
ssl.sh: #10657: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:08 UTC 2017
ssl.sh: #10658: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:08 UTC 2017
ssl.sh: #10659: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:08 UTC 2017
ssl.sh: #10660: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10661: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:08 UTC 2017
ssl.sh: #10662: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:08 UTC 2017
ssl.sh: #10663: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:09 UTC 2017
ssl.sh: #10664: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:09 UTC 2017
ssl.sh: #10665: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:09 UTC 2017
ssl.sh: #10666: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:09 UTC 2017
ssl.sh: #10667: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:09 UTC 2017
ssl.sh: #10668: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:09 UTC 2017
ssl.sh: #10669: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:09 UTC 2017
ssl.sh: #10670: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:10 UTC 2017
ssl.sh: #10671: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:10 UTC 2017
ssl.sh: #10672: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:10 UTC 2017
ssl.sh: #10673: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:10 UTC 2017
ssl.sh: #10674: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10675: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #10676: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #10677: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #10678: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #10679: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #10680: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #10681: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #10682: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:12 UTC 2017
ssl.sh: #10683: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:12 UTC 2017
ssl.sh: #10684: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:12 UTC 2017
ssl.sh: #10685: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:12 UTC 2017
ssl.sh: #10686: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:12 UTC 2017
ssl.sh: #10687: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9323 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21135 >/dev/null 2>/dev/null
selfserv_9323 with PID 21135 found at Wed May 10 12:10:12 UTC 2017
ssl.sh: #10688: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 21135 at Wed May 10 12:10:12 UTC 2017
kill -USR1 21135
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 21135 killed at Wed May 10 12:10:12 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9323 starting at Wed May 10 12:10:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:10:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22558 >/dev/null 2>/dev/null
selfserv_9323 with PID 22558 found at Wed May 10 12:10:13 UTC 2017
selfserv_9323 with PID 22558 started at Wed May 10 12:10:13 UTC 2017
trying to kill selfserv_9323 with PID 22558 at Wed May 10 12:10:13 UTC 2017
kill -USR1 22558
./ssl.sh: line 183: 22558 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9323 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 22558 killed at Wed May 10 12:10:13 UTC 2017
ssl.sh: SSL POLICY  - server /client   - with ECC ===============================
Saving pkcs11.txt
selfserv_9323 starting at Wed May 10 12:10:13 UTC 2017
selfserv_9323 -D -p 9323 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.24947\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9323 at Wed May 10 12:10:13 UTC 2017
tstclnt -p 9323 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22593 >/dev/null 2>/dev/null
selfserv_9323 with PID 22593 found at Wed May 10 12:10:13 UTC 2017
selfserv_9323 with PID 22593 started at Wed May 10 12:10:13 UTC 2017
ssl.sh: running Allowed by Narrow Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10689: Allowed by Narrow Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allowed by Strict Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1/ssl,ssl-key-exchange:sha256/cert-signature:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10690: Allowed by Strict Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allow All Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10691: Allow All Explicitly produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Disallow All Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10692: Disallow All Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=sha256
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
ssl.sh: #10693: Disallow SHA256 Signatures Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
ssl.sh: #10694: Disallow SHA256 Signatures Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
ssl.sh: #10695: Disallow SHA256 Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=des-ede3-cbc
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10696: Disallow Cipher Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10697: Disallow Cipher Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-verion-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10698: Disallow Cipher Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=hmac-sha1
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10699: Disallow HMAC Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md5:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10700: Disallow HMAC Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10701: Disallow HMAC Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=rsa/ssl-key-exchange
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10702: Disallow Key Exchange Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:dh-dss:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10703: Disallow Key Exchange Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchnage Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10704: Disallow Key Exchnage Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Exlicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=allow=tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : PR_NOT_CONNECTED_ERROR: Network file descriptor is not connected
ssl.sh: #10705: Disallow Version Exlicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : PR_NOT_CONNECTED_ERROR: Network file descriptor is not connected
ssl.sh: #10706: Disallow Version Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9323 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : PR_NOT_CONNECTED_ERROR: Network file descriptor is not connected
ssl.sh: #10707: Disallow Version Implicitly. produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9323 with PID 22593 at Wed May 10 12:10:15 UTC 2017
kill -USR1 22593
selfserv: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9323 -b -p 9323 2>/dev/null;
selfserv_9323 with PID 22593 killed at Wed May 10 12:10:15 UTC 2017
TIMESTAMP ssl END: Wed May 10 12:10:15 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Wed May 10 12:10:15 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v1.24947 -t "Test1"
sdr.sh: #10708: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v2.24947 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #10709: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v3.24947 -t "1234567"
sdr.sh: #10710: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v1.24947 -t "Test1"
sdr.sh: #10711: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v2.24947 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #10712: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v3.24947 -t "1234567"
sdr.sh: #10713: Decrypt - Value 3  - PASSED
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v3.24947 -t Test2 -f ../tests.pw
merge.sh: #10714: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10715: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10716: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10717: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10718: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10719: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:05:47 2017
            Not After : Tue May 10 12:05:47 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:7d:61:81:3a:d3:4d:9d:c8:e0:52:e2:06:b7:f3:2b:
                    ed:cd:d6:6f:07:bc:64:b4:7a:6a:4b:1d:fa:e0:be:10:
                    16:46:d4:75:f1:3a:99:8b:7e:27:c5:d1:db:ad:b1:b5:
                    6c:b0:d2:a2:d0:8e:87:9e:45:03:0a:90:d9:ed:8a:8e:
                    e8:9c:dc:10:d3:62:cd:53:02:42:c0:b3:9a:f2:aa:22:
                    7f:41:e6:e5:b2:14:2d:57:8e:90:ad:19:0c:13:83:26:
                    91:e7:04:7f:14:11:11:1d:08:ab:19:6f:ec:5b:63:24:
                    0b:9d:4c:f7:bc:28:75:6e:1b:d8:3a:57:94:7a:d0:1b:
                    63:ed:14:54:1f:5c:f6:71:fc:6c:00:be:d1:40:f8:23:
                    6f:42:a5:95:1c:35:ca:67:df:25:e8:2d:a8:b8:1d:1d:
                    b9:77:ce:b0:bb:2e:3d:7b:57:51:6b:b4:7b:5b:5c:70:
                    41:11:12:68:61:c0:b6:4f:37:e7:af:c4:05:c6:67:4d:
                    81:dd:16:f6:2d:a4:38:8b:0b:80:80:76:ed:1e:0c:60:
                    ab:36:86:40:cf:dc:74:6a:31:0a:ea:bc:56:4d:30:2b:
                    00:5b:84:54:2b:4c:58:36:a8:0d:a9:7f:bb:fd:78:da:
                    e4:b1:d2:04:7b:99:7a:4a:14:0d:46:dd:95:45:45:69
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a5:1a:d7:08:71:e1:32:fc:e0:53:f4:88:9b:f7:50:fb:
        10:ba:09:c9:96:9d:3a:9b:f8:aa:92:24:97:c8:ed:40:
        b2:6b:84:7e:30:92:b1:a0:a4:99:e8:17:ef:cd:97:79:
        82:4c:34:b3:1d:5b:81:e7:f2:24:8b:42:f6:34:11:35:
        a1:7a:39:b5:73:42:11:02:7d:26:42:56:80:a4:1e:0a:
        7f:1f:c6:ce:01:83:27:c6:73:bc:12:1c:e8:48:12:39:
        a4:c4:9b:98:3b:60:3e:09:82:7a:7a:d4:bb:b6:61:2f:
        a8:8f:36:9a:35:79:fe:45:68:83:c7:54:42:ab:f2:55:
        28:30:74:83:3b:8e:9e:7a:6b:0a:69:07:a6:a4:80:4c:
        d2:fd:fb:50:5b:5e:12:89:28:ef:00:da:42:e3:52:a4:
        7f:31:55:28:0a:54:e7:67:07:84:70:03:5b:58:f5:b2:
        dc:65:76:26:12:21:a0:7c:43:cf:19:a8:4b:04:94:f2:
        15:15:dd:64:d9:ee:61:fb:ac:c5:b7:05:21:f4:fa:87:
        fa:1a:6d:fb:9e:e2:c2:16:e8:84:50:57:fc:d0:40:40:
        ce:11:c3:32:8d:58:cf:3e:22:cd:86:c6:6a:f9:ec:b2:
        c3:e5:d6:ad:db:06:16:7a:1e:e4:b7:4f:45:c2:00:9e
    Fingerprint (SHA-256):
        3D:44:CC:5B:E6:AF:FA:89:48:FF:EB:18:7D:D0:81:F1:DE:2E:DB:92:A6:6A:E4:CA:CA:E4:C6:BF:3F:65:4D:E5
    Fingerprint (SHA1):
        1B:83:AD:35:22:85:A7:D8:04:FD:54:54:A3:F3:43:D4:E4:50:31:16
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10720: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:05:50 2017
            Not After : Tue May 10 12:05:50 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:39:38:a5:56:6a:1b:32:07:a6:52:74:43:3b:d1:2a:
                    26:91:5e:d1:d9:b0:75:33:d8:5b:0f:51:b9:5d:1e:f5:
                    3a:dd:47:bb:21:bd:1e:63:59:8e:8c:8b:d1:08:a7:5f:
                    51:f1:24:81:28:52:b1:2b:11:12:be:d1:7b:e5:2d:b8:
                    e3:20:97:9d:58:a8:20:e6:c2:29:48:e9:39:f4:da:b2:
                    58:30:66:d2:54:b5:5a:1d:a0:8c:04:7b:76:f1:b0:53:
                    be:ea:c1:2a:ef:a0:e7:1e:23:7a:45:70:3a:8d:ae:d3:
                    24:3f:97:f0:72:e5:dc:0e:62:18:8e:71:06:42:b0:b3:
                    0b:bb:08:aa:78:df:fe:60:f6:a2:62:26:7e:ed:7a:c9:
                    af:3b:c5:a4:c8:79:41:45:ab:a2:ce:a3:64:d0:96:4f:
                    fd:2f:64:06:2d:54:94:4d:75:a0:dd:f5:43:e1:b9:0e:
                    d1:17:d4:2f:15:54:db:ea:04:4e:10:ec:2d:49:3e:65:
                    e2:40:aa:9b:25:2b:c4:36:79:68:e6:a8:b6:23:38:f9:
                    bb:71:14:e8:a3:ee:17:49:22:a1:89:ed:37:79:00:52:
                    06:1e:aa:86:71:6d:00:5c:90:90:90:0d:d0:4f:80:ac:
                    19:5b:71:35:8c:9d:ef:2e:d1:55:50:a6:45:87:2b:ef
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:58:ff:5f:9b:87:75:bc:bf:03:21:00:61:fd:0a:1d:
        8d:93:73:81:eb:a4:1f:da:04:de:83:d7:17:1c:98:61:
        e2:be:bd:05:19:d6:0e:ed:aa:80:fb:8e:7d:f2:fa:1d:
        05:19:80:02:8c:08:4c:c6:e9:9f:0d:8d:c9:cb:1f:a5:
        63:e8:32:6b:43:8b:f9:29:5b:97:e1:f8:20:c3:9b:cf:
        c9:c5:75:0e:95:dc:67:6f:a3:83:bc:10:a4:29:91:45:
        24:28:0e:e9:29:f9:af:c3:1d:12:5b:d7:71:6e:be:e8:
        98:96:06:7f:0e:e0:f8:fc:8e:51:a3:b3:56:2c:8a:df:
        24:81:7d:43:f7:ab:3d:4d:bb:0a:47:0f:2c:ba:da:a5:
        ba:82:9a:47:e7:b9:76:5a:6c:c6:e1:38:d4:2b:0a:62:
        a6:0c:e2:74:3f:7e:83:c8:92:0b:9f:21:29:79:e9:f7:
        0a:38:1a:dc:84:cd:d2:bc:40:2a:d1:1c:27:29:0c:78:
        a3:65:1f:20:77:f3:bc:95:87:5f:82:2c:15:11:c5:c3:
        03:23:19:46:04:38:8b:71:28:61:69:7d:0a:d6:3d:90:
        f4:be:59:e4:58:24:c8:a8:0c:76:7e:54:80:b4:86:4f:
        85:24:db:1b:e6:0e:67:70:80:b2:12:60:a3:e2:f8:e4
    Fingerprint (SHA-256):
        BF:75:EF:3E:D1:4F:B3:36:B2:8F:9B:38:AE:38:66:1B:19:05:A5:CB:CB:01:1D:24:20:77:F0:C9:02:B2:73:0C
    Fingerprint (SHA1):
        ED:9A:33:0B:E9:1D:52:4A:92:78:B3:C3:2C:3D:FB:F5:A1:43:E7:BB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10721: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10722: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA                                                       CT,C,C
TestCA-dsa                                                   CT,C,C
TestCA-ec                                                    CT,C,C
Alice                                                        u,u,u
Alice-dsa                                                    u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
Alice-ecmixed                                                u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
Dave-dsa                                                     u,u,u
Dave-dsamixed                                                u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
chain-2-clientCA-dsa                                         ,,   
chain-2-clientCA                                             ,,   
clientCA                                                     T,C,C
chain-2-clientCA-ec                                          ,,   
chain-1-clientCA-ec                                          ,,   
chain-1-clientCA                                             ,,   
chain-1-clientCA-dsa                                         ,,   
clientCA-dsa                                                 T,C,C
clientCA-ec                                                  T,C,C
Alice #2                                                     ,,   
Alice #1                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #4                                                     ,,   
Alice #100                                                   ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v3.24947 -t Test2 -f ../tests.pw
merge.sh: #10723: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v1.24947 -t Test1 -f ../tests.pw
merge.sh: #10724: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #10725: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #10726: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #10727: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Wed May 10 12:06:22 2017
    Entry 1 (0x1):
        Serial Number: 42 (0x2a)
        Revocation Date: Wed May 10 12:06:17 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 12:04:03 2017
        Entry Extensions:
            Name: CRL reason code
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #10728: Verifying TestCA CRL  - PASSED
TEST_MODE=SHARED_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Wed May 10 12:10:30 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Wed May 10 12:10:30 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #10729: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121031 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10730: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #10731: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10732: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #10733: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10734: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10735: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10736: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10737: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #10738: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10739: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10740: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10741: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10742: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #10743: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10744: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9334
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10745: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10746: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10747: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #10748: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10749: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10750: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10751: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #10752: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10753: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10754: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10755: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #10756: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10757: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10758: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10759: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #10760: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10761: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10762: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10763: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #10764: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10765: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9334
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10766: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10767: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #10768: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10769: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10770: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10771: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #10772: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10773: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10774: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10775: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #10776: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10777: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9334
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10778: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10779: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #10780: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10781: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10782: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10783: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #10784: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10785: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9333/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10786: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10787: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #10788: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10789: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9334
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10790: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10791: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170510121048Z
nextupdate=20180510121048Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed May 10 12:10:48 2017
    Next Update: Thu May 10 12:10:48 2018
    CRL Extensions:
chains.sh: #10792: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170510121049Z
addcert 2 20170510121049Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed May 10 12:10:49 2017
    Next Update: Thu May 10 12:10:48 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:10:49 2017
    CRL Extensions:
chains.sh: #10793: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510121049Z
nextupdate=20180510121049Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 12:10:49 2017
    Next Update: Thu May 10 12:10:49 2018
    CRL Extensions:
chains.sh: #10794: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510121050Z
addcert 2 20170510121050Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 12:10:50 2017
    Next Update: Thu May 10 12:10:49 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:10:50 2017
    CRL Extensions:
chains.sh: #10795: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510121051Z
addcert 4 20170510121051Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 12:10:51 2017
    Next Update: Thu May 10 12:10:49 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:10:50 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Wed May 10 12:10:51 2017
    CRL Extensions:
chains.sh: #10796: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510121052Z
nextupdate=20180510121052Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 12:10:52 2017
    Next Update: Thu May 10 12:10:52 2018
    CRL Extensions:
chains.sh: #10797: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510121053Z
addcert 2 20170510121053Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 12:10:53 2017
    Next Update: Thu May 10 12:10:52 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:10:53 2017
    CRL Extensions:
chains.sh: #10798: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510121054Z
addcert 3 20170510121054Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 12:10:54 2017
    Next Update: Thu May 10 12:10:52 2018
    Entry 1 (0x1):
        Serial Number: 3 (0x3)
        Revocation Date: Wed May 10 12:10:54 2017
    Entry 2 (0x2):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:10:53 2017
    CRL Extensions:
chains.sh: #10799: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510121054Z
nextupdate=20180510121054Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 12:10:54 2017
    Next Update: Thu May 10 12:10:54 2018
    CRL Extensions:
chains.sh: #10800: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510121055Z
addcert 2 20170510121055Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 12:10:55 2017
    Next Update: Thu May 10 12:10:54 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:10:55 2017
    CRL Extensions:
chains.sh: #10801: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510121056Z
addcert 3 20170510121056Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 12:10:56 2017
    Next Update: Thu May 10 12:10:54 2018
    Entry 1 (0x1):
        Serial Number: 3 (0x3)
        Revocation Date: Wed May 10 12:10:56 2017
    Entry 2 (0x2):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:10:55 2017
    CRL Extensions:
chains.sh: #10802: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #10803: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #10804: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #10805: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10806: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10807: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10808: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.9_ppc_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10809: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #10810: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #10811: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #10812: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #10813: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #10814: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #10815: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #10816: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #10817: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #10818: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #10819: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #10820: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #10821: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #10822: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #10823: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #10824: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #10825: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #10826: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Wed May 10 12:11:02 UTC 2017
httpserv -D -p 9333  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.24947  &
trying to connect to httpserv at Wed May 10 12:11:02 UTC 2017
tstclnt -p 9333 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9333 (address=::1)
tstclnt: exiting with return code 0
kill -0 25129 >/dev/null 2>/dev/null
httpserv with PID 25129 found at Wed May 10 12:11:02 UTC 2017
httpserv with PID 25129 started at Wed May 10 12:11:02 UTC 2017
tstclnt -h localhost.localdomain -p 9333 -q -t 20
chains.sh: #10827: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121031 (0x1e67d447)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:10:31 2017
            Not After : Tue May 10 12:10:31 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:b8:fd:3f:bf:c0:db:a6:ad:8d:53:a9:83:64:e1:9d:
                    a4:4b:1f:ea:6d:24:ca:81:97:59:4a:7d:1e:2c:d8:65:
                    6b:8c:c6:db:b3:d1:bc:83:06:29:6c:7d:84:d6:8d:45:
                    1b:a9:7c:cb:55:5d:69:62:b4:2c:53:df:f4:f1:a4:67:
                    dc:56:5b:4b:de:62:e3:e8:bd:1b:11:70:08:66:d8:10:
                    36:93:8e:73:d5:ea:02:a8:d7:1d:d6:08:01:c7:bc:f9:
                    19:e9:a1:68:15:02:e3:e4:c3:34:91:13:4d:b1:41:95:
                    b6:01:66:5d:3f:71:ec:59:3d:4c:0b:97:d9:ae:91:b5:
                    e4:2f:86:cd:92:f9:70:0e:25:fe:a2:21:03:ff:b2:61:
                    3b:5b:ba:13:8e:b3:dc:75:f0:44:e7:91:c7:fd:b4:ef:
                    81:05:48:3b:07:bd:af:b0:e7:fb:53:44:dc:db:84:f0:
                    92:46:ba:d7:e2:9f:ae:0d:ad:40:d4:9f:46:11:57:43:
                    8d:6a:49:b0:0c:8d:67:7e:2d:19:2e:88:2f:bb:58:93:
                    8c:10:b0:28:1c:ba:de:67:da:38:48:1c:3a:56:de:91:
                    5e:00:1f:b9:08:7d:cc:bc:12:df:5c:6c:04:d2:c9:fc:
                    ce:9d:8b:67:48:cc:6e:b3:4d:ef:26:fc:37:9b:15:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:f3:62:36:3f:c8:83:e6:aa:86:5a:5d:3c:d3:3d:0b:
        3f:aa:29:f0:92:e6:5c:01:e2:09:4b:77:90:f1:09:19:
        19:05:a0:60:e0:b5:60:5d:1f:32:48:0c:b2:93:7f:b2:
        fa:b5:64:33:13:c1:b7:65:cd:26:25:bb:49:24:f3:6f:
        f6:49:9a:5c:ec:f8:5a:2f:fb:e3:e7:8c:9e:6b:da:c7:
        1c:e8:86:6b:ec:aa:f6:d6:3c:20:97:a6:6b:57:24:16:
        16:a4:cc:de:29:51:12:9e:a2:20:48:98:06:0c:01:58:
        31:7e:27:73:ea:6b:c6:db:a4:be:9b:0e:5b:d5:d5:7f:
        20:93:5f:85:1d:4f:40:6b:46:09:74:4e:88:a2:18:47:
        9c:e6:70:05:a3:a7:8e:1b:35:7c:71:82:26:12:ba:0d:
        99:5a:ee:4c:c8:bf:61:6f:72:14:d4:af:3e:bf:a6:40:
        3f:d3:11:dd:5e:14:57:87:f5:6a:64:33:7b:f3:e0:88:
        7a:0b:0b:73:e2:3b:86:46:77:e4:0e:00:90:5f:2e:1d:
        df:a5:c3:6b:ff:e1:89:2c:ca:fa:7b:4f:e9:94:bb:b6:
        0d:d2:4d:fd:30:b6:11:06:b8:7d:3f:e2:7a:f4:10:27:
        03:be:88:c5:e1:d1:45:f5:7c:d0:e6:f3:ea:5a:c3:70
    Fingerprint (SHA-256):
        77:E6:68:17:CB:08:96:00:FE:CE:4A:1A:B7:8E:3D:6A:C1:D3:76:40:1E:9D:FF:FF:E7:6B:42:78:41:B0:1A:4D
    Fingerprint (SHA1):
        87:3E:B3:B5:B2:C4:64:01:B9:03:34:9B:83:75:FF:04:9D:53:9B:D5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10828: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10829: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10830: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 25129 at Wed May 10 12:11:02 UTC 2017
kill -USR1 25129
httpserv: normal termination
httpserv -b -p 9333 2>/dev/null;
httpserv with PID 25129 killed at Wed May 10 12:11:02 UTC 2017
httpserv starting at Wed May 10 12:11:02 UTC 2017
httpserv -D -p 9333  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.24947  &
trying to connect to httpserv at Wed May 10 12:11:02 UTC 2017
tstclnt -p 9333 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9333 (address=::1)
tstclnt: exiting with return code 0
kill -0 25298 >/dev/null 2>/dev/null
httpserv with PID 25298 found at Wed May 10 12:11:02 UTC 2017
httpserv with PID 25298 started at Wed May 10 12:11:02 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10831: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10832: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10833: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9333 -q -t 20
chains.sh: #10834: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121031 (0x1e67d447)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:10:31 2017
            Not After : Tue May 10 12:10:31 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:b8:fd:3f:bf:c0:db:a6:ad:8d:53:a9:83:64:e1:9d:
                    a4:4b:1f:ea:6d:24:ca:81:97:59:4a:7d:1e:2c:d8:65:
                    6b:8c:c6:db:b3:d1:bc:83:06:29:6c:7d:84:d6:8d:45:
                    1b:a9:7c:cb:55:5d:69:62:b4:2c:53:df:f4:f1:a4:67:
                    dc:56:5b:4b:de:62:e3:e8:bd:1b:11:70:08:66:d8:10:
                    36:93:8e:73:d5:ea:02:a8:d7:1d:d6:08:01:c7:bc:f9:
                    19:e9:a1:68:15:02:e3:e4:c3:34:91:13:4d:b1:41:95:
                    b6:01:66:5d:3f:71:ec:59:3d:4c:0b:97:d9:ae:91:b5:
                    e4:2f:86:cd:92:f9:70:0e:25:fe:a2:21:03:ff:b2:61:
                    3b:5b:ba:13:8e:b3:dc:75:f0:44:e7:91:c7:fd:b4:ef:
                    81:05:48:3b:07:bd:af:b0:e7:fb:53:44:dc:db:84:f0:
                    92:46:ba:d7:e2:9f:ae:0d:ad:40:d4:9f:46:11:57:43:
                    8d:6a:49:b0:0c:8d:67:7e:2d:19:2e:88:2f:bb:58:93:
                    8c:10:b0:28:1c:ba:de:67:da:38:48:1c:3a:56:de:91:
                    5e:00:1f:b9:08:7d:cc:bc:12:df:5c:6c:04:d2:c9:fc:
                    ce:9d:8b:67:48:cc:6e:b3:4d:ef:26:fc:37:9b:15:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:f3:62:36:3f:c8:83:e6:aa:86:5a:5d:3c:d3:3d:0b:
        3f:aa:29:f0:92:e6:5c:01:e2:09:4b:77:90:f1:09:19:
        19:05:a0:60:e0:b5:60:5d:1f:32:48:0c:b2:93:7f:b2:
        fa:b5:64:33:13:c1:b7:65:cd:26:25:bb:49:24:f3:6f:
        f6:49:9a:5c:ec:f8:5a:2f:fb:e3:e7:8c:9e:6b:da:c7:
        1c:e8:86:6b:ec:aa:f6:d6:3c:20:97:a6:6b:57:24:16:
        16:a4:cc:de:29:51:12:9e:a2:20:48:98:06:0c:01:58:
        31:7e:27:73:ea:6b:c6:db:a4:be:9b:0e:5b:d5:d5:7f:
        20:93:5f:85:1d:4f:40:6b:46:09:74:4e:88:a2:18:47:
        9c:e6:70:05:a3:a7:8e:1b:35:7c:71:82:26:12:ba:0d:
        99:5a:ee:4c:c8:bf:61:6f:72:14:d4:af:3e:bf:a6:40:
        3f:d3:11:dd:5e:14:57:87:f5:6a:64:33:7b:f3:e0:88:
        7a:0b:0b:73:e2:3b:86:46:77:e4:0e:00:90:5f:2e:1d:
        df:a5:c3:6b:ff:e1:89:2c:ca:fa:7b:4f:e9:94:bb:b6:
        0d:d2:4d:fd:30:b6:11:06:b8:7d:3f:e2:7a:f4:10:27:
        03:be:88:c5:e1:d1:45:f5:7c:d0:e6:f3:ea:5a:c3:70
    Fingerprint (SHA-256):
        77:E6:68:17:CB:08:96:00:FE:CE:4A:1A:B7:8E:3D:6A:C1:D3:76:40:1E:9D:FF:FF:E7:6B:42:78:41:B0:1A:4D
    Fingerprint (SHA1):
        87:3E:B3:B5:B2:C4:64:01:B9:03:34:9B:83:75:FF:04:9D:53:9B:D5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10835: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10836: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10837: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 25298 at Wed May 10 12:11:03 UTC 2017
kill -USR1 25298
httpserv: normal termination
httpserv -b -p 9333 2>/dev/null;
httpserv with PID 25298 killed at Wed May 10 12:11:03 UTC 2017
httpserv starting at Wed May 10 12:11:03 UTC 2017
httpserv -D -p 9333  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.24947  &
trying to connect to httpserv at Wed May 10 12:11:03 UTC 2017
tstclnt -p 9333 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9333 (address=::1)
tstclnt: exiting with return code 0
kill -0 25545 >/dev/null 2>/dev/null
httpserv with PID 25545 found at Wed May 10 12:11:03 UTC 2017
httpserv with PID 25545 started at Wed May 10 12:11:03 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10838: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #10839: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121032 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10840: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #10841: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #10842: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121033 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10843: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #10844: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #10845: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10846: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510121034 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10847: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10848: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510121035 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10849: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10850: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #10851: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10852: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10853: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 510121036   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10854: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10855: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10856: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #10857: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #10858: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121033 (0x1e67d449)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:11:05 2017
            Not After : Tue May 10 12:11:05 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:35:a8:70:ee:d4:0d:f6:5d:db:8f:6e:f4:a7:0d:a5:
                    20:72:dd:4c:8e:a4:3c:30:5d:4c:9c:18:a5:88:19:60:
                    ce:5d:f2:2d:4f:70:f9:60:40:00:d7:93:29:b9:e1:d8:
                    e0:3d:a7:26:18:e2:22:e8:26:24:16:9e:b9:92:90:76:
                    1a:17:c7:42:22:d7:7d:a5:7d:0d:ea:b5:76:9e:9d:a2:
                    50:f3:8f:2a:50:e6:84:71:75:c3:0a:72:6a:5e:78:2d:
                    eb:04:ac:9f:63:08:3d:93:3c:7f:22:68:52:5b:f3:4a:
                    3e:19:e1:f3:ea:b1:f5:8e:5d:0b:7b:1c:91:5d:ac:31:
                    fc:ff:76:4c:43:d9:7c:fc:51:b7:ed:c3:0b:2e:66:3f:
                    10:39:a0:7e:92:0b:9e:7c:e2:35:3d:a5:3f:a1:8d:6f:
                    8f:ea:bb:90:52:82:58:ff:6b:be:5f:1d:18:5d:dd:2d:
                    de:e8:67:76:dc:4a:0b:4a:92:1a:3e:48:6b:a6:b1:8b:
                    ac:01:42:2a:a3:4e:43:85:5d:68:a8:ee:6a:7e:a8:02:
                    6f:e3:4c:b2:ea:7e:f2:cf:4d:c1:75:e3:4d:79:2b:de:
                    0f:49:e9:f7:0b:c2:80:f0:0c:0d:15:56:50:28:be:6b:
                    72:22:1e:d5:65:60:a4:88:f9:58:bd:91:25:e5:70:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:33:fb:fa:8e:18:bd:6a:4e:04:81:87:d5:55:03:4e:
        08:a2:18:1d:0d:ee:b6:92:7e:d9:ed:76:5d:41:b5:77:
        30:9c:1c:9e:83:18:65:ff:e2:7c:7a:c6:5c:8c:c2:6f:
        c3:ec:69:c7:53:4a:fd:da:fb:8b:85:6d:6f:04:1f:ce:
        78:1c:9d:ff:f6:a6:b9:f7:70:36:ca:4c:c3:b6:7c:71:
        4e:1d:58:fc:6e:18:b6:74:f0:81:81:44:92:36:6f:ce:
        37:82:c5:cc:8c:dd:9f:de:78:f8:bd:79:3e:59:44:0d:
        67:36:5a:76:fd:9f:ea:e1:d6:15:88:b7:fb:ed:0d:c2:
        80:9b:a1:bd:ff:d3:44:53:aa:6e:13:e8:a3:66:c9:26:
        03:b1:17:1f:ca:cf:08:81:64:6b:e8:35:14:8b:9a:41:
        f8:9f:8a:e7:e5:07:84:c4:b4:62:00:28:51:6f:f1:26:
        cb:24:c1:dd:b5:75:0f:df:82:03:b4:71:d3:84:e4:3f:
        e0:12:9a:e3:26:db:37:bb:11:51:88:a3:51:9b:ce:fe:
        cc:78:d3:9f:66:ab:be:18:77:30:fb:c3:b2:5b:84:26:
        ce:39:8a:2b:36:3d:83:6d:5c:73:90:bf:97:ef:61:a0:
        42:26:59:8a:04:ee:db:a6:8d:6b:f6:5c:8a:83:14:58
    Fingerprint (SHA-256):
        41:29:77:D0:35:E5:DB:4D:70:86:7D:70:25:6C:80:8C:83:2D:67:17:7B:D4:59:D2:2B:49:D5:24:87:E8:F2:AF
    Fingerprint (SHA1):
        48:94:B6:FA:79:F1:3B:4D:36:01:DB:EA:B6:43:D4:42:8E:DF:67:22
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10859: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121032 (0x1e67d448)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:11:04 2017
            Not After : Tue May 10 12:11:04 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:85:d3:b1:5b:84:3c:b1:13:b2:46:d1:cb:96:de:63:
                    bd:53:74:82:bb:16:5a:3e:18:5f:0c:21:56:6d:db:09:
                    09:15:80:f4:05:23:43:78:80:2a:47:27:c7:da:b3:3d:
                    9e:30:f5:cc:54:c1:c1:c3:a7:61:1f:1a:36:ca:ab:87:
                    c0:4a:7a:6e:c1:fa:11:8c:e3:f0:e4:9c:55:da:c5:db:
                    81:6f:5f:4b:85:95:90:28:ef:17:a0:d2:ba:99:20:0d:
                    e8:82:0c:67:f1:6f:88:c9:87:c1:b5:14:a0:14:71:3b:
                    b8:97:25:85:a1:21:71:e4:7a:21:51:e7:2f:e7:77:de:
                    d3:12:9d:74:09:fb:2d:94:d8:ed:12:e0:4a:f0:b3:47:
                    4b:dc:a1:98:29:cc:8c:8f:49:8b:2c:73:f6:a2:86:84:
                    2a:72:86:d5:e3:03:e6:7b:59:0e:1b:06:87:b2:0d:62:
                    27:2c:e7:17:fa:73:97:83:78:52:30:c6:06:9b:08:4b:
                    f8:d2:8c:67:21:73:3a:23:9f:9d:0b:12:f2:2c:81:91:
                    54:4d:88:0e:e9:41:8c:69:bf:d6:4a:81:ad:0c:df:0b:
                    9e:0e:6f:b5:1e:a3:bf:d3:5b:73:6f:be:74:d9:c7:0d:
                    88:2d:79:38:4b:5a:0f:80:dd:2b:97:30:7a:b5:31:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:40:85:b1:5c:f9:1c:35:93:93:57:23:b6:40:3a:bf:
        f5:39:b9:09:eb:b7:20:ed:93:2b:df:1c:af:82:6a:fa:
        44:54:34:c3:34:1f:c9:92:16:48:c6:7f:ab:f3:99:31:
        73:5f:5e:c7:a8:2d:9b:da:95:f8:ea:26:ce:77:e1:cf:
        2c:36:b1:76:fe:3a:e2:78:92:ff:54:c1:34:9b:d3:3c:
        23:22:05:74:bc:a9:af:dd:27:06:79:30:d8:4d:4c:89:
        fd:81:1a:11:00:35:9d:e5:fe:14:bb:67:f2:65:0f:1c:
        31:98:1a:2c:e2:6e:61:2f:50:04:29:1b:c4:38:c7:0c:
        ec:0b:6c:44:75:da:0d:29:ad:3e:46:b4:74:fc:b0:9d:
        7a:cc:84:bc:67:86:a9:c7:fe:9e:8e:29:44:f7:12:f9:
        50:86:f1:3a:0e:0d:7b:d2:8d:72:8a:5f:12:06:89:e5:
        39:28:34:49:00:92:53:1f:76:c4:ed:23:0b:fe:ae:ff:
        be:f3:48:1d:e3:8b:c9:6d:a9:db:84:94:23:9f:eb:58:
        ad:b6:89:1c:f2:7a:63:8f:72:fc:0e:f0:77:63:bc:e9:
        1e:e6:bb:72:57:9c:b5:c9:43:ad:fd:a6:ff:0e:ed:ef:
        da:74:36:7e:b9:5e:0a:15:b9:2e:6b:5d:00:54:f5:28
    Fingerprint (SHA-256):
        19:D6:A1:FB:7A:E6:05:CA:7D:27:83:E3:C1:2D:C2:4C:06:3E:73:FE:7E:7D:E9:09:C3:33:55:62:59:28:43:48
    Fingerprint (SHA1):
        39:52:0B:18:7E:8E:6D:9A:38:BF:C6:7D:A3:56:73:79:93:48:50:39
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10860: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10861: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #10862: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #10863: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121032 (0x1e67d448)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:11:04 2017
            Not After : Tue May 10 12:11:04 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:85:d3:b1:5b:84:3c:b1:13:b2:46:d1:cb:96:de:63:
                    bd:53:74:82:bb:16:5a:3e:18:5f:0c:21:56:6d:db:09:
                    09:15:80:f4:05:23:43:78:80:2a:47:27:c7:da:b3:3d:
                    9e:30:f5:cc:54:c1:c1:c3:a7:61:1f:1a:36:ca:ab:87:
                    c0:4a:7a:6e:c1:fa:11:8c:e3:f0:e4:9c:55:da:c5:db:
                    81:6f:5f:4b:85:95:90:28:ef:17:a0:d2:ba:99:20:0d:
                    e8:82:0c:67:f1:6f:88:c9:87:c1:b5:14:a0:14:71:3b:
                    b8:97:25:85:a1:21:71:e4:7a:21:51:e7:2f:e7:77:de:
                    d3:12:9d:74:09:fb:2d:94:d8:ed:12:e0:4a:f0:b3:47:
                    4b:dc:a1:98:29:cc:8c:8f:49:8b:2c:73:f6:a2:86:84:
                    2a:72:86:d5:e3:03:e6:7b:59:0e:1b:06:87:b2:0d:62:
                    27:2c:e7:17:fa:73:97:83:78:52:30:c6:06:9b:08:4b:
                    f8:d2:8c:67:21:73:3a:23:9f:9d:0b:12:f2:2c:81:91:
                    54:4d:88:0e:e9:41:8c:69:bf:d6:4a:81:ad:0c:df:0b:
                    9e:0e:6f:b5:1e:a3:bf:d3:5b:73:6f:be:74:d9:c7:0d:
                    88:2d:79:38:4b:5a:0f:80:dd:2b:97:30:7a:b5:31:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:40:85:b1:5c:f9:1c:35:93:93:57:23:b6:40:3a:bf:
        f5:39:b9:09:eb:b7:20:ed:93:2b:df:1c:af:82:6a:fa:
        44:54:34:c3:34:1f:c9:92:16:48:c6:7f:ab:f3:99:31:
        73:5f:5e:c7:a8:2d:9b:da:95:f8:ea:26:ce:77:e1:cf:
        2c:36:b1:76:fe:3a:e2:78:92:ff:54:c1:34:9b:d3:3c:
        23:22:05:74:bc:a9:af:dd:27:06:79:30:d8:4d:4c:89:
        fd:81:1a:11:00:35:9d:e5:fe:14:bb:67:f2:65:0f:1c:
        31:98:1a:2c:e2:6e:61:2f:50:04:29:1b:c4:38:c7:0c:
        ec:0b:6c:44:75:da:0d:29:ad:3e:46:b4:74:fc:b0:9d:
        7a:cc:84:bc:67:86:a9:c7:fe:9e:8e:29:44:f7:12:f9:
        50:86:f1:3a:0e:0d:7b:d2:8d:72:8a:5f:12:06:89:e5:
        39:28:34:49:00:92:53:1f:76:c4:ed:23:0b:fe:ae:ff:
        be:f3:48:1d:e3:8b:c9:6d:a9:db:84:94:23:9f:eb:58:
        ad:b6:89:1c:f2:7a:63:8f:72:fc:0e:f0:77:63:bc:e9:
        1e:e6:bb:72:57:9c:b5:c9:43:ad:fd:a6:ff:0e:ed:ef:
        da:74:36:7e:b9:5e:0a:15:b9:2e:6b:5d:00:54:f5:28
    Fingerprint (SHA-256):
        19:D6:A1:FB:7A:E6:05:CA:7D:27:83:E3:C1:2D:C2:4C:06:3E:73:FE:7E:7D:E9:09:C3:33:55:62:59:28:43:48
    Fingerprint (SHA1):
        39:52:0B:18:7E:8E:6D:9A:38:BF:C6:7D:A3:56:73:79:93:48:50:39
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10864: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121033 (0x1e67d449)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:11:05 2017
            Not After : Tue May 10 12:11:05 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:35:a8:70:ee:d4:0d:f6:5d:db:8f:6e:f4:a7:0d:a5:
                    20:72:dd:4c:8e:a4:3c:30:5d:4c:9c:18:a5:88:19:60:
                    ce:5d:f2:2d:4f:70:f9:60:40:00:d7:93:29:b9:e1:d8:
                    e0:3d:a7:26:18:e2:22:e8:26:24:16:9e:b9:92:90:76:
                    1a:17:c7:42:22:d7:7d:a5:7d:0d:ea:b5:76:9e:9d:a2:
                    50:f3:8f:2a:50:e6:84:71:75:c3:0a:72:6a:5e:78:2d:
                    eb:04:ac:9f:63:08:3d:93:3c:7f:22:68:52:5b:f3:4a:
                    3e:19:e1:f3:ea:b1:f5:8e:5d:0b:7b:1c:91:5d:ac:31:
                    fc:ff:76:4c:43:d9:7c:fc:51:b7:ed:c3:0b:2e:66:3f:
                    10:39:a0:7e:92:0b:9e:7c:e2:35:3d:a5:3f:a1:8d:6f:
                    8f:ea:bb:90:52:82:58:ff:6b:be:5f:1d:18:5d:dd:2d:
                    de:e8:67:76:dc:4a:0b:4a:92:1a:3e:48:6b:a6:b1:8b:
                    ac:01:42:2a:a3:4e:43:85:5d:68:a8:ee:6a:7e:a8:02:
                    6f:e3:4c:b2:ea:7e:f2:cf:4d:c1:75:e3:4d:79:2b:de:
                    0f:49:e9:f7:0b:c2:80:f0:0c:0d:15:56:50:28:be:6b:
                    72:22:1e:d5:65:60:a4:88:f9:58:bd:91:25:e5:70:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:33:fb:fa:8e:18:bd:6a:4e:04:81:87:d5:55:03:4e:
        08:a2:18:1d:0d:ee:b6:92:7e:d9:ed:76:5d:41:b5:77:
        30:9c:1c:9e:83:18:65:ff:e2:7c:7a:c6:5c:8c:c2:6f:
        c3:ec:69:c7:53:4a:fd:da:fb:8b:85:6d:6f:04:1f:ce:
        78:1c:9d:ff:f6:a6:b9:f7:70:36:ca:4c:c3:b6:7c:71:
        4e:1d:58:fc:6e:18:b6:74:f0:81:81:44:92:36:6f:ce:
        37:82:c5:cc:8c:dd:9f:de:78:f8:bd:79:3e:59:44:0d:
        67:36:5a:76:fd:9f:ea:e1:d6:15:88:b7:fb:ed:0d:c2:
        80:9b:a1:bd:ff:d3:44:53:aa:6e:13:e8:a3:66:c9:26:
        03:b1:17:1f:ca:cf:08:81:64:6b:e8:35:14:8b:9a:41:
        f8:9f:8a:e7:e5:07:84:c4:b4:62:00:28:51:6f:f1:26:
        cb:24:c1:dd:b5:75:0f:df:82:03:b4:71:d3:84:e4:3f:
        e0:12:9a:e3:26:db:37:bb:11:51:88:a3:51:9b:ce:fe:
        cc:78:d3:9f:66:ab:be:18:77:30:fb:c3:b2:5b:84:26:
        ce:39:8a:2b:36:3d:83:6d:5c:73:90:bf:97:ef:61:a0:
        42:26:59:8a:04:ee:db:a6:8d:6b:f6:5c:8a:83:14:58
    Fingerprint (SHA-256):
        41:29:77:D0:35:E5:DB:4D:70:86:7D:70:25:6C:80:8C:83:2D:67:17:7B:D4:59:D2:2B:49:D5:24:87:E8:F2:AF
    Fingerprint (SHA1):
        48:94:B6:FA:79:F1:3B:4D:36:01:DB:EA:B6:43:D4:42:8E:DF:67:22
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10865: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #10866: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #10867: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #10868: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10869: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10870: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121033 (0x1e67d449)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:11:05 2017
            Not After : Tue May 10 12:11:05 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:35:a8:70:ee:d4:0d:f6:5d:db:8f:6e:f4:a7:0d:a5:
                    20:72:dd:4c:8e:a4:3c:30:5d:4c:9c:18:a5:88:19:60:
                    ce:5d:f2:2d:4f:70:f9:60:40:00:d7:93:29:b9:e1:d8:
                    e0:3d:a7:26:18:e2:22:e8:26:24:16:9e:b9:92:90:76:
                    1a:17:c7:42:22:d7:7d:a5:7d:0d:ea:b5:76:9e:9d:a2:
                    50:f3:8f:2a:50:e6:84:71:75:c3:0a:72:6a:5e:78:2d:
                    eb:04:ac:9f:63:08:3d:93:3c:7f:22:68:52:5b:f3:4a:
                    3e:19:e1:f3:ea:b1:f5:8e:5d:0b:7b:1c:91:5d:ac:31:
                    fc:ff:76:4c:43:d9:7c:fc:51:b7:ed:c3:0b:2e:66:3f:
                    10:39:a0:7e:92:0b:9e:7c:e2:35:3d:a5:3f:a1:8d:6f:
                    8f:ea:bb:90:52:82:58:ff:6b:be:5f:1d:18:5d:dd:2d:
                    de:e8:67:76:dc:4a:0b:4a:92:1a:3e:48:6b:a6:b1:8b:
                    ac:01:42:2a:a3:4e:43:85:5d:68:a8:ee:6a:7e:a8:02:
                    6f:e3:4c:b2:ea:7e:f2:cf:4d:c1:75:e3:4d:79:2b:de:
                    0f:49:e9:f7:0b:c2:80:f0:0c:0d:15:56:50:28:be:6b:
                    72:22:1e:d5:65:60:a4:88:f9:58:bd:91:25:e5:70:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:33:fb:fa:8e:18:bd:6a:4e:04:81:87:d5:55:03:4e:
        08:a2:18:1d:0d:ee:b6:92:7e:d9:ed:76:5d:41:b5:77:
        30:9c:1c:9e:83:18:65:ff:e2:7c:7a:c6:5c:8c:c2:6f:
        c3:ec:69:c7:53:4a:fd:da:fb:8b:85:6d:6f:04:1f:ce:
        78:1c:9d:ff:f6:a6:b9:f7:70:36:ca:4c:c3:b6:7c:71:
        4e:1d:58:fc:6e:18:b6:74:f0:81:81:44:92:36:6f:ce:
        37:82:c5:cc:8c:dd:9f:de:78:f8:bd:79:3e:59:44:0d:
        67:36:5a:76:fd:9f:ea:e1:d6:15:88:b7:fb:ed:0d:c2:
        80:9b:a1:bd:ff:d3:44:53:aa:6e:13:e8:a3:66:c9:26:
        03:b1:17:1f:ca:cf:08:81:64:6b:e8:35:14:8b:9a:41:
        f8:9f:8a:e7:e5:07:84:c4:b4:62:00:28:51:6f:f1:26:
        cb:24:c1:dd:b5:75:0f:df:82:03:b4:71:d3:84:e4:3f:
        e0:12:9a:e3:26:db:37:bb:11:51:88:a3:51:9b:ce:fe:
        cc:78:d3:9f:66:ab:be:18:77:30:fb:c3:b2:5b:84:26:
        ce:39:8a:2b:36:3d:83:6d:5c:73:90:bf:97:ef:61:a0:
        42:26:59:8a:04:ee:db:a6:8d:6b:f6:5c:8a:83:14:58
    Fingerprint (SHA-256):
        41:29:77:D0:35:E5:DB:4D:70:86:7D:70:25:6C:80:8C:83:2D:67:17:7B:D4:59:D2:2B:49:D5:24:87:E8:F2:AF
    Fingerprint (SHA1):
        48:94:B6:FA:79:F1:3B:4D:36:01:DB:EA:B6:43:D4:42:8E:DF:67:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10871: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121033 (0x1e67d449)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:11:05 2017
            Not After : Tue May 10 12:11:05 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:35:a8:70:ee:d4:0d:f6:5d:db:8f:6e:f4:a7:0d:a5:
                    20:72:dd:4c:8e:a4:3c:30:5d:4c:9c:18:a5:88:19:60:
                    ce:5d:f2:2d:4f:70:f9:60:40:00:d7:93:29:b9:e1:d8:
                    e0:3d:a7:26:18:e2:22:e8:26:24:16:9e:b9:92:90:76:
                    1a:17:c7:42:22:d7:7d:a5:7d:0d:ea:b5:76:9e:9d:a2:
                    50:f3:8f:2a:50:e6:84:71:75:c3:0a:72:6a:5e:78:2d:
                    eb:04:ac:9f:63:08:3d:93:3c:7f:22:68:52:5b:f3:4a:
                    3e:19:e1:f3:ea:b1:f5:8e:5d:0b:7b:1c:91:5d:ac:31:
                    fc:ff:76:4c:43:d9:7c:fc:51:b7:ed:c3:0b:2e:66:3f:
                    10:39:a0:7e:92:0b:9e:7c:e2:35:3d:a5:3f:a1:8d:6f:
                    8f:ea:bb:90:52:82:58:ff:6b:be:5f:1d:18:5d:dd:2d:
                    de:e8:67:76:dc:4a:0b:4a:92:1a:3e:48:6b:a6:b1:8b:
                    ac:01:42:2a:a3:4e:43:85:5d:68:a8:ee:6a:7e:a8:02:
                    6f:e3:4c:b2:ea:7e:f2:cf:4d:c1:75:e3:4d:79:2b:de:
                    0f:49:e9:f7:0b:c2:80:f0:0c:0d:15:56:50:28:be:6b:
                    72:22:1e:d5:65:60:a4:88:f9:58:bd:91:25:e5:70:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:33:fb:fa:8e:18:bd:6a:4e:04:81:87:d5:55:03:4e:
        08:a2:18:1d:0d:ee:b6:92:7e:d9:ed:76:5d:41:b5:77:
        30:9c:1c:9e:83:18:65:ff:e2:7c:7a:c6:5c:8c:c2:6f:
        c3:ec:69:c7:53:4a:fd:da:fb:8b:85:6d:6f:04:1f:ce:
        78:1c:9d:ff:f6:a6:b9:f7:70:36:ca:4c:c3:b6:7c:71:
        4e:1d:58:fc:6e:18:b6:74:f0:81:81:44:92:36:6f:ce:
        37:82:c5:cc:8c:dd:9f:de:78:f8:bd:79:3e:59:44:0d:
        67:36:5a:76:fd:9f:ea:e1:d6:15:88:b7:fb:ed:0d:c2:
        80:9b:a1:bd:ff:d3:44:53:aa:6e:13:e8:a3:66:c9:26:
        03:b1:17:1f:ca:cf:08:81:64:6b:e8:35:14:8b:9a:41:
        f8:9f:8a:e7:e5:07:84:c4:b4:62:00:28:51:6f:f1:26:
        cb:24:c1:dd:b5:75:0f:df:82:03:b4:71:d3:84:e4:3f:
        e0:12:9a:e3:26:db:37:bb:11:51:88:a3:51:9b:ce:fe:
        cc:78:d3:9f:66:ab:be:18:77:30:fb:c3:b2:5b:84:26:
        ce:39:8a:2b:36:3d:83:6d:5c:73:90:bf:97:ef:61:a0:
        42:26:59:8a:04:ee:db:a6:8d:6b:f6:5c:8a:83:14:58
    Fingerprint (SHA-256):
        41:29:77:D0:35:E5:DB:4D:70:86:7D:70:25:6C:80:8C:83:2D:67:17:7B:D4:59:D2:2B:49:D5:24:87:E8:F2:AF
    Fingerprint (SHA1):
        48:94:B6:FA:79:F1:3B:4D:36:01:DB:EA:B6:43:D4:42:8E:DF:67:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10872: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #10873: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #10874: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #10875: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #10876: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #10877: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121032 (0x1e67d448)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:11:04 2017
            Not After : Tue May 10 12:11:04 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:85:d3:b1:5b:84:3c:b1:13:b2:46:d1:cb:96:de:63:
                    bd:53:74:82:bb:16:5a:3e:18:5f:0c:21:56:6d:db:09:
                    09:15:80:f4:05:23:43:78:80:2a:47:27:c7:da:b3:3d:
                    9e:30:f5:cc:54:c1:c1:c3:a7:61:1f:1a:36:ca:ab:87:
                    c0:4a:7a:6e:c1:fa:11:8c:e3:f0:e4:9c:55:da:c5:db:
                    81:6f:5f:4b:85:95:90:28:ef:17:a0:d2:ba:99:20:0d:
                    e8:82:0c:67:f1:6f:88:c9:87:c1:b5:14:a0:14:71:3b:
                    b8:97:25:85:a1:21:71:e4:7a:21:51:e7:2f:e7:77:de:
                    d3:12:9d:74:09:fb:2d:94:d8:ed:12:e0:4a:f0:b3:47:
                    4b:dc:a1:98:29:cc:8c:8f:49:8b:2c:73:f6:a2:86:84:
                    2a:72:86:d5:e3:03:e6:7b:59:0e:1b:06:87:b2:0d:62:
                    27:2c:e7:17:fa:73:97:83:78:52:30:c6:06:9b:08:4b:
                    f8:d2:8c:67:21:73:3a:23:9f:9d:0b:12:f2:2c:81:91:
                    54:4d:88:0e:e9:41:8c:69:bf:d6:4a:81:ad:0c:df:0b:
                    9e:0e:6f:b5:1e:a3:bf:d3:5b:73:6f:be:74:d9:c7:0d:
                    88:2d:79:38:4b:5a:0f:80:dd:2b:97:30:7a:b5:31:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:40:85:b1:5c:f9:1c:35:93:93:57:23:b6:40:3a:bf:
        f5:39:b9:09:eb:b7:20:ed:93:2b:df:1c:af:82:6a:fa:
        44:54:34:c3:34:1f:c9:92:16:48:c6:7f:ab:f3:99:31:
        73:5f:5e:c7:a8:2d:9b:da:95:f8:ea:26:ce:77:e1:cf:
        2c:36:b1:76:fe:3a:e2:78:92:ff:54:c1:34:9b:d3:3c:
        23:22:05:74:bc:a9:af:dd:27:06:79:30:d8:4d:4c:89:
        fd:81:1a:11:00:35:9d:e5:fe:14:bb:67:f2:65:0f:1c:
        31:98:1a:2c:e2:6e:61:2f:50:04:29:1b:c4:38:c7:0c:
        ec:0b:6c:44:75:da:0d:29:ad:3e:46:b4:74:fc:b0:9d:
        7a:cc:84:bc:67:86:a9:c7:fe:9e:8e:29:44:f7:12:f9:
        50:86:f1:3a:0e:0d:7b:d2:8d:72:8a:5f:12:06:89:e5:
        39:28:34:49:00:92:53:1f:76:c4:ed:23:0b:fe:ae:ff:
        be:f3:48:1d:e3:8b:c9:6d:a9:db:84:94:23:9f:eb:58:
        ad:b6:89:1c:f2:7a:63:8f:72:fc:0e:f0:77:63:bc:e9:
        1e:e6:bb:72:57:9c:b5:c9:43:ad:fd:a6:ff:0e:ed:ef:
        da:74:36:7e:b9:5e:0a:15:b9:2e:6b:5d:00:54:f5:28
    Fingerprint (SHA-256):
        19:D6:A1:FB:7A:E6:05:CA:7D:27:83:E3:C1:2D:C2:4C:06:3E:73:FE:7E:7D:E9:09:C3:33:55:62:59:28:43:48
    Fingerprint (SHA1):
        39:52:0B:18:7E:8E:6D:9A:38:BF:C6:7D:A3:56:73:79:93:48:50:39
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10878: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121032 (0x1e67d448)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:11:04 2017
            Not After : Tue May 10 12:11:04 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:85:d3:b1:5b:84:3c:b1:13:b2:46:d1:cb:96:de:63:
                    bd:53:74:82:bb:16:5a:3e:18:5f:0c:21:56:6d:db:09:
                    09:15:80:f4:05:23:43:78:80:2a:47:27:c7:da:b3:3d:
                    9e:30:f5:cc:54:c1:c1:c3:a7:61:1f:1a:36:ca:ab:87:
                    c0:4a:7a:6e:c1:fa:11:8c:e3:f0:e4:9c:55:da:c5:db:
                    81:6f:5f:4b:85:95:90:28:ef:17:a0:d2:ba:99:20:0d:
                    e8:82:0c:67:f1:6f:88:c9:87:c1:b5:14:a0:14:71:3b:
                    b8:97:25:85:a1:21:71:e4:7a:21:51:e7:2f:e7:77:de:
                    d3:12:9d:74:09:fb:2d:94:d8:ed:12:e0:4a:f0:b3:47:
                    4b:dc:a1:98:29:cc:8c:8f:49:8b:2c:73:f6:a2:86:84:
                    2a:72:86:d5:e3:03:e6:7b:59:0e:1b:06:87:b2:0d:62:
                    27:2c:e7:17:fa:73:97:83:78:52:30:c6:06:9b:08:4b:
                    f8:d2:8c:67:21:73:3a:23:9f:9d:0b:12:f2:2c:81:91:
                    54:4d:88:0e:e9:41:8c:69:bf:d6:4a:81:ad:0c:df:0b:
                    9e:0e:6f:b5:1e:a3:bf:d3:5b:73:6f:be:74:d9:c7:0d:
                    88:2d:79:38:4b:5a:0f:80:dd:2b:97:30:7a:b5:31:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:40:85:b1:5c:f9:1c:35:93:93:57:23:b6:40:3a:bf:
        f5:39:b9:09:eb:b7:20:ed:93:2b:df:1c:af:82:6a:fa:
        44:54:34:c3:34:1f:c9:92:16:48:c6:7f:ab:f3:99:31:
        73:5f:5e:c7:a8:2d:9b:da:95:f8:ea:26:ce:77:e1:cf:
        2c:36:b1:76:fe:3a:e2:78:92:ff:54:c1:34:9b:d3:3c:
        23:22:05:74:bc:a9:af:dd:27:06:79:30:d8:4d:4c:89:
        fd:81:1a:11:00:35:9d:e5:fe:14:bb:67:f2:65:0f:1c:
        31:98:1a:2c:e2:6e:61:2f:50:04:29:1b:c4:38:c7:0c:
        ec:0b:6c:44:75:da:0d:29:ad:3e:46:b4:74:fc:b0:9d:
        7a:cc:84:bc:67:86:a9:c7:fe:9e:8e:29:44:f7:12:f9:
        50:86:f1:3a:0e:0d:7b:d2:8d:72:8a:5f:12:06:89:e5:
        39:28:34:49:00:92:53:1f:76:c4:ed:23:0b:fe:ae:ff:
        be:f3:48:1d:e3:8b:c9:6d:a9:db:84:94:23:9f:eb:58:
        ad:b6:89:1c:f2:7a:63:8f:72:fc:0e:f0:77:63:bc:e9:
        1e:e6:bb:72:57:9c:b5:c9:43:ad:fd:a6:ff:0e:ed:ef:
        da:74:36:7e:b9:5e:0a:15:b9:2e:6b:5d:00:54:f5:28
    Fingerprint (SHA-256):
        19:D6:A1:FB:7A:E6:05:CA:7D:27:83:E3:C1:2D:C2:4C:06:3E:73:FE:7E:7D:E9:09:C3:33:55:62:59:28:43:48
    Fingerprint (SHA1):
        39:52:0B:18:7E:8E:6D:9A:38:BF:C6:7D:A3:56:73:79:93:48:50:39
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10879: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #10880: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121037 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10881: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #10882: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #10883: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121038 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10884: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #10885: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #10886: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121039 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10887: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #10888: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #10889: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121040 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10890: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #10891: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #10892: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121041 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10893: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #10894: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #10895: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121042 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10896: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #10897: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #10898: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121043 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10899: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #10900: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #10901: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121044 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10902: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #10903: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #10904: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121045 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10905: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #10906: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #10907: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10908: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 510121046 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10909: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10910: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 510121047 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10911: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10912: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 510121048 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10913: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10914: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #10915: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #10916: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10917: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 510121049 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10918: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10919: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 510121050 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10920: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10921: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 510121051 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10922: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10923: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #10924: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #10925: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10926: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 510121052 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10927: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10928: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 510121053 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10929: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10930: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 510121054 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10931: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10932: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #10933: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #10934: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10935: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 510121055 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10936: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10937: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 510121056 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10938: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10939: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 510121057 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10940: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10941: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #10942: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10943: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10944: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 510121058   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10945: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10946: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #10947: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10948: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121059   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10949: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10950: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121037 (0x1e67d44d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed May 10 12:11:13 2017
            Not After : Tue May 10 12:11:13 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:2d:7b:f9:58:2f:78:1b:ac:6f:e8:3e:2b:85:94:e5:
                    cc:1e:41:79:05:85:5e:43:db:d6:64:b2:94:36:ed:ee:
                    51:f4:a5:4e:f3:1d:96:11:f6:7f:e5:00:5a:46:a3:a2:
                    a5:6a:1c:f7:2e:d5:ae:8a:32:ee:8f:86:74:f1:c5:ee:
                    bd:47:98:ad:89:a0:14:c7:a0:78:bd:21:96:0f:91:75:
                    17:a7:cb:77:ba:63:5a:55:4f:c1:e8:fa:b6:11:cc:db:
                    a8:f6:45:73:9c:b8:b7:12:06:fc:e1:df:88:2f:12:8e:
                    30:30:6c:9f:83:37:0f:c0:be:18:ff:fd:78:83:66:00:
                    1b:8a:3c:75:09:08:7b:e5:9b:ed:87:8c:76:fb:b6:3f:
                    ba:21:ee:b0:a1:b7:1b:13:32:95:df:4d:bd:82:65:d9:
                    e2:3d:9d:fc:49:b4:f8:ad:06:d0:71:2f:64:49:2d:cc:
                    07:31:26:9a:f7:12:49:85:f3:e8:27:49:50:77:b8:48:
                    21:3f:ea:e9:82:c8:60:ea:75:34:8d:bc:bc:2b:5a:77:
                    34:92:91:67:78:a9:52:37:2d:d8:5a:60:09:3e:0e:d2:
                    25:80:4b:17:31:84:2c:6e:8d:d4:14:65:16:d4:96:49:
                    0f:86:09:29:0c:8b:56:d2:e8:71:98:fc:68:22:cf:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:ca:8e:e6:7c:eb:d1:45:15:17:55:4e:78:08:59:34:
        e2:1b:11:cf:65:83:2e:77:96:1c:a8:ed:10:d1:1f:0f:
        a6:c0:27:37:b1:44:2a:2f:17:7c:26:1b:82:94:4d:99:
        06:c8:ec:99:d8:bb:50:a4:88:ba:e7:d4:8b:ac:bf:65:
        e5:75:6d:f5:74:89:24:13:52:1d:b8:35:9f:8e:02:9f:
        51:43:f8:26:f0:15:76:a5:60:23:1b:80:5b:e5:a9:9e:
        aa:ce:a5:dc:f4:f3:21:65:e6:d8:cf:d4:8a:5b:9b:53:
        62:ee:72:ac:82:04:ae:42:be:40:a0:fd:41:7f:42:53:
        de:50:a9:c9:ae:2b:b8:51:4d:2b:51:1c:df:c1:c5:8e:
        82:e9:e5:d5:00:26:a5:16:ac:56:4d:14:7e:5a:29:1d:
        b6:7e:51:0e:35:a4:eb:4d:73:d2:c8:17:66:92:9d:8e:
        b9:a0:67:d7:d2:ff:c2:9a:48:13:7d:6e:2f:db:ac:4b:
        0a:ba:c0:88:d8:2b:d1:8a:94:07:24:2b:35:01:30:c0:
        60:9f:b6:ed:0d:34:4d:be:5d:62:a7:c8:59:51:9a:89:
        f9:54:96:df:39:8d:e3:ac:58:10:7b:f3:a6:8e:ed:6f:
        c4:da:ba:63:c9:34:24:55:73:aa:0f:43:00:c8:f4:74
    Fingerprint (SHA-256):
        F9:8F:1C:8A:58:05:22:A0:59:7F:7F:A4:EE:63:33:44:6D:06:AD:08:34:A6:39:49:C4:10:AB:55:1F:8B:DA:82
    Fingerprint (SHA1):
        F8:77:66:3B:BE:59:88:A9:6B:33:2C:1A:78:0C:D5:36:BD:CA:39:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10951: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121038 (0x1e67d44e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed May 10 12:11:14 2017
            Not After : Tue May 10 12:11:14 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:88:5b:d0:11:8a:15:bd:0d:f3:61:30:6a:ce:5c:34:
                    8d:ae:38:12:d7:c6:4f:3c:5b:48:1a:16:57:e3:5f:db:
                    d8:4a:e5:91:77:c8:9d:9f:64:56:a1:98:08:4b:2e:11:
                    f9:75:4d:42:34:63:af:54:36:3a:83:ba:04:40:56:d7:
                    7a:76:af:ab:fe:84:10:44:ec:1c:95:24:a2:b1:73:2f:
                    ac:50:43:80:cb:8e:6f:e9:39:75:4e:b4:b2:db:9f:ce:
                    ca:ee:e8:23:50:35:ad:5e:01:cc:d9:70:4c:e5:37:3a:
                    0d:2d:fc:c4:9b:ed:b8:83:89:de:47:66:f0:ae:53:f4:
                    50:bd:49:02:4c:7f:4e:15:43:dc:7f:1b:6a:cd:7a:35:
                    be:11:e3:fa:64:5c:51:ba:1f:52:48:0e:bd:6e:9f:bf:
                    04:2d:06:96:3e:4f:b1:a4:4b:3e:51:2d:5d:76:10:ad:
                    57:66:b4:2b:ee:4b:a5:44:46:c5:0f:fc:a8:7e:85:2c:
                    df:29:37:dd:93:d2:e3:19:68:a5:60:4d:af:ff:a2:0d:
                    33:06:22:07:c5:c7:6a:cb:b8:82:d1:52:80:00:58:a2:
                    6b:9d:da:77:47:53:34:20:94:fb:bc:47:d8:7a:2c:6b:
                    80:ca:41:8e:c8:0a:22:ac:3d:66:d9:e4:9f:aa:01:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:a5:76:ea:3f:1c:70:56:00:fc:24:40:71:c4:e9:d3:
        a5:92:5f:85:eb:56:7c:9f:c9:bb:e2:9b:11:d2:25:f3:
        f0:a4:95:2f:f7:48:b3:6d:e5:ff:ef:d8:6f:53:de:16:
        bc:ee:12:9f:95:98:27:53:2c:67:ab:54:84:e0:e0:ae:
        85:79:50:d0:45:80:41:e9:59:92:65:9f:65:87:94:d9:
        34:67:be:27:d7:b0:5a:c4:e0:a2:2e:50:ab:f6:09:c8:
        ac:f2:41:4e:66:d6:2e:cd:30:f4:d7:59:45:15:49:83:
        07:11:3f:b9:d1:ab:72:8e:4d:f6:10:00:2e:c2:02:d4:
        e6:a4:54:9c:f9:64:05:16:d9:b6:39:ec:8d:5e:6c:06:
        4b:c4:2c:2d:1f:23:f6:64:9e:0b:e2:47:6d:73:20:b9:
        89:b6:e9:20:49:53:89:f5:ee:49:73:ae:19:e3:77:2b:
        09:1d:ae:34:cf:ef:47:72:fb:95:8b:1b:38:c7:50:5d:
        05:db:a4:c3:16:6b:80:0c:9f:f8:bb:00:e4:91:91:be:
        92:fa:8e:27:ed:8a:d3:bf:05:f6:bb:f5:ee:84:5d:88:
        5f:70:2f:95:b7:c9:ee:38:b4:4f:f3:77:e1:68:ba:a8:
        29:f1:97:64:68:ce:15:1b:70:cd:3d:c4:e7:8c:fa:89
    Fingerprint (SHA-256):
        9F:83:E4:B7:C3:43:6E:40:D1:70:07:5A:A9:52:1A:8B:24:F5:5D:FD:83:48:0E:5F:69:EA:32:E9:84:6F:97:EE
    Fingerprint (SHA1):
        8C:30:45:E4:1E:62:C9:0B:1F:10:1D:71:2E:70:CD:AB:30:F0:71:D7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10952: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121039 (0x1e67d44f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed May 10 12:11:15 2017
            Not After : Tue May 10 12:11:15 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:58:bf:29:02:97:43:5c:b3:b4:96:3b:1a:99:e7:6f:
                    5b:a8:0f:1c:c0:d9:0f:16:3a:6d:5b:0e:2d:f7:54:73:
                    c3:9b:db:53:f2:81:c9:ab:5c:1a:c0:97:a1:ea:60:42:
                    34:83:a1:e4:e9:ca:6e:9b:84:10:34:5f:2d:44:ac:9b:
                    14:b2:b0:1e:4d:70:13:02:41:c5:46:0a:f5:90:f6:f4:
                    bf:4a:60:f3:a6:9a:e1:fc:af:55:9f:7a:fc:6a:bb:cd:
                    0b:8b:38:7e:ff:6d:35:c2:73:26:44:30:9a:03:34:f9:
                    d0:89:d3:34:28:41:69:e6:e7:bc:de:a5:89:78:a6:bf:
                    43:96:6b:8b:13:db:a1:52:50:bf:b3:18:ee:cf:f2:f5:
                    f0:04:02:f0:96:fc:be:71:da:01:ec:36:5e:2d:8e:1d:
                    dc:42:fb:3f:dd:dc:ee:30:04:6f:05:b2:aa:eb:bd:cc:
                    24:59:2d:d7:18:de:d9:31:fa:9f:48:fc:1b:45:f2:bc:
                    b3:85:2a:92:d4:ad:17:2c:55:05:2d:ec:0f:e5:43:31:
                    c7:d3:58:dd:11:d9:98:d1:40:55:6a:2c:a5:35:b9:3e:
                    ad:62:7f:78:c2:56:56:61:ee:2a:e5:67:f8:b4:c1:79:
                    88:50:14:89:e7:cf:44:17:22:fe:27:b8:8d:48:90:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        be:0d:3e:ca:73:a2:3b:19:bf:65:a4:d4:8f:75:b8:53:
        ce:43:f2:98:97:5a:a9:ca:36:77:66:35:ec:75:4b:2c:
        1c:64:0c:b5:ab:04:05:96:48:4a:6a:78:e9:ab:b9:ed:
        51:ea:e3:f6:24:f1:d7:1d:8e:22:eb:46:c2:aa:6f:cb:
        ad:42:08:bb:ec:b9:f1:4f:30:ce:03:eb:72:ff:3b:84:
        c8:6a:45:e0:92:99:73:ff:40:cf:9a:0c:5a:3e:86:df:
        54:7f:aa:70:79:1f:d5:3a:68:12:39:89:65:33:0f:76:
        c9:29:34:ee:19:45:94:d8:ae:6d:06:9b:d1:b0:69:0e:
        eb:85:be:5f:ea:ca:2e:1c:92:1a:c1:1b:9e:ca:d3:3d:
        a4:6b:e8:94:23:76:94:cf:de:d4:48:9b:16:a6:c1:ee:
        20:1b:af:eb:99:14:81:2a:fc:02:d3:a8:ef:b4:18:99:
        04:f5:be:23:77:25:4a:05:d2:aa:ac:c0:88:16:2e:ca:
        b1:88:2d:32:a2:32:13:dd:77:c8:48:7f:bd:dd:f4:58:
        ad:f8:cb:2c:2c:71:6c:0f:c4:19:21:d1:c4:87:9f:fb:
        a8:02:a0:b1:a1:00:bf:e3:a0:a3:3a:64:03:b9:c8:24:
        8c:61:74:56:21:9c:57:9a:ad:5d:eb:5e:56:84:51:77
    Fingerprint (SHA-256):
        08:53:E0:D3:36:4B:50:C0:DC:C1:18:F1:99:24:5B:1A:D0:64:F2:E0:72:C2:D6:03:31:C4:08:9D:6B:A8:26:6D
    Fingerprint (SHA1):
        AD:0D:ED:9F:86:D3:91:D8:13:68:98:A5:D2:80:23:2C:AE:DB:C5:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10953: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121040 (0x1e67d450)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed May 10 12:11:17 2017
            Not After : Tue May 10 12:11:17 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:27:fc:93:7e:98:95:2b:ca:ff:58:a5:d2:d7:76:56:
                    78:0a:12:96:70:79:51:e3:34:ff:73:8f:05:f1:5a:ff:
                    e1:56:9b:88:46:e5:cf:8f:a3:76:41:04:c3:74:e2:da:
                    96:e7:82:bd:12:73:c0:30:36:39:cd:ea:aa:02:7a:f7:
                    ef:f9:ae:4a:04:31:f5:90:48:b1:06:53:00:a5:eb:e6:
                    ef:0b:5a:64:8c:98:a9:1f:bf:bd:0a:8f:c2:be:16:db:
                    f4:a8:86:97:5c:9a:8d:5c:63:60:0d:29:4a:46:59:47:
                    88:53:7c:79:c0:70:6a:ca:5a:33:73:9a:17:db:50:cd:
                    75:ea:6e:49:ef:b0:28:2d:05:3b:fa:24:e4:86:ba:0a:
                    01:fd:96:68:4a:b7:d5:6f:49:5b:98:7a:b6:2d:71:a6:
                    bf:9f:3e:5f:1f:e1:84:9f:11:7e:34:3c:4b:a9:ff:57:
                    8a:51:ed:43:73:c8:39:91:c8:80:e6:fb:87:ba:8c:d2:
                    b5:fd:e7:39:c5:2a:c5:73:79:2b:72:55:86:8f:56:ca:
                    47:1e:09:cd:b8:50:3c:1d:cd:67:5f:a7:7a:a4:5e:9f:
                    b8:ab:6e:a7:f3:76:04:18:97:b8:73:48:f6:c9:ef:b8:
                    26:98:35:5d:fe:52:d4:9d:fa:58:71:63:4c:fa:6e:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:52:c9:6d:9b:50:8a:13:2f:e0:e1:e5:5a:09:08:85:
        3b:ae:ec:8f:61:d5:6b:eb:ff:6d:77:7b:2f:7f:66:2c:
        eb:73:f9:cd:3b:f6:c2:12:f1:30:4a:fd:6d:cd:90:3d:
        fe:2c:29:02:5c:79:b0:a2:93:4a:1f:85:a4:c0:ed:b0:
        86:b2:f0:dd:25:c0:ec:7c:f9:fd:e5:ca:7a:21:fc:1a:
        48:94:28:36:2d:06:81:b4:2d:4b:c4:07:bd:46:e1:ab:
        1d:8b:e5:03:e9:a2:85:d8:57:25:20:6f:d6:bf:2e:02:
        af:e5:ff:6b:98:7d:f1:15:f4:67:d0:2d:a9:a3:a3:9c:
        06:b8:41:1c:e3:6a:89:58:61:25:f6:a6:11:22:fa:9a:
        08:13:b9:e6:2f:75:0b:25:83:62:65:bd:1b:50:0a:41:
        6f:81:b1:fe:ba:c2:b5:1b:b3:b4:70:33:04:e4:7b:9a:
        1e:f5:33:da:a2:4d:78:42:01:57:59:1a:44:75:e7:cd:
        e3:50:bc:5d:2a:fe:7f:cf:f5:f1:a3:ed:15:13:e0:b1:
        6d:4a:bb:cf:b9:2b:ee:73:5b:e6:86:65:f3:78:cd:83:
        07:05:72:65:84:7d:da:af:b0:1f:2f:3a:f1:ca:0e:1e:
        92:cf:1e:00:aa:18:b4:13:93:c8:2b:9a:1b:da:2f:fc
    Fingerprint (SHA-256):
        51:36:A0:C2:C8:41:93:44:13:B0:46:89:FF:E7:15:AB:96:2F:A9:2F:A0:97:69:87:CD:60:AD:7E:B2:03:B9:86
    Fingerprint (SHA1):
        E1:0E:61:DC:3A:6A:36:15:17:00:1B:D6:E3:60:6E:FD:AD:3E:86:0E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10954: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121041 (0x1e67d451)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed May 10 12:11:18 2017
            Not After : Tue May 10 12:11:18 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:a0:78:13:8e:0d:2e:c5:77:09:49:1a:bd:c1:09:c4:
                    26:00:3d:70:fb:88:89:04:9b:f8:c3:9c:a9:62:1e:9d:
                    5b:13:b7:d3:09:3d:a2:6b:ef:3d:41:68:17:e0:e2:0a:
                    44:2f:8b:41:b8:b2:81:4e:3a:c0:11:4c:6f:b5:7f:e1:
                    11:2b:17:89:b2:09:f7:38:a0:a7:58:da:d8:38:dd:c2:
                    d3:0d:46:22:aa:39:7b:49:65:f6:5b:86:8f:49:21:d2:
                    ea:90:4d:81:a5:0d:39:09:4b:ef:84:20:b5:14:86:3b:
                    51:ed:c3:a0:ba:ec:42:df:12:30:dd:36:e8:8d:4f:99:
                    63:56:98:2f:fd:29:db:58:aa:20:f5:62:6c:09:76:5b:
                    bf:49:ab:7e:d0:98:33:c2:d3:fb:9f:75:9c:b5:6e:cf:
                    2c:bf:0a:2b:af:34:3d:0b:da:43:76:64:e3:a9:f8:13:
                    40:e6:0a:c9:91:22:06:98:00:03:ea:0c:19:6c:de:a9:
                    4a:af:c4:cd:0c:37:fe:3b:23:64:08:cf:15:02:b4:64:
                    b3:17:1e:07:ba:2b:6d:a6:29:41:ca:00:58:ff:38:7e:
                    cc:0c:1f:19:06:4d:36:7b:8b:1c:5d:e7:32:42:e7:9b:
                    eb:c4:89:d4:2a:2c:0d:ec:a7:b5:a5:19:04:7a:20:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d7:d6:eb:55:e0:1d:12:8a:2c:eb:80:47:ef:8e:10:45:
        df:73:63:63:0a:95:9c:f3:d7:6f:68:6f:68:34:fd:4c:
        3f:bf:c0:56:5a:9f:aa:8f:c4:42:6d:35:e8:7a:e1:e5:
        fe:bd:1a:fa:15:06:9a:5a:40:1f:d0:f8:3b:20:2a:01:
        6b:56:c5:a4:38:dd:12:37:9c:a7:a1:d2:a0:ce:64:d8:
        0c:dc:94:20:d8:64:7f:1a:04:be:0d:40:6d:1d:29:1a:
        81:21:cf:a9:29:9e:01:3e:e9:7c:85:06:ed:da:ee:cf:
        b0:0e:13:3f:5f:7a:e1:ba:d3:61:a0:35:8a:5d:f8:15:
        1b:af:3b:ae:68:d8:a0:a0:7d:81:1b:f3:ee:c6:88:fe:
        c5:2b:89:02:3d:9c:af:b1:43:7e:49:31:06:d8:3f:23:
        4d:62:87:ef:15:83:ad:bc:7b:7c:3a:98:d5:99:10:bd:
        10:5a:3f:c3:c1:31:8e:c8:08:2c:21:a8:10:f7:c4:19:
        c0:52:ff:4b:e4:3a:6d:f7:b0:14:fa:d3:8a:4e:14:7e:
        6b:e2:b8:2e:14:a0:42:1f:ee:88:2c:0a:15:ce:54:68:
        fd:6d:38:48:b5:ea:56:48:01:97:f6:93:7d:7d:a9:7a:
        03:5e:fc:df:f3:af:e9:3f:aa:5a:e4:a4:5c:71:75:58
    Fingerprint (SHA-256):
        CA:4D:26:73:A9:88:24:48:16:A0:44:64:BA:5B:C0:E3:3C:C9:73:13:ED:50:5F:FB:B1:47:28:36:56:DC:9C:F6
    Fingerprint (SHA1):
        BC:5B:69:A1:31:75:71:6E:FA:BE:61:97:C7:73:0B:C5:89:71:E8:53
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10955: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121042 (0x1e67d452)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed May 10 12:11:19 2017
            Not After : Tue May 10 12:11:19 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:de:ad:cf:95:ca:91:44:3e:61:1b:08:8d:21:17:79:
                    07:3a:09:a8:95:c6:7e:04:15:bc:b7:5e:00:f5:73:73:
                    6e:45:95:20:21:e3:42:e7:8f:7a:fb:d3:8f:4b:1c:ad:
                    e8:09:80:ce:17:c3:44:5b:c3:b3:a2:b5:2d:5b:41:3c:
                    56:f6:7d:88:87:f1:3e:6e:dd:32:8b:8b:29:fd:24:c3:
                    22:e8:36:60:0c:73:60:4b:d3:89:09:cc:c0:fc:38:0f:
                    46:2d:89:54:f7:33:dd:21:91:91:42:49:e9:2b:49:60:
                    c9:77:16:cb:af:2e:e7:ed:98:e4:03:7f:4a:74:02:4f:
                    2b:f4:55:77:28:e8:31:46:fe:7e:97:d1:38:05:a5:bb:
                    49:7e:4c:fd:33:7b:d5:85:29:4b:ab:cc:c5:b4:a8:05:
                    a4:3b:ac:76:d5:44:d0:3a:b5:a4:8f:41:bd:25:f3:ac:
                    38:56:f3:03:e1:77:f3:0f:61:7b:0e:e2:81:f6:74:4c:
                    33:31:24:f1:6e:84:f4:1f:8a:3f:ca:b7:ac:45:53:26:
                    97:ae:39:f5:9a:13:ec:57:b8:4c:b6:c1:77:eb:49:c5:
                    d4:e5:60:ba:dd:98:01:0a:5f:7d:7d:4b:e3:e1:a6:da:
                    6e:91:6f:de:1c:79:b3:b8:31:f5:8d:62:98:70:6d:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c4:c8:5c:9b:0c:33:bc:c0:b7:aa:10:b7:9d:87:41:e2:
        cd:8f:b2:29:c7:37:d2:a0:66:a4:dd:a5:76:18:fb:f2:
        c5:ef:e5:bd:fd:71:a4:aa:ce:12:39:10:5a:67:e3:c3:
        1f:48:7b:83:0a:cb:88:90:25:0b:76:b2:c9:da:d8:a8:
        e0:14:38:a5:6a:36:6b:21:cc:aa:05:89:6f:5f:81:f0:
        75:e7:6d:a0:a6:b2:eb:10:62:db:f9:7c:94:3f:b7:e2:
        e3:f9:93:11:ab:48:28:c6:b8:aa:30:24:fc:44:a4:59:
        7d:c4:0c:6e:3d:73:63:b1:49:8a:a3:ce:f9:5f:4a:cb:
        91:64:56:6f:d8:77:37:b3:3b:a7:18:1f:70:36:87:23:
        9c:cf:46:e4:6f:f4:37:4c:d3:9c:0e:33:78:eb:27:e9:
        df:df:95:bf:1c:d6:61:ea:0f:10:f0:99:e0:43:4c:e1:
        e7:7d:b5:ae:1d:ae:c7:6e:d6:13:bb:06:4a:82:cb:69:
        09:08:02:ee:4d:73:36:3e:c1:14:d8:4a:99:5d:61:35:
        61:b6:0a:89:ac:e8:e0:e9:3f:b2:17:28:dc:a0:fb:f0:
        e4:12:f3:0f:69:c4:28:70:be:f0:63:78:0b:57:fa:ff:
        10:75:50:3f:31:20:55:3f:21:14:a1:74:27:1f:64:b4
    Fingerprint (SHA-256):
        60:AA:C8:79:89:30:C2:FE:87:9B:26:BC:BC:09:B6:AD:B8:64:CB:1E:10:D7:D0:EC:70:6C:0D:07:36:3E:D3:DE
    Fingerprint (SHA1):
        40:72:E2:22:C4:E5:F8:6F:52:09:D5:E6:EA:35:71:EC:77:F4:CE:12
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10956: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121043 (0x1e67d453)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed May 10 12:11:21 2017
            Not After : Tue May 10 12:11:21 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:3b:75:fa:e9:02:6b:d3:7d:d6:4c:9b:43:fa:74:96:
                    a3:1d:2e:8a:91:d0:79:45:4a:da:58:5d:da:b7:5b:06:
                    7f:13:43:71:60:f1:58:4a:14:3a:a5:45:3d:ff:87:98:
                    9e:25:36:9a:8a:68:dc:3b:57:08:dd:de:12:54:80:cc:
                    88:ce:f2:21:a1:b5:83:04:5c:2b:74:8d:e0:e4:5c:96:
                    e5:4e:c8:3c:05:59:b6:e0:22:11:f5:bd:de:23:7a:e5:
                    40:a0:c2:17:f0:13:99:13:a4:3e:e3:c1:c1:0e:bc:7f:
                    e8:bd:51:4d:80:09:0b:ca:c9:b7:86:34:32:3f:fc:2a:
                    d1:ef:4f:ad:70:4c:c2:48:86:7f:3c:71:db:fc:39:ca:
                    f0:86:14:2a:57:a2:93:9c:54:0a:df:a5:f5:d3:ba:ae:
                    25:a2:9a:be:9d:10:53:f5:84:fd:df:1e:92:94:73:38:
                    d4:80:88:06:7c:6f:94:66:0b:a4:6a:c8:af:0d:e7:5e:
                    f8:04:ed:2c:1a:60:eb:6b:c8:ca:4a:ee:00:1b:5f:5f:
                    aa:59:a2:02:bd:37:a2:aa:8a:7d:0f:7f:f6:42:b9:13:
                    c3:71:be:7b:1b:a8:d2:db:c2:14:09:47:c9:91:4f:d1:
                    8a:08:47:0c:5a:a7:38:d6:52:4b:50:5b:87:7d:c8:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:c6:89:71:09:c3:ba:b4:00:92:9d:9b:09:d4:94:5b:
        38:a8:9c:63:f1:5e:5f:85:ab:ae:f2:bd:f6:79:d4:6c:
        15:50:eb:7f:cb:90:ec:51:b3:0e:69:f6:90:ee:ac:80:
        71:1d:5e:f9:62:6d:fb:e1:0c:a8:73:40:9a:20:3e:c3:
        71:fa:f2:ec:38:9e:07:ae:8e:93:d5:d0:80:a3:d1:57:
        84:2f:c7:84:b6:1b:35:95:83:27:01:bc:9c:f2:6d:88:
        d1:d5:5e:c2:28:a9:ca:17:53:d4:26:61:08:f2:43:40:
        16:bb:ad:e4:c7:85:13:79:8d:58:e6:75:7e:9b:06:a4:
        58:69:cf:bd:99:68:e6:dc:92:95:c8:85:d7:f4:6c:56:
        03:e2:73:dd:bc:3f:a4:fb:ab:37:82:f7:c6:3f:74:0e:
        15:9c:1f:a2:c1:ac:ed:cb:bb:ab:4a:9c:b6:1b:22:7a:
        c7:24:48:3a:89:4c:86:32:45:4f:1b:61:d9:46:73:58:
        f8:d1:53:84:62:45:58:ba:eb:9a:94:1f:6e:b3:fe:6d:
        06:3a:0d:a4:e1:95:03:8f:02:d7:68:e6:6e:34:f8:2d:
        57:42:48:47:e7:ee:4e:42:b6:9a:48:af:38:0c:cc:35:
        a6:6a:b8:14:95:64:23:57:8c:33:7a:53:44:da:a4:28
    Fingerprint (SHA-256):
        1B:F6:22:8F:02:BC:D4:E8:08:E3:32:86:83:3E:EB:67:DA:48:98:89:A6:2E:6C:D4:A7:D6:7A:18:59:F4:4F:AE
    Fingerprint (SHA1):
        64:2D:06:0A:E4:DE:9F:F3:01:60:81:73:5F:EA:23:9E:4C:B2:75:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10957: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121044 (0x1e67d454)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed May 10 12:11:22 2017
            Not After : Tue May 10 12:11:22 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:3f:df:e6:b1:be:f9:ac:58:3a:87:aa:9f:dc:a4:3b:
                    f1:7e:f6:c3:be:a6:43:2c:e5:3c:93:f7:5c:c0:a7:26:
                    c7:cb:d6:7a:f9:c1:75:fb:e3:b6:7e:42:17:20:c3:d9:
                    87:7a:81:fb:16:31:6f:16:5a:53:d5:d6:b7:2d:38:bd:
                    02:dc:db:27:9e:32:a7:8b:b4:22:8b:d8:33:b4:30:c7:
                    c0:aa:d4:74:2d:23:db:87:c0:8a:93:c0:01:49:0f:e9:
                    25:37:5f:d6:30:1f:82:d4:0d:fb:7b:a4:33:d8:cb:1e:
                    8d:e2:3f:5d:d2:ec:dc:1d:a4:fa:1c:0a:22:d1:e5:86:
                    e4:f1:c5:1c:ad:a5:ce:71:37:f7:95:1b:e1:96:a8:88:
                    70:44:1a:ee:9a:76:56:36:35:dd:67:8f:c9:e4:61:5e:
                    5a:cc:0e:02:b8:50:00:1f:c8:24:57:99:81:51:21:00:
                    b5:85:42:96:46:53:9d:ea:1b:4f:df:92:4d:d4:ca:80:
                    8e:1d:bc:3c:6b:2f:0d:ec:5a:07:cf:11:dd:71:eb:77:
                    92:6f:95:27:e3:9b:8d:1f:01:ed:3d:b7:90:d6:73:27:
                    1a:54:2e:36:d6:b2:47:27:32:62:5f:c5:d2:d9:b8:5e:
                    8d:36:ab:0b:48:ea:d9:5a:56:b2:57:23:d2:2a:fa:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:c7:d4:4d:67:73:ea:85:c6:15:79:63:8c:cb:6b:7d:
        82:25:3a:99:f8:86:db:dc:15:3d:3e:0a:7c:4b:25:30:
        f9:44:11:8a:11:e8:6b:c3:c3:99:10:6d:32:cd:c4:06:
        24:bd:43:cd:9d:51:1c:de:b5:41:1e:1b:3a:d4:2c:53:
        58:dd:5f:4c:c6:18:89:f7:2e:b0:ea:eb:47:d3:b3:66:
        b9:a0:6f:51:70:4d:58:e1:8b:f2:97:3b:3d:e1:52:2f:
        af:47:88:3a:41:0b:c3:4d:36:d2:80:8e:49:24:43:7e:
        8a:73:c9:55:cf:85:90:83:95:c5:a9:3c:ba:c5:d7:52:
        d8:e6:09:50:ee:75:9f:b5:bb:5e:c5:5e:2c:2c:04:9a:
        32:c4:67:b2:de:2c:53:ea:cb:f8:7f:b9:d4:c3:f6:96:
        ab:88:00:9a:55:73:f7:7e:41:32:1a:35:58:de:81:5d:
        db:aa:bb:65:1f:06:bc:8a:c9:e1:7f:72:4b:22:94:08:
        33:79:97:2d:91:b6:f4:a9:b3:44:62:7e:85:4d:ef:6d:
        bb:92:3d:5c:f0:bd:59:81:44:ce:ab:35:a0:f3:ec:35:
        96:86:ed:2f:49:a8:e7:15:cc:88:c4:88:21:e0:05:42:
        ad:07:fd:0e:c9:de:af:ec:13:02:43:fa:6f:90:da:d6
    Fingerprint (SHA-256):
        C8:92:21:8A:8D:FD:B5:DE:AF:29:23:F5:D9:E6:CD:CC:62:45:8E:2D:BC:10:1E:61:B6:41:CB:D8:79:94:C6:01
    Fingerprint (SHA1):
        81:2F:4F:12:EB:AC:AD:00:FE:E1:81:B7:9F:C8:D6:12:2C:67:06:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10958: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121045 (0x1e67d455)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed May 10 12:11:23 2017
            Not After : Tue May 10 12:11:23 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:6d:7c:35:66:62:95:66:40:bd:67:8b:b2:65:f6:5f:
                    92:c2:41:fa:e1:96:bd:16:99:d5:21:1b:d5:33:f8:08:
                    d1:a7:93:37:af:ec:c9:14:2d:8a:44:84:f1:a4:e0:43:
                    97:84:b8:55:dc:bf:66:22:a1:f9:41:32:a2:88:36:60:
                    40:6c:5a:5e:2d:f1:a3:9a:b4:26:07:91:8b:ca:93:6a:
                    51:b3:4d:81:a2:9f:c6:f3:93:69:b2:32:91:fc:5b:36:
                    89:c2:57:17:99:55:51:39:81:cc:d2:5e:07:ec:43:ef:
                    cf:67:6d:c5:3f:91:e9:7b:70:a9:99:10:8e:29:a8:4b:
                    8b:37:eb:31:d2:cd:d5:1e:96:4f:a5:2d:49:51:ba:93:
                    00:f2:08:87:99:2c:19:32:19:72:06:1a:55:2e:09:f4:
                    60:26:b7:1b:70:b5:1d:61:50:d5:9b:3a:32:09:7e:4c:
                    dc:fc:3e:a8:d3:a3:53:c3:87:a9:69:99:fe:16:50:3c:
                    69:eb:d2:ca:c8:81:a4:2b:49:62:b2:b0:a2:d0:f6:12:
                    4f:01:c8:24:0b:f0:77:af:6a:16:99:84:3a:59:78:7a:
                    d2:1e:10:d4:07:de:fc:e6:41:2d:fe:9a:d7:80:10:9e:
                    29:09:17:4c:22:1e:d5:72:12:a7:72:58:73:46:2e:e5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:fa:4a:46:e0:c5:66:c9:6f:d4:08:96:87:af:ae:40:
        0d:a9:ed:23:a3:e7:5a:1e:46:87:68:89:2b:bb:fa:79:
        0c:f9:00:e4:f2:49:ce:de:55:61:4d:51:5b:f4:b9:c0:
        bc:a1:f8:0c:e5:8c:0a:a4:78:3b:cd:04:3e:30:86:22:
        5d:af:73:0e:9c:94:ed:51:e6:de:10:a1:89:6d:04:4c:
        a3:79:18:d4:e1:5b:8d:a8:8e:ff:36:a4:fd:89:11:49:
        a5:35:64:2e:93:f5:b7:5d:9b:f3:e3:f9:5e:a6:c2:ab:
        fd:80:16:a7:4d:ca:0d:27:7f:80:08:a0:8b:29:74:51:
        1a:e5:94:74:71:b4:06:09:d8:78:f4:8a:51:19:f8:d2:
        19:43:1f:59:4c:71:c6:1f:30:a8:ce:43:ab:d5:3e:6b:
        f5:16:2a:5e:7d:59:48:b2:4e:f3:61:d1:27:5e:d2:81:
        cd:41:90:8d:a8:dc:d2:6d:44:42:b9:2b:89:0d:a5:5d:
        43:0a:3c:4a:1f:81:4d:7d:95:25:f6:f2:68:3d:14:8b:
        ec:94:fe:17:48:68:dd:76:94:69:78:03:c6:e2:84:8e:
        fd:f1:52:aa:94:39:18:bd:12:c2:8e:24:28:87:14:05:
        94:65:14:7b:24:47:21:49:78:88:1d:c5:20:0b:5f:7b
    Fingerprint (SHA-256):
        67:E6:DF:50:83:25:A7:84:C1:2E:5B:80:D4:E1:DB:E1:70:49:20:09:11:CC:68:4E:CA:31:58:09:F3:07:DF:DB
    Fingerprint (SHA1):
        E8:18:0A:2F:22:08:54:72:C2:E3:EB:1A:46:A2:17:73:34:D8:40:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10959: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10960: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121060 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10961: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10962: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10963: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10964: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121061   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10965: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10966: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10967: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10968: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121062   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10969: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10970: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10971: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10972: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510121063   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10973: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10974: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10975: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121060 (0x1e67d464)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:11:35 2017
            Not After : Tue May 10 12:11:35 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:66:e9:27:43:08:09:01:bc:12:dc:bb:d9:b0:e0:4b:
                    e1:89:d5:26:f1:55:16:95:1a:f7:d0:0a:a6:e4:8b:19:
                    4d:b6:7f:82:9a:ae:ca:61:c0:c0:82:37:e7:c1:2d:42:
                    9a:57:ca:6c:47:3a:04:ed:31:43:18:63:16:49:db:e7:
                    8e:c5:18:6b:cf:c9:8e:41:2c:12:84:5b:77:e1:65:a8:
                    a2:db:35:17:d3:ad:63:e5:4f:df:16:fe:b7:65:f8:ce:
                    b5:ea:32:2d:ee:6f:9f:10:5a:bd:d0:c0:94:bc:05:31:
                    b1:15:8e:97:9e:ea:62:0e:8a:df:9b:ce:e8:2c:40:1b:
                    7b:02:f6:0b:6f:a0:75:f5:8f:4f:9b:c9:35:05:e3:4e:
                    08:8b:85:ca:8a:a3:87:9f:04:5a:f8:4b:96:b3:29:62:
                    75:02:a1:c8:9e:f1:38:f9:7f:cd:9c:ed:18:74:53:b7:
                    3a:86:7b:0a:39:4b:e8:a4:d6:4c:f7:96:5e:52:10:c2:
                    c1:c8:d5:d4:78:46:bc:ca:ff:70:c9:6b:5d:64:24:01:
                    e3:9d:8a:ba:e8:07:84:94:06:99:7c:bd:80:96:8a:1c:
                    82:6b:ac:ca:8e:7c:3c:d8:d3:c4:7b:49:2e:ba:3b:a6:
                    d4:ee:c3:b5:d3:d9:67:75:db:65:20:7f:79:fa:ee:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:44:c7:25:1f:f2:e4:43:f2:d1:61:f1:10:76:bc:c3:
        a6:c8:81:76:0c:9a:0a:ec:c6:7b:70:a5:8b:de:de:b5:
        2c:a9:be:42:41:ad:ba:8b:86:a5:d3:07:68:bc:a2:b4:
        8a:93:8c:6f:c0:45:83:11:91:34:57:20:eb:e8:97:b1:
        ea:a0:fa:da:4e:a3:8b:bd:bb:6e:bc:fd:2b:56:2e:13:
        4e:d2:a9:10:d0:40:9a:c1:e1:4d:3c:79:21:d7:85:af:
        46:92:47:27:3e:ce:fb:a6:4a:b0:4d:9c:49:97:89:53:
        21:76:fd:d2:38:2a:ae:4f:1d:21:5d:85:81:fe:af:a3:
        63:ff:f5:37:75:cb:56:ba:80:2d:21:0d:7c:9e:44:92:
        d6:ff:fd:86:8a:9e:14:ef:78:48:ab:fd:50:f4:7b:06:
        ca:c3:66:56:1a:b1:4a:ca:73:36:53:13:01:79:92:39:
        27:21:7b:f6:fa:26:63:4e:5c:75:34:b7:bc:a3:02:a4:
        c7:47:c2:ea:55:90:1c:83:6b:77:27:60:6a:3e:2e:aa:
        de:c5:64:53:d5:13:d5:5e:df:56:0f:1f:e9:ff:5f:49:
        ea:4b:74:ec:14:6a:b5:15:60:77:2e:76:d2:71:7d:52:
        56:46:35:d6:49:87:42:fa:ba:ad:8f:47:9b:04:a4:3e
    Fingerprint (SHA-256):
        92:74:DC:CB:9D:15:C3:6A:3B:36:1A:1F:26:AF:BB:92:45:C4:60:1E:4B:1E:0A:4C:1A:E4:A6:1A:95:EE:B3:ED
    Fingerprint (SHA1):
        38:69:1D:35:BB:E4:92:5E:A1:47:03:E2:3E:08:7E:9A:E0:7B:F3:1A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10976: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10977: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121061 (0x1e67d465)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:11:36 2017
            Not After : Tue May 10 12:11:36 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:ec:32:25:31:46:a5:07:e6:ea:5a:f0:bb:26:7e:fa:
                    80:cc:f2:25:77:1c:b3:2d:15:04:37:f0:94:d0:ff:97:
                    86:ae:a9:f2:c4:55:de:71:95:d7:a4:f5:a2:ed:9e:47:
                    a3:4d:e0:52:95:d5:f0:46:5c:8f:81:c7:2e:76:2f:47:
                    42:02:3f:20:d1:a5:d1:93:9d:c1:20:9c:0d:c6:3d:b7:
                    3f:02:2c:81:61:72:d9:49:c9:81:c4:e0:fa:73:45:33:
                    38:4c:57:0f:90:58:3a:27:1d:b2:fb:a8:be:ac:b1:b9:
                    d6:ab:76:94:79:c6:c6:2e:d5:98:49:b8:52:ae:53:49:
                    11:6c:cf:d9:9a:40:f6:1f:2b:3e:17:50:55:b7:39:d1:
                    b0:a7:f6:41:bf:c7:91:37:5e:32:c1:19:8a:a4:76:32:
                    41:23:6e:67:ca:db:d0:09:dc:da:69:9f:40:46:9a:79:
                    ad:50:45:f1:d6:a1:a7:9e:e8:1e:20:ca:9e:4c:5e:27:
                    59:4f:93:fc:c1:23:cb:00:70:6d:2f:a8:8d:36:d0:32:
                    cf:dd:45:27:57:0c:26:9f:ad:38:b3:fd:78:75:d3:bf:
                    11:19:0d:f9:4c:01:7a:a3:74:ae:9a:94:14:69:d7:fd:
                    69:7f:65:19:aa:00:bc:1b:73:d4:dc:d5:d6:c0:3d:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:be:33:be:d4:5c:d9:b8:67:05:b7:ac:bc:ca:6d:b4:
        7c:86:55:6d:66:04:db:3c:47:0c:e6:b6:be:31:34:3f:
        21:e8:e6:96:eb:14:03:57:77:54:ca:6c:ce:18:bb:bb:
        c2:54:13:f3:a6:93:6f:77:dc:71:4c:55:cd:e2:c8:0c:
        8b:c5:76:7e:58:1f:a3:be:97:7f:e8:f2:f7:35:81:d0:
        5a:93:e7:f4:47:89:48:9c:f3:c2:71:13:b9:06:ac:f2:
        98:14:ad:a1:7a:6c:ff:8d:43:a0:bc:96:ee:25:cf:a6:
        bf:5f:b7:d5:c8:9a:6f:ca:db:17:78:d1:85:34:77:7b:
        7d:ef:37:f6:b5:9a:93:45:10:38:ce:c7:c2:a9:0f:c0:
        67:16:58:29:ba:96:9b:7a:15:b7:50:13:e8:22:2e:bb:
        fd:7a:1b:c7:d4:89:54:70:d7:f9:c9:45:88:2c:6b:ef:
        a1:fc:61:a6:6f:94:bd:a0:c0:03:51:68:38:c2:69:97:
        8c:20:32:1b:81:6c:66:aa:61:56:02:2e:a3:94:ed:07:
        55:46:90:b3:af:21:72:ee:f5:a4:01:69:3c:5f:73:7e:
        14:16:eb:a2:73:e8:cf:c8:72:f9:b0:9b:90:1c:17:ee:
        1e:8b:64:99:96:8f:df:e5:7a:97:d4:d6:1f:fe:3d:90
    Fingerprint (SHA-256):
        80:5D:09:91:0F:7B:B8:11:0F:33:AE:8D:88:B9:6A:BE:C3:15:38:AA:D0:66:41:F0:D0:EA:6A:9C:78:04:5D:64
    Fingerprint (SHA1):
        48:9C:34:4B:14:49:5A:CF:FA:6A:44:BC:47:08:86:C1:82:D5:36:64
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10978: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10979: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121062 (0x1e67d466)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:11:37 2017
            Not After : Tue May 10 12:11:37 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:1c:94:fe:4b:cd:67:1d:cc:b7:11:ba:8c:93:ae:67:
                    06:43:9c:1a:ef:ff:ea:9c:6b:e9:03:6a:3d:e8:f1:48:
                    63:bb:b6:be:cd:de:86:c5:3c:e7:bd:8a:e1:64:1f:4b:
                    61:3a:fd:ea:7c:7c:25:2e:88:91:b3:55:34:27:f3:a8:
                    3e:d9:b8:52:c4:24:ca:4a:4d:73:64:12:15:e4:ee:84:
                    7b:f6:d3:87:07:86:85:f8:4a:06:8d:01:49:68:67:3c:
                    64:0f:97:3b:21:3b:ff:0d:39:d5:63:fd:a9:53:06:a5:
                    5d:61:20:b9:4e:69:ff:96:ba:c3:df:5f:a9:36:7a:98:
                    c0:7d:16:49:1d:a8:44:4d:74:db:20:e0:87:75:c1:05:
                    bd:c9:0e:70:97:fc:a0:38:80:df:93:cd:f7:a9:af:87:
                    10:50:bc:83:0c:a8:99:f7:a9:60:fc:8f:eb:56:b4:06:
                    8b:7e:23:8f:f7:97:bd:9f:f2:89:5d:97:d2:2b:1f:ce:
                    1f:06:b2:3b:20:06:c9:0d:a2:e3:5d:a7:9c:85:1c:24:
                    08:8b:be:33:c1:10:f8:5e:9e:a5:f1:8e:fe:35:64:59:
                    a8:6a:35:e0:b4:c8:b5:78:86:4f:90:fc:2a:ae:20:34:
                    c2:2a:e7:a1:dc:df:3c:e5:57:72:57:0c:ce:9f:29:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:c3:11:97:fb:1b:26:da:0a:18:83:ab:7f:12:77:1d:
        d6:56:45:fe:3e:c4:49:d6:e0:bd:be:88:9e:dd:ac:84:
        ed:ed:43:70:0a:6b:c2:11:66:db:28:a0:bc:58:bb:90:
        ed:8e:53:d0:8d:fa:82:09:45:d9:e0:bc:f8:0b:b9:3d:
        e3:ad:50:b6:2e:09:3e:4b:18:b4:27:15:29:e3:19:dc:
        75:b5:ee:10:a6:aa:48:bb:40:08:79:a5:28:22:eb:bd:
        bc:0e:04:c5:33:46:a7:ae:c8:4a:a8:1f:b4:c5:50:8c:
        d2:5b:85:06:a5:64:d3:fd:64:63:32:3a:f1:62:e1:7b:
        59:d7:a2:2f:57:74:15:76:38:e5:e2:e8:01:cd:41:2f:
        92:31:4c:2f:1c:b8:c6:33:f0:56:de:eb:0f:30:88:93:
        9f:ae:13:b1:bd:50:f5:53:bc:68:de:55:92:de:b6:1f:
        be:2f:04:f1:39:28:24:c0:06:3c:c5:68:73:bd:58:59:
        e9:c6:64:41:a6:b1:fc:f1:28:c4:de:48:4d:6b:23:7c:
        90:ef:36:4d:26:f1:07:c3:db:93:ba:86:2e:bb:79:a5:
        77:7b:4e:62:fa:24:70:ca:ca:d0:7b:c3:e9:7e:95:e0:
        83:c7:7f:b4:25:fa:7a:9a:f0:0a:13:c3:87:b1:41:2e
    Fingerprint (SHA-256):
        FD:15:F1:79:F9:B5:AA:A7:53:A0:42:87:56:77:3C:AD:86:1E:4E:09:8B:1C:45:0C:D3:9D:34:6A:A3:D7:A2:C1
    Fingerprint (SHA1):
        78:C1:89:81:F8:35:89:AF:6B:E5:BF:60:D8:A3:29:2D:13:42:E0:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #10980: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10981: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #10982: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #10983: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #10984: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121060 (0x1e67d464)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:11:35 2017
            Not After : Tue May 10 12:11:35 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:66:e9:27:43:08:09:01:bc:12:dc:bb:d9:b0:e0:4b:
                    e1:89:d5:26:f1:55:16:95:1a:f7:d0:0a:a6:e4:8b:19:
                    4d:b6:7f:82:9a:ae:ca:61:c0:c0:82:37:e7:c1:2d:42:
                    9a:57:ca:6c:47:3a:04:ed:31:43:18:63:16:49:db:e7:
                    8e:c5:18:6b:cf:c9:8e:41:2c:12:84:5b:77:e1:65:a8:
                    a2:db:35:17:d3:ad:63:e5:4f:df:16:fe:b7:65:f8:ce:
                    b5:ea:32:2d:ee:6f:9f:10:5a:bd:d0:c0:94:bc:05:31:
                    b1:15:8e:97:9e:ea:62:0e:8a:df:9b:ce:e8:2c:40:1b:
                    7b:02:f6:0b:6f:a0:75:f5:8f:4f:9b:c9:35:05:e3:4e:
                    08:8b:85:ca:8a:a3:87:9f:04:5a:f8:4b:96:b3:29:62:
                    75:02:a1:c8:9e:f1:38:f9:7f:cd:9c:ed:18:74:53:b7:
                    3a:86:7b:0a:39:4b:e8:a4:d6:4c:f7:96:5e:52:10:c2:
                    c1:c8:d5:d4:78:46:bc:ca:ff:70:c9:6b:5d:64:24:01:
                    e3:9d:8a:ba:e8:07:84:94:06:99:7c:bd:80:96:8a:1c:
                    82:6b:ac:ca:8e:7c:3c:d8:d3:c4:7b:49:2e:ba:3b:a6:
                    d4:ee:c3:b5:d3:d9:67:75:db:65:20:7f:79:fa:ee:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        69:44:c7:25:1f:f2:e4:43:f2:d1:61:f1:10:76:bc:c3:
        a6:c8:81:76:0c:9a:0a:ec:c6:7b:70:a5:8b:de:de:b5:
        2c:a9:be:42:41:ad:ba:8b:86:a5:d3:07:68:bc:a2:b4:
        8a:93:8c:6f:c0:45:83:11:91:34:57:20:eb:e8:97:b1:
        ea:a0:fa:da:4e:a3:8b:bd:bb:6e:bc:fd:2b:56:2e:13:
        4e:d2:a9:10:d0:40:9a:c1:e1:4d:3c:79:21:d7:85:af:
        46:92:47:27:3e:ce:fb:a6:4a:b0:4d:9c:49:97:89:53:
        21:76:fd:d2:38:2a:ae:4f:1d:21:5d:85:81:fe:af:a3:
        63:ff:f5:37:75:cb:56:ba:80:2d:21:0d:7c:9e:44:92:
        d6:ff:fd:86:8a:9e:14:ef:78:48:ab:fd:50:f4:7b:06:
        ca:c3:66:56:1a:b1:4a:ca:73:36:53:13:01:79:92:39:
        27:21:7b:f6:fa:26:63:4e:5c:75:34:b7:bc:a3:02:a4:
        c7:47:c2:ea:55:90:1c:83:6b:77:27:60:6a:3e:2e:aa:
        de:c5:64:53:d5:13:d5:5e:df:56:0f:1f:e9:ff:5f:49:
        ea:4b:74:ec:14:6a:b5:15:60:77:2e:76:d2:71:7d:52:
        56:46:35:d6:49:87:42:fa:ba:ad:8f:47:9b:04:a4:3e
    Fingerprint (SHA-256):
        92:74:DC:CB:9D:15:C3:6A:3B:36:1A:1F:26:AF:BB:92:45:C4:60:1E:4B:1E:0A:4C:1A:E4:A6:1A:95:EE:B3:ED
    Fingerprint (SHA1):
        38:69:1D:35:BB:E4:92:5E:A1:47:03:E2:3E:08:7E:9A:E0:7B:F3:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10985: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10986: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121061 (0x1e67d465)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:11:36 2017
            Not After : Tue May 10 12:11:36 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:ec:32:25:31:46:a5:07:e6:ea:5a:f0:bb:26:7e:fa:
                    80:cc:f2:25:77:1c:b3:2d:15:04:37:f0:94:d0:ff:97:
                    86:ae:a9:f2:c4:55:de:71:95:d7:a4:f5:a2:ed:9e:47:
                    a3:4d:e0:52:95:d5:f0:46:5c:8f:81:c7:2e:76:2f:47:
                    42:02:3f:20:d1:a5:d1:93:9d:c1:20:9c:0d:c6:3d:b7:
                    3f:02:2c:81:61:72:d9:49:c9:81:c4:e0:fa:73:45:33:
                    38:4c:57:0f:90:58:3a:27:1d:b2:fb:a8:be:ac:b1:b9:
                    d6:ab:76:94:79:c6:c6:2e:d5:98:49:b8:52:ae:53:49:
                    11:6c:cf:d9:9a:40:f6:1f:2b:3e:17:50:55:b7:39:d1:
                    b0:a7:f6:41:bf:c7:91:37:5e:32:c1:19:8a:a4:76:32:
                    41:23:6e:67:ca:db:d0:09:dc:da:69:9f:40:46:9a:79:
                    ad:50:45:f1:d6:a1:a7:9e:e8:1e:20:ca:9e:4c:5e:27:
                    59:4f:93:fc:c1:23:cb:00:70:6d:2f:a8:8d:36:d0:32:
                    cf:dd:45:27:57:0c:26:9f:ad:38:b3:fd:78:75:d3:bf:
                    11:19:0d:f9:4c:01:7a:a3:74:ae:9a:94:14:69:d7:fd:
                    69:7f:65:19:aa:00:bc:1b:73:d4:dc:d5:d6:c0:3d:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:be:33:be:d4:5c:d9:b8:67:05:b7:ac:bc:ca:6d:b4:
        7c:86:55:6d:66:04:db:3c:47:0c:e6:b6:be:31:34:3f:
        21:e8:e6:96:eb:14:03:57:77:54:ca:6c:ce:18:bb:bb:
        c2:54:13:f3:a6:93:6f:77:dc:71:4c:55:cd:e2:c8:0c:
        8b:c5:76:7e:58:1f:a3:be:97:7f:e8:f2:f7:35:81:d0:
        5a:93:e7:f4:47:89:48:9c:f3:c2:71:13:b9:06:ac:f2:
        98:14:ad:a1:7a:6c:ff:8d:43:a0:bc:96:ee:25:cf:a6:
        bf:5f:b7:d5:c8:9a:6f:ca:db:17:78:d1:85:34:77:7b:
        7d:ef:37:f6:b5:9a:93:45:10:38:ce:c7:c2:a9:0f:c0:
        67:16:58:29:ba:96:9b:7a:15:b7:50:13:e8:22:2e:bb:
        fd:7a:1b:c7:d4:89:54:70:d7:f9:c9:45:88:2c:6b:ef:
        a1:fc:61:a6:6f:94:bd:a0:c0:03:51:68:38:c2:69:97:
        8c:20:32:1b:81:6c:66:aa:61:56:02:2e:a3:94:ed:07:
        55:46:90:b3:af:21:72:ee:f5:a4:01:69:3c:5f:73:7e:
        14:16:eb:a2:73:e8:cf:c8:72:f9:b0:9b:90:1c:17:ee:
        1e:8b:64:99:96:8f:df:e5:7a:97:d4:d6:1f:fe:3d:90
    Fingerprint (SHA-256):
        80:5D:09:91:0F:7B:B8:11:0F:33:AE:8D:88:B9:6A:BE:C3:15:38:AA:D0:66:41:F0:D0:EA:6A:9C:78:04:5D:64
    Fingerprint (SHA1):
        48:9C:34:4B:14:49:5A:CF:FA:6A:44:BC:47:08:86:C1:82:D5:36:64
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10987: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10988: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121062 (0x1e67d466)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:11:37 2017
            Not After : Tue May 10 12:11:37 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:1c:94:fe:4b:cd:67:1d:cc:b7:11:ba:8c:93:ae:67:
                    06:43:9c:1a:ef:ff:ea:9c:6b:e9:03:6a:3d:e8:f1:48:
                    63:bb:b6:be:cd:de:86:c5:3c:e7:bd:8a:e1:64:1f:4b:
                    61:3a:fd:ea:7c:7c:25:2e:88:91:b3:55:34:27:f3:a8:
                    3e:d9:b8:52:c4:24:ca:4a:4d:73:64:12:15:e4:ee:84:
                    7b:f6:d3:87:07:86:85:f8:4a:06:8d:01:49:68:67:3c:
                    64:0f:97:3b:21:3b:ff:0d:39:d5:63:fd:a9:53:06:a5:
                    5d:61:20:b9:4e:69:ff:96:ba:c3:df:5f:a9:36:7a:98:
                    c0:7d:16:49:1d:a8:44:4d:74:db:20:e0:87:75:c1:05:
                    bd:c9:0e:70:97:fc:a0:38:80:df:93:cd:f7:a9:af:87:
                    10:50:bc:83:0c:a8:99:f7:a9:60:fc:8f:eb:56:b4:06:
                    8b:7e:23:8f:f7:97:bd:9f:f2:89:5d:97:d2:2b:1f:ce:
                    1f:06:b2:3b:20:06:c9:0d:a2:e3:5d:a7:9c:85:1c:24:
                    08:8b:be:33:c1:10:f8:5e:9e:a5:f1:8e:fe:35:64:59:
                    a8:6a:35:e0:b4:c8:b5:78:86:4f:90:fc:2a:ae:20:34:
                    c2:2a:e7:a1:dc:df:3c:e5:57:72:57:0c:ce:9f:29:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:c3:11:97:fb:1b:26:da:0a:18:83:ab:7f:12:77:1d:
        d6:56:45:fe:3e:c4:49:d6:e0:bd:be:88:9e:dd:ac:84:
        ed:ed:43:70:0a:6b:c2:11:66:db:28:a0:bc:58:bb:90:
        ed:8e:53:d0:8d:fa:82:09:45:d9:e0:bc:f8:0b:b9:3d:
        e3:ad:50:b6:2e:09:3e:4b:18:b4:27:15:29:e3:19:dc:
        75:b5:ee:10:a6:aa:48:bb:40:08:79:a5:28:22:eb:bd:
        bc:0e:04:c5:33:46:a7:ae:c8:4a:a8:1f:b4:c5:50:8c:
        d2:5b:85:06:a5:64:d3:fd:64:63:32:3a:f1:62:e1:7b:
        59:d7:a2:2f:57:74:15:76:38:e5:e2:e8:01:cd:41:2f:
        92:31:4c:2f:1c:b8:c6:33:f0:56:de:eb:0f:30:88:93:
        9f:ae:13:b1:bd:50:f5:53:bc:68:de:55:92:de:b6:1f:
        be:2f:04:f1:39:28:24:c0:06:3c:c5:68:73:bd:58:59:
        e9:c6:64:41:a6:b1:fc:f1:28:c4:de:48:4d:6b:23:7c:
        90:ef:36:4d:26:f1:07:c3:db:93:ba:86:2e:bb:79:a5:
        77:7b:4e:62:fa:24:70:ca:ca:d0:7b:c3:e9:7e:95:e0:
        83:c7:7f:b4:25:fa:7a:9a:f0:0a:13:c3:87:b1:41:2e
    Fingerprint (SHA-256):
        FD:15:F1:79:F9:B5:AA:A7:53:A0:42:87:56:77:3C:AD:86:1E:4E:09:8B:1C:45:0C:D3:9D:34:6A:A3:D7:A2:C1
    Fingerprint (SHA1):
        78:C1:89:81:F8:35:89:AF:6B:E5:BF:60:D8:A3:29:2D:13:42:E0:F2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #10989: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10990: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10991: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121064 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10992: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10993: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10994: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10995: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121065   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10996: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10997: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10998: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10999: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121066   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11000: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11001: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #11002: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11003: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510121067   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11004: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11005: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #11006: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11007: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510121068   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11008: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11009: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11010: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121064 (0x1e67d468)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:11:42 2017
            Not After : Tue May 10 12:11:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:31:8e:39:cf:40:96:42:7a:f3:eb:f9:78:aa:99:7f:
                    cd:0c:11:40:63:93:00:f5:2a:07:37:13:86:0b:e0:c3:
                    e5:bb:c4:3a:23:d6:96:fa:df:85:89:10:a0:87:04:80:
                    e8:94:3c:f3:f4:d1:4d:4e:f0:9c:21:34:23:b8:aa:09:
                    be:c9:30:41:66:f0:73:16:d8:1f:38:a3:aa:f0:03:28:
                    6d:07:c1:04:37:21:21:44:e1:3a:8b:40:d8:34:b8:5a:
                    1b:f7:d1:b8:7a:8f:55:3f:18:d7:cf:40:fb:04:d9:b4:
                    04:2a:cf:d1:96:9e:32:42:bb:91:df:41:bd:89:0d:a4:
                    44:a5:ab:18:40:ee:44:e3:33:24:d9:e1:e5:a3:5c:e0:
                    17:b1:5e:35:8c:f7:d2:d1:c0:d9:ab:b4:77:92:8c:9e:
                    0f:ad:62:0d:9e:6f:57:5d:68:bf:f3:21:e6:eb:2d:34:
                    6e:4f:29:6c:1a:04:73:f1:97:47:b6:e3:cd:3b:e2:61:
                    0b:85:d1:f7:6c:39:26:90:b1:c2:5b:f6:cf:b9:a1:45:
                    a1:71:1f:26:54:21:88:d3:dd:76:58:19:c8:f0:ea:ab:
                    0c:92:fb:01:79:ff:65:0c:7d:44:75:23:66:96:93:86:
                    68:56:3e:f7:76:7f:d3:67:56:8a:fe:e5:6f:af:2b:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:bd:20:f0:05:92:f9:94:45:8c:72:52:6f:45:a4:66:
        92:b1:3e:72:d7:34:74:1a:16:04:4f:30:d0:aa:2f:07:
        d5:1d:2b:5d:ee:89:f4:61:ef:87:ce:f2:46:d8:6c:ba:
        4f:af:56:03:64:51:31:f0:b5:2a:55:82:05:52:17:26:
        83:31:a5:6a:12:21:95:31:b8:6f:67:8f:bd:68:e1:8b:
        39:69:b7:e2:d3:07:6e:3b:3a:19:ec:63:6c:26:88:1c:
        ad:16:b9:c6:cd:4c:6d:37:c5:90:7f:0d:6b:18:f6:3d:
        4d:e2:0a:fc:b4:32:7b:2c:8d:36:71:9a:97:ec:8c:7a:
        7d:46:f2:b4:32:7b:9f:a0:32:c2:10:f8:e7:1d:8a:46:
        b4:94:78:b3:1a:b3:51:33:cc:38:00:36:4e:51:7f:16:
        c4:c5:c2:e7:05:58:b9:f0:d0:66:08:2a:01:1a:9c:2f:
        1d:c6:61:5e:fa:68:92:eb:e2:5e:3a:7f:82:2e:f5:24:
        2c:0f:6f:24:9c:15:d1:3d:e9:45:50:17:26:4e:c0:65:
        eb:e1:72:13:55:23:44:03:87:91:52:ca:77:4c:23:30:
        ab:89:20:c5:7d:62:65:cb:e1:f1:cf:08:d1:fc:33:14:
        0c:f7:5e:06:b9:55:ab:86:ca:82:e2:34:12:9e:76:2b
    Fingerprint (SHA-256):
        F5:F3:EA:12:34:E6:03:52:38:13:07:54:A5:18:D0:4C:1D:F5:49:96:50:0E:A6:6F:90:16:6D:4C:74:A2:C5:70
    Fingerprint (SHA1):
        50:50:71:67:DE:12:36:43:8C:93:4A:AC:2D:47:A6:C9:9E:27:41:DD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11011: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11012: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121065 (0x1e67d469)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:11:43 2017
            Not After : Tue May 10 12:11:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:ea:11:98:0f:90:04:43:49:26:b5:9f:29:8a:34:ff:
                    09:d9:18:c2:70:59:0f:3e:b3:cb:3f:ed:36:ad:16:36:
                    3f:7f:1c:0d:5c:95:17:31:fc:87:d5:68:c9:a7:e2:0a:
                    71:75:28:53:15:25:ff:86:cd:fb:55:c9:44:d8:b2:ee:
                    04:b6:95:16:4a:63:11:d4:e7:d7:5b:df:c2:16:bd:28:
                    6b:72:c9:ae:76:50:97:ef:07:ca:9d:f3:da:8c:2c:ab:
                    1e:df:c4:5e:cd:88:56:b4:bb:f8:0f:bb:05:42:e1:6c:
                    ea:90:82:eb:c5:e9:a8:8d:c3:6a:8c:f0:85:29:e4:d1:
                    c7:d6:2c:90:9c:1b:6b:d5:0b:8a:69:d0:86:26:bc:96:
                    b1:87:e8:5a:94:87:81:be:e2:1b:33:b1:7b:ea:26:90:
                    fe:81:ea:65:ee:9c:fc:2f:03:f2:d5:d0:09:6a:a8:92:
                    f7:cb:f8:70:1e:52:39:c9:17:c5:a0:e6:b8:ca:f3:07:
                    d9:54:51:dd:0a:d5:e2:5a:2b:ee:89:3b:95:17:54:41:
                    23:e1:da:c2:22:0d:e7:a8:07:bf:13:28:70:7c:bf:2a:
                    8f:9c:cb:44:d6:c6:87:bb:ca:5f:a4:8a:d7:df:60:e5:
                    d5:9f:22:1a:4b:ad:50:37:df:27:4f:5a:2f:8b:e6:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:81:e1:89:34:fa:33:51:0f:e7:91:ba:a4:1b:02:ef:
        85:1b:25:04:d3:7b:6a:c0:d9:31:26:c1:6b:84:b9:8c:
        b1:94:4d:7b:92:c0:dc:14:ab:5b:fd:4e:38:f7:63:54:
        c4:88:de:95:86:ed:37:81:63:a2:1d:14:d6:ae:09:79:
        af:13:22:96:59:e9:86:54:d8:12:f1:d9:28:81:7a:9b:
        b9:49:a4:42:ec:7b:6b:b8:f9:b8:77:86:57:58:6c:33:
        dc:66:3f:aa:f4:55:47:f5:8c:e4:b4:4d:06:f5:a3:51:
        12:4c:34:e8:8c:21:ea:4f:97:25:b2:06:a7:76:80:92:
        b0:4f:45:6b:5b:c1:95:95:02:10:30:c2:8a:8f:c5:b8:
        29:cd:30:16:b1:2f:16:cc:04:c0:5f:10:68:2c:c7:bb:
        9b:36:b2:55:eb:33:fe:be:88:86:f7:73:05:12:cd:d6:
        59:21:47:fd:d5:bd:38:29:3f:7c:38:de:88:5e:a1:f2:
        9d:69:d4:66:37:19:8b:16:2e:34:3b:de:80:93:a7:0b:
        30:f8:5f:01:b6:11:96:15:21:9f:a1:25:29:8e:28:64:
        57:b0:f2:13:7e:5a:67:ed:6a:9d:95:3e:a8:93:6a:59:
        63:51:8f:88:73:1a:3c:c7:42:e6:be:99:20:6f:b8:7a
    Fingerprint (SHA-256):
        CB:52:E4:A0:B7:AC:FB:C1:88:42:E2:5D:8C:EB:89:F5:64:AF:18:1F:1D:A0:36:DB:86:D9:75:2D:99:13:53:B7
    Fingerprint (SHA1):
        D9:90:D2:A4:B9:C9:2E:92:A5:A5:B6:14:7F:F6:BC:7B:DA:CE:4A:07
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11013: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11014: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121066 (0x1e67d46a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:11:45 2017
            Not After : Tue May 10 12:11:45 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:02:64:8a:0b:33:c1:00:3d:cc:ee:af:d6:52:cf:f2:
                    94:10:d9:b0:1a:74:8f:68:59:f8:66:e5:14:ce:33:1d:
                    d0:a1:f1:21:38:f3:ca:fc:2f:db:89:fe:98:d1:73:d1:
                    79:2c:13:1f:24:2b:89:02:6a:35:71:62:46:44:f1:71:
                    61:37:d7:e5:8b:84:8f:ba:1c:c9:ce:c2:b9:c2:69:e5:
                    3c:57:80:20:58:dc:4d:7c:ac:ed:99:07:14:d4:19:9c:
                    0f:53:c6:c3:ee:00:b7:d2:88:ff:b3:d0:8a:47:b8:ac:
                    41:31:90:ce:c4:51:7b:b5:57:9e:71:95:56:91:c9:c9:
                    d7:8b:54:91:6e:cc:d7:f0:2a:72:c6:b8:02:86:a8:28:
                    66:92:2d:11:ec:8e:af:a3:f1:01:a3:19:82:a6:2e:38:
                    cf:ea:65:4e:da:9f:34:dc:ca:42:6b:ea:39:74:fe:5d:
                    84:01:e3:9b:da:d3:7d:43:d8:15:9b:bb:94:eb:93:cc:
                    2b:ad:0e:5f:00:ae:5e:1d:92:ce:f2:f1:d7:4c:be:15:
                    60:c8:b0:fd:bb:74:7b:27:80:64:f7:b6:7b:74:07:88:
                    37:70:6f:f9:ee:37:75:79:cc:cb:7e:37:41:e9:84:97:
                    43:3b:37:70:14:76:e1:a8:36:7b:cb:3b:fb:e4:b8:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        34:d0:83:2e:59:74:6d:ea:c0:56:cf:c4:29:ba:2d:bd:
        70:34:d1:d6:e4:31:ca:dc:3f:6a:ed:f1:9f:bd:27:a0:
        77:5d:2f:e3:1e:7d:e5:5e:fc:46:1b:af:b5:75:c7:18:
        81:82:33:9f:ad:0f:5d:d0:33:be:52:39:3b:16:b9:69:
        31:ba:eb:bf:af:fe:17:32:51:a0:4f:63:40:68:dc:59:
        d7:cd:79:ff:11:a7:42:40:38:cb:f5:8e:e1:f9:e1:c4:
        d8:ba:17:f6:d8:c5:25:f4:25:50:5f:bf:1d:f1:74:d6:
        ad:d0:a4:59:9c:0d:0e:f1:ba:65:75:05:6c:c6:89:79:
        13:a0:4e:1c:bf:c2:3b:49:87:ac:28:4d:20:6d:7f:3d:
        2f:d1:47:e3:82:d7:a4:d3:54:e8:a1:49:ee:2c:01:f0:
        02:dd:bb:cf:53:ec:2b:1f:d2:f8:7f:2d:a1:ae:30:ea:
        37:14:f4:91:f1:29:05:02:dd:e7:f0:9b:37:be:9d:1a:
        92:24:11:a7:1e:0f:47:b6:70:38:ae:3d:ad:79:d0:9a:
        64:41:74:96:2e:34:25:d8:2e:72:19:e7:27:21:ad:13:
        77:9c:70:11:0b:f2:49:81:72:06:54:b9:bd:bf:12:c3:
        16:27:ba:e3:f9:a7:23:4c:d9:78:37:19:b9:76:b6:02
    Fingerprint (SHA-256):
        BF:09:F5:BE:EF:A0:CD:E5:2E:D6:13:E4:F9:32:85:08:C3:CF:EE:13:DF:E5:A3:F7:85:D3:B0:50:F8:AC:A4:41
    Fingerprint (SHA1):
        88:6B:D9:33:56:06:2C:11:99:B7:65:B4:DF:DE:5C:DC:D7:4C:09:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11015: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11016: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11017: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11018: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11019: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121064 (0x1e67d468)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:11:42 2017
            Not After : Tue May 10 12:11:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:31:8e:39:cf:40:96:42:7a:f3:eb:f9:78:aa:99:7f:
                    cd:0c:11:40:63:93:00:f5:2a:07:37:13:86:0b:e0:c3:
                    e5:bb:c4:3a:23:d6:96:fa:df:85:89:10:a0:87:04:80:
                    e8:94:3c:f3:f4:d1:4d:4e:f0:9c:21:34:23:b8:aa:09:
                    be:c9:30:41:66:f0:73:16:d8:1f:38:a3:aa:f0:03:28:
                    6d:07:c1:04:37:21:21:44:e1:3a:8b:40:d8:34:b8:5a:
                    1b:f7:d1:b8:7a:8f:55:3f:18:d7:cf:40:fb:04:d9:b4:
                    04:2a:cf:d1:96:9e:32:42:bb:91:df:41:bd:89:0d:a4:
                    44:a5:ab:18:40:ee:44:e3:33:24:d9:e1:e5:a3:5c:e0:
                    17:b1:5e:35:8c:f7:d2:d1:c0:d9:ab:b4:77:92:8c:9e:
                    0f:ad:62:0d:9e:6f:57:5d:68:bf:f3:21:e6:eb:2d:34:
                    6e:4f:29:6c:1a:04:73:f1:97:47:b6:e3:cd:3b:e2:61:
                    0b:85:d1:f7:6c:39:26:90:b1:c2:5b:f6:cf:b9:a1:45:
                    a1:71:1f:26:54:21:88:d3:dd:76:58:19:c8:f0:ea:ab:
                    0c:92:fb:01:79:ff:65:0c:7d:44:75:23:66:96:93:86:
                    68:56:3e:f7:76:7f:d3:67:56:8a:fe:e5:6f:af:2b:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:bd:20:f0:05:92:f9:94:45:8c:72:52:6f:45:a4:66:
        92:b1:3e:72:d7:34:74:1a:16:04:4f:30:d0:aa:2f:07:
        d5:1d:2b:5d:ee:89:f4:61:ef:87:ce:f2:46:d8:6c:ba:
        4f:af:56:03:64:51:31:f0:b5:2a:55:82:05:52:17:26:
        83:31:a5:6a:12:21:95:31:b8:6f:67:8f:bd:68:e1:8b:
        39:69:b7:e2:d3:07:6e:3b:3a:19:ec:63:6c:26:88:1c:
        ad:16:b9:c6:cd:4c:6d:37:c5:90:7f:0d:6b:18:f6:3d:
        4d:e2:0a:fc:b4:32:7b:2c:8d:36:71:9a:97:ec:8c:7a:
        7d:46:f2:b4:32:7b:9f:a0:32:c2:10:f8:e7:1d:8a:46:
        b4:94:78:b3:1a:b3:51:33:cc:38:00:36:4e:51:7f:16:
        c4:c5:c2:e7:05:58:b9:f0:d0:66:08:2a:01:1a:9c:2f:
        1d:c6:61:5e:fa:68:92:eb:e2:5e:3a:7f:82:2e:f5:24:
        2c:0f:6f:24:9c:15:d1:3d:e9:45:50:17:26:4e:c0:65:
        eb:e1:72:13:55:23:44:03:87:91:52:ca:77:4c:23:30:
        ab:89:20:c5:7d:62:65:cb:e1:f1:cf:08:d1:fc:33:14:
        0c:f7:5e:06:b9:55:ab:86:ca:82:e2:34:12:9e:76:2b
    Fingerprint (SHA-256):
        F5:F3:EA:12:34:E6:03:52:38:13:07:54:A5:18:D0:4C:1D:F5:49:96:50:0E:A6:6F:90:16:6D:4C:74:A2:C5:70
    Fingerprint (SHA1):
        50:50:71:67:DE:12:36:43:8C:93:4A:AC:2D:47:A6:C9:9E:27:41:DD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11020: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11021: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121065 (0x1e67d469)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:11:43 2017
            Not After : Tue May 10 12:11:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:ea:11:98:0f:90:04:43:49:26:b5:9f:29:8a:34:ff:
                    09:d9:18:c2:70:59:0f:3e:b3:cb:3f:ed:36:ad:16:36:
                    3f:7f:1c:0d:5c:95:17:31:fc:87:d5:68:c9:a7:e2:0a:
                    71:75:28:53:15:25:ff:86:cd:fb:55:c9:44:d8:b2:ee:
                    04:b6:95:16:4a:63:11:d4:e7:d7:5b:df:c2:16:bd:28:
                    6b:72:c9:ae:76:50:97:ef:07:ca:9d:f3:da:8c:2c:ab:
                    1e:df:c4:5e:cd:88:56:b4:bb:f8:0f:bb:05:42:e1:6c:
                    ea:90:82:eb:c5:e9:a8:8d:c3:6a:8c:f0:85:29:e4:d1:
                    c7:d6:2c:90:9c:1b:6b:d5:0b:8a:69:d0:86:26:bc:96:
                    b1:87:e8:5a:94:87:81:be:e2:1b:33:b1:7b:ea:26:90:
                    fe:81:ea:65:ee:9c:fc:2f:03:f2:d5:d0:09:6a:a8:92:
                    f7:cb:f8:70:1e:52:39:c9:17:c5:a0:e6:b8:ca:f3:07:
                    d9:54:51:dd:0a:d5:e2:5a:2b:ee:89:3b:95:17:54:41:
                    23:e1:da:c2:22:0d:e7:a8:07:bf:13:28:70:7c:bf:2a:
                    8f:9c:cb:44:d6:c6:87:bb:ca:5f:a4:8a:d7:df:60:e5:
                    d5:9f:22:1a:4b:ad:50:37:df:27:4f:5a:2f:8b:e6:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:81:e1:89:34:fa:33:51:0f:e7:91:ba:a4:1b:02:ef:
        85:1b:25:04:d3:7b:6a:c0:d9:31:26:c1:6b:84:b9:8c:
        b1:94:4d:7b:92:c0:dc:14:ab:5b:fd:4e:38:f7:63:54:
        c4:88:de:95:86:ed:37:81:63:a2:1d:14:d6:ae:09:79:
        af:13:22:96:59:e9:86:54:d8:12:f1:d9:28:81:7a:9b:
        b9:49:a4:42:ec:7b:6b:b8:f9:b8:77:86:57:58:6c:33:
        dc:66:3f:aa:f4:55:47:f5:8c:e4:b4:4d:06:f5:a3:51:
        12:4c:34:e8:8c:21:ea:4f:97:25:b2:06:a7:76:80:92:
        b0:4f:45:6b:5b:c1:95:95:02:10:30:c2:8a:8f:c5:b8:
        29:cd:30:16:b1:2f:16:cc:04:c0:5f:10:68:2c:c7:bb:
        9b:36:b2:55:eb:33:fe:be:88:86:f7:73:05:12:cd:d6:
        59:21:47:fd:d5:bd:38:29:3f:7c:38:de:88:5e:a1:f2:
        9d:69:d4:66:37:19:8b:16:2e:34:3b:de:80:93:a7:0b:
        30:f8:5f:01:b6:11:96:15:21:9f:a1:25:29:8e:28:64:
        57:b0:f2:13:7e:5a:67:ed:6a:9d:95:3e:a8:93:6a:59:
        63:51:8f:88:73:1a:3c:c7:42:e6:be:99:20:6f:b8:7a
    Fingerprint (SHA-256):
        CB:52:E4:A0:B7:AC:FB:C1:88:42:E2:5D:8C:EB:89:F5:64:AF:18:1F:1D:A0:36:DB:86:D9:75:2D:99:13:53:B7
    Fingerprint (SHA1):
        D9:90:D2:A4:B9:C9:2E:92:A5:A5:B6:14:7F:F6:BC:7B:DA:CE:4A:07
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11022: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11023: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121066 (0x1e67d46a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:11:45 2017
            Not After : Tue May 10 12:11:45 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:02:64:8a:0b:33:c1:00:3d:cc:ee:af:d6:52:cf:f2:
                    94:10:d9:b0:1a:74:8f:68:59:f8:66:e5:14:ce:33:1d:
                    d0:a1:f1:21:38:f3:ca:fc:2f:db:89:fe:98:d1:73:d1:
                    79:2c:13:1f:24:2b:89:02:6a:35:71:62:46:44:f1:71:
                    61:37:d7:e5:8b:84:8f:ba:1c:c9:ce:c2:b9:c2:69:e5:
                    3c:57:80:20:58:dc:4d:7c:ac:ed:99:07:14:d4:19:9c:
                    0f:53:c6:c3:ee:00:b7:d2:88:ff:b3:d0:8a:47:b8:ac:
                    41:31:90:ce:c4:51:7b:b5:57:9e:71:95:56:91:c9:c9:
                    d7:8b:54:91:6e:cc:d7:f0:2a:72:c6:b8:02:86:a8:28:
                    66:92:2d:11:ec:8e:af:a3:f1:01:a3:19:82:a6:2e:38:
                    cf:ea:65:4e:da:9f:34:dc:ca:42:6b:ea:39:74:fe:5d:
                    84:01:e3:9b:da:d3:7d:43:d8:15:9b:bb:94:eb:93:cc:
                    2b:ad:0e:5f:00:ae:5e:1d:92:ce:f2:f1:d7:4c:be:15:
                    60:c8:b0:fd:bb:74:7b:27:80:64:f7:b6:7b:74:07:88:
                    37:70:6f:f9:ee:37:75:79:cc:cb:7e:37:41:e9:84:97:
                    43:3b:37:70:14:76:e1:a8:36:7b:cb:3b:fb:e4:b8:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        34:d0:83:2e:59:74:6d:ea:c0:56:cf:c4:29:ba:2d:bd:
        70:34:d1:d6:e4:31:ca:dc:3f:6a:ed:f1:9f:bd:27:a0:
        77:5d:2f:e3:1e:7d:e5:5e:fc:46:1b:af:b5:75:c7:18:
        81:82:33:9f:ad:0f:5d:d0:33:be:52:39:3b:16:b9:69:
        31:ba:eb:bf:af:fe:17:32:51:a0:4f:63:40:68:dc:59:
        d7:cd:79:ff:11:a7:42:40:38:cb:f5:8e:e1:f9:e1:c4:
        d8:ba:17:f6:d8:c5:25:f4:25:50:5f:bf:1d:f1:74:d6:
        ad:d0:a4:59:9c:0d:0e:f1:ba:65:75:05:6c:c6:89:79:
        13:a0:4e:1c:bf:c2:3b:49:87:ac:28:4d:20:6d:7f:3d:
        2f:d1:47:e3:82:d7:a4:d3:54:e8:a1:49:ee:2c:01:f0:
        02:dd:bb:cf:53:ec:2b:1f:d2:f8:7f:2d:a1:ae:30:ea:
        37:14:f4:91:f1:29:05:02:dd:e7:f0:9b:37:be:9d:1a:
        92:24:11:a7:1e:0f:47:b6:70:38:ae:3d:ad:79:d0:9a:
        64:41:74:96:2e:34:25:d8:2e:72:19:e7:27:21:ad:13:
        77:9c:70:11:0b:f2:49:81:72:06:54:b9:bd:bf:12:c3:
        16:27:ba:e3:f9:a7:23:4c:d9:78:37:19:b9:76:b6:02
    Fingerprint (SHA-256):
        BF:09:F5:BE:EF:A0:CD:E5:2E:D6:13:E4:F9:32:85:08:C3:CF:EE:13:DF:E5:A3:F7:85:D3:B0:50:F8:AC:A4:41
    Fingerprint (SHA1):
        88:6B:D9:33:56:06:2C:11:99:B7:65:B4:DF:DE:5C:DC:D7:4C:09:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11024: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11025: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121064 (0x1e67d468)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:11:42 2017
            Not After : Tue May 10 12:11:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:31:8e:39:cf:40:96:42:7a:f3:eb:f9:78:aa:99:7f:
                    cd:0c:11:40:63:93:00:f5:2a:07:37:13:86:0b:e0:c3:
                    e5:bb:c4:3a:23:d6:96:fa:df:85:89:10:a0:87:04:80:
                    e8:94:3c:f3:f4:d1:4d:4e:f0:9c:21:34:23:b8:aa:09:
                    be:c9:30:41:66:f0:73:16:d8:1f:38:a3:aa:f0:03:28:
                    6d:07:c1:04:37:21:21:44:e1:3a:8b:40:d8:34:b8:5a:
                    1b:f7:d1:b8:7a:8f:55:3f:18:d7:cf:40:fb:04:d9:b4:
                    04:2a:cf:d1:96:9e:32:42:bb:91:df:41:bd:89:0d:a4:
                    44:a5:ab:18:40:ee:44:e3:33:24:d9:e1:e5:a3:5c:e0:
                    17:b1:5e:35:8c:f7:d2:d1:c0:d9:ab:b4:77:92:8c:9e:
                    0f:ad:62:0d:9e:6f:57:5d:68:bf:f3:21:e6:eb:2d:34:
                    6e:4f:29:6c:1a:04:73:f1:97:47:b6:e3:cd:3b:e2:61:
                    0b:85:d1:f7:6c:39:26:90:b1:c2:5b:f6:cf:b9:a1:45:
                    a1:71:1f:26:54:21:88:d3:dd:76:58:19:c8:f0:ea:ab:
                    0c:92:fb:01:79:ff:65:0c:7d:44:75:23:66:96:93:86:
                    68:56:3e:f7:76:7f:d3:67:56:8a:fe:e5:6f:af:2b:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:bd:20:f0:05:92:f9:94:45:8c:72:52:6f:45:a4:66:
        92:b1:3e:72:d7:34:74:1a:16:04:4f:30:d0:aa:2f:07:
        d5:1d:2b:5d:ee:89:f4:61:ef:87:ce:f2:46:d8:6c:ba:
        4f:af:56:03:64:51:31:f0:b5:2a:55:82:05:52:17:26:
        83:31:a5:6a:12:21:95:31:b8:6f:67:8f:bd:68:e1:8b:
        39:69:b7:e2:d3:07:6e:3b:3a:19:ec:63:6c:26:88:1c:
        ad:16:b9:c6:cd:4c:6d:37:c5:90:7f:0d:6b:18:f6:3d:
        4d:e2:0a:fc:b4:32:7b:2c:8d:36:71:9a:97:ec:8c:7a:
        7d:46:f2:b4:32:7b:9f:a0:32:c2:10:f8:e7:1d:8a:46:
        b4:94:78:b3:1a:b3:51:33:cc:38:00:36:4e:51:7f:16:
        c4:c5:c2:e7:05:58:b9:f0:d0:66:08:2a:01:1a:9c:2f:
        1d:c6:61:5e:fa:68:92:eb:e2:5e:3a:7f:82:2e:f5:24:
        2c:0f:6f:24:9c:15:d1:3d:e9:45:50:17:26:4e:c0:65:
        eb:e1:72:13:55:23:44:03:87:91:52:ca:77:4c:23:30:
        ab:89:20:c5:7d:62:65:cb:e1:f1:cf:08:d1:fc:33:14:
        0c:f7:5e:06:b9:55:ab:86:ca:82:e2:34:12:9e:76:2b
    Fingerprint (SHA-256):
        F5:F3:EA:12:34:E6:03:52:38:13:07:54:A5:18:D0:4C:1D:F5:49:96:50:0E:A6:6F:90:16:6D:4C:74:A2:C5:70
    Fingerprint (SHA1):
        50:50:71:67:DE:12:36:43:8C:93:4A:AC:2D:47:A6:C9:9E:27:41:DD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11026: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121064 (0x1e67d468)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:11:42 2017
            Not After : Tue May 10 12:11:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:31:8e:39:cf:40:96:42:7a:f3:eb:f9:78:aa:99:7f:
                    cd:0c:11:40:63:93:00:f5:2a:07:37:13:86:0b:e0:c3:
                    e5:bb:c4:3a:23:d6:96:fa:df:85:89:10:a0:87:04:80:
                    e8:94:3c:f3:f4:d1:4d:4e:f0:9c:21:34:23:b8:aa:09:
                    be:c9:30:41:66:f0:73:16:d8:1f:38:a3:aa:f0:03:28:
                    6d:07:c1:04:37:21:21:44:e1:3a:8b:40:d8:34:b8:5a:
                    1b:f7:d1:b8:7a:8f:55:3f:18:d7:cf:40:fb:04:d9:b4:
                    04:2a:cf:d1:96:9e:32:42:bb:91:df:41:bd:89:0d:a4:
                    44:a5:ab:18:40:ee:44:e3:33:24:d9:e1:e5:a3:5c:e0:
                    17:b1:5e:35:8c:f7:d2:d1:c0:d9:ab:b4:77:92:8c:9e:
                    0f:ad:62:0d:9e:6f:57:5d:68:bf:f3:21:e6:eb:2d:34:
                    6e:4f:29:6c:1a:04:73:f1:97:47:b6:e3:cd:3b:e2:61:
                    0b:85:d1:f7:6c:39:26:90:b1:c2:5b:f6:cf:b9:a1:45:
                    a1:71:1f:26:54:21:88:d3:dd:76:58:19:c8:f0:ea:ab:
                    0c:92:fb:01:79:ff:65:0c:7d:44:75:23:66:96:93:86:
                    68:56:3e:f7:76:7f:d3:67:56:8a:fe:e5:6f:af:2b:eb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:bd:20:f0:05:92:f9:94:45:8c:72:52:6f:45:a4:66:
        92:b1:3e:72:d7:34:74:1a:16:04:4f:30:d0:aa:2f:07:
        d5:1d:2b:5d:ee:89:f4:61:ef:87:ce:f2:46:d8:6c:ba:
        4f:af:56:03:64:51:31:f0:b5:2a:55:82:05:52:17:26:
        83:31:a5:6a:12:21:95:31:b8:6f:67:8f:bd:68:e1:8b:
        39:69:b7:e2:d3:07:6e:3b:3a:19:ec:63:6c:26:88:1c:
        ad:16:b9:c6:cd:4c:6d:37:c5:90:7f:0d:6b:18:f6:3d:
        4d:e2:0a:fc:b4:32:7b:2c:8d:36:71:9a:97:ec:8c:7a:
        7d:46:f2:b4:32:7b:9f:a0:32:c2:10:f8:e7:1d:8a:46:
        b4:94:78:b3:1a:b3:51:33:cc:38:00:36:4e:51:7f:16:
        c4:c5:c2:e7:05:58:b9:f0:d0:66:08:2a:01:1a:9c:2f:
        1d:c6:61:5e:fa:68:92:eb:e2:5e:3a:7f:82:2e:f5:24:
        2c:0f:6f:24:9c:15:d1:3d:e9:45:50:17:26:4e:c0:65:
        eb:e1:72:13:55:23:44:03:87:91:52:ca:77:4c:23:30:
        ab:89:20:c5:7d:62:65:cb:e1:f1:cf:08:d1:fc:33:14:
        0c:f7:5e:06:b9:55:ab:86:ca:82:e2:34:12:9e:76:2b
    Fingerprint (SHA-256):
        F5:F3:EA:12:34:E6:03:52:38:13:07:54:A5:18:D0:4C:1D:F5:49:96:50:0E:A6:6F:90:16:6D:4C:74:A2:C5:70
    Fingerprint (SHA1):
        50:50:71:67:DE:12:36:43:8C:93:4A:AC:2D:47:A6:C9:9E:27:41:DD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11027: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121065 (0x1e67d469)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:11:43 2017
            Not After : Tue May 10 12:11:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:ea:11:98:0f:90:04:43:49:26:b5:9f:29:8a:34:ff:
                    09:d9:18:c2:70:59:0f:3e:b3:cb:3f:ed:36:ad:16:36:
                    3f:7f:1c:0d:5c:95:17:31:fc:87:d5:68:c9:a7:e2:0a:
                    71:75:28:53:15:25:ff:86:cd:fb:55:c9:44:d8:b2:ee:
                    04:b6:95:16:4a:63:11:d4:e7:d7:5b:df:c2:16:bd:28:
                    6b:72:c9:ae:76:50:97:ef:07:ca:9d:f3:da:8c:2c:ab:
                    1e:df:c4:5e:cd:88:56:b4:bb:f8:0f:bb:05:42:e1:6c:
                    ea:90:82:eb:c5:e9:a8:8d:c3:6a:8c:f0:85:29:e4:d1:
                    c7:d6:2c:90:9c:1b:6b:d5:0b:8a:69:d0:86:26:bc:96:
                    b1:87:e8:5a:94:87:81:be:e2:1b:33:b1:7b:ea:26:90:
                    fe:81:ea:65:ee:9c:fc:2f:03:f2:d5:d0:09:6a:a8:92:
                    f7:cb:f8:70:1e:52:39:c9:17:c5:a0:e6:b8:ca:f3:07:
                    d9:54:51:dd:0a:d5:e2:5a:2b:ee:89:3b:95:17:54:41:
                    23:e1:da:c2:22:0d:e7:a8:07:bf:13:28:70:7c:bf:2a:
                    8f:9c:cb:44:d6:c6:87:bb:ca:5f:a4:8a:d7:df:60:e5:
                    d5:9f:22:1a:4b:ad:50:37:df:27:4f:5a:2f:8b:e6:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:81:e1:89:34:fa:33:51:0f:e7:91:ba:a4:1b:02:ef:
        85:1b:25:04:d3:7b:6a:c0:d9:31:26:c1:6b:84:b9:8c:
        b1:94:4d:7b:92:c0:dc:14:ab:5b:fd:4e:38:f7:63:54:
        c4:88:de:95:86:ed:37:81:63:a2:1d:14:d6:ae:09:79:
        af:13:22:96:59:e9:86:54:d8:12:f1:d9:28:81:7a:9b:
        b9:49:a4:42:ec:7b:6b:b8:f9:b8:77:86:57:58:6c:33:
        dc:66:3f:aa:f4:55:47:f5:8c:e4:b4:4d:06:f5:a3:51:
        12:4c:34:e8:8c:21:ea:4f:97:25:b2:06:a7:76:80:92:
        b0:4f:45:6b:5b:c1:95:95:02:10:30:c2:8a:8f:c5:b8:
        29:cd:30:16:b1:2f:16:cc:04:c0:5f:10:68:2c:c7:bb:
        9b:36:b2:55:eb:33:fe:be:88:86:f7:73:05:12:cd:d6:
        59:21:47:fd:d5:bd:38:29:3f:7c:38:de:88:5e:a1:f2:
        9d:69:d4:66:37:19:8b:16:2e:34:3b:de:80:93:a7:0b:
        30:f8:5f:01:b6:11:96:15:21:9f:a1:25:29:8e:28:64:
        57:b0:f2:13:7e:5a:67:ed:6a:9d:95:3e:a8:93:6a:59:
        63:51:8f:88:73:1a:3c:c7:42:e6:be:99:20:6f:b8:7a
    Fingerprint (SHA-256):
        CB:52:E4:A0:B7:AC:FB:C1:88:42:E2:5D:8C:EB:89:F5:64:AF:18:1F:1D:A0:36:DB:86:D9:75:2D:99:13:53:B7
    Fingerprint (SHA1):
        D9:90:D2:A4:B9:C9:2E:92:A5:A5:B6:14:7F:F6:BC:7B:DA:CE:4A:07
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11028: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121065 (0x1e67d469)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:11:43 2017
            Not After : Tue May 10 12:11:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:ea:11:98:0f:90:04:43:49:26:b5:9f:29:8a:34:ff:
                    09:d9:18:c2:70:59:0f:3e:b3:cb:3f:ed:36:ad:16:36:
                    3f:7f:1c:0d:5c:95:17:31:fc:87:d5:68:c9:a7:e2:0a:
                    71:75:28:53:15:25:ff:86:cd:fb:55:c9:44:d8:b2:ee:
                    04:b6:95:16:4a:63:11:d4:e7:d7:5b:df:c2:16:bd:28:
                    6b:72:c9:ae:76:50:97:ef:07:ca:9d:f3:da:8c:2c:ab:
                    1e:df:c4:5e:cd:88:56:b4:bb:f8:0f:bb:05:42:e1:6c:
                    ea:90:82:eb:c5:e9:a8:8d:c3:6a:8c:f0:85:29:e4:d1:
                    c7:d6:2c:90:9c:1b:6b:d5:0b:8a:69:d0:86:26:bc:96:
                    b1:87:e8:5a:94:87:81:be:e2:1b:33:b1:7b:ea:26:90:
                    fe:81:ea:65:ee:9c:fc:2f:03:f2:d5:d0:09:6a:a8:92:
                    f7:cb:f8:70:1e:52:39:c9:17:c5:a0:e6:b8:ca:f3:07:
                    d9:54:51:dd:0a:d5:e2:5a:2b:ee:89:3b:95:17:54:41:
                    23:e1:da:c2:22:0d:e7:a8:07:bf:13:28:70:7c:bf:2a:
                    8f:9c:cb:44:d6:c6:87:bb:ca:5f:a4:8a:d7:df:60:e5:
                    d5:9f:22:1a:4b:ad:50:37:df:27:4f:5a:2f:8b:e6:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:81:e1:89:34:fa:33:51:0f:e7:91:ba:a4:1b:02:ef:
        85:1b:25:04:d3:7b:6a:c0:d9:31:26:c1:6b:84:b9:8c:
        b1:94:4d:7b:92:c0:dc:14:ab:5b:fd:4e:38:f7:63:54:
        c4:88:de:95:86:ed:37:81:63:a2:1d:14:d6:ae:09:79:
        af:13:22:96:59:e9:86:54:d8:12:f1:d9:28:81:7a:9b:
        b9:49:a4:42:ec:7b:6b:b8:f9:b8:77:86:57:58:6c:33:
        dc:66:3f:aa:f4:55:47:f5:8c:e4:b4:4d:06:f5:a3:51:
        12:4c:34:e8:8c:21:ea:4f:97:25:b2:06:a7:76:80:92:
        b0:4f:45:6b:5b:c1:95:95:02:10:30:c2:8a:8f:c5:b8:
        29:cd:30:16:b1:2f:16:cc:04:c0:5f:10:68:2c:c7:bb:
        9b:36:b2:55:eb:33:fe:be:88:86:f7:73:05:12:cd:d6:
        59:21:47:fd:d5:bd:38:29:3f:7c:38:de:88:5e:a1:f2:
        9d:69:d4:66:37:19:8b:16:2e:34:3b:de:80:93:a7:0b:
        30:f8:5f:01:b6:11:96:15:21:9f:a1:25:29:8e:28:64:
        57:b0:f2:13:7e:5a:67:ed:6a:9d:95:3e:a8:93:6a:59:
        63:51:8f:88:73:1a:3c:c7:42:e6:be:99:20:6f:b8:7a
    Fingerprint (SHA-256):
        CB:52:E4:A0:B7:AC:FB:C1:88:42:E2:5D:8C:EB:89:F5:64:AF:18:1F:1D:A0:36:DB:86:D9:75:2D:99:13:53:B7
    Fingerprint (SHA1):
        D9:90:D2:A4:B9:C9:2E:92:A5:A5:B6:14:7F:F6:BC:7B:DA:CE:4A:07
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11029: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121066 (0x1e67d46a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:11:45 2017
            Not After : Tue May 10 12:11:45 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:02:64:8a:0b:33:c1:00:3d:cc:ee:af:d6:52:cf:f2:
                    94:10:d9:b0:1a:74:8f:68:59:f8:66:e5:14:ce:33:1d:
                    d0:a1:f1:21:38:f3:ca:fc:2f:db:89:fe:98:d1:73:d1:
                    79:2c:13:1f:24:2b:89:02:6a:35:71:62:46:44:f1:71:
                    61:37:d7:e5:8b:84:8f:ba:1c:c9:ce:c2:b9:c2:69:e5:
                    3c:57:80:20:58:dc:4d:7c:ac:ed:99:07:14:d4:19:9c:
                    0f:53:c6:c3:ee:00:b7:d2:88:ff:b3:d0:8a:47:b8:ac:
                    41:31:90:ce:c4:51:7b:b5:57:9e:71:95:56:91:c9:c9:
                    d7:8b:54:91:6e:cc:d7:f0:2a:72:c6:b8:02:86:a8:28:
                    66:92:2d:11:ec:8e:af:a3:f1:01:a3:19:82:a6:2e:38:
                    cf:ea:65:4e:da:9f:34:dc:ca:42:6b:ea:39:74:fe:5d:
                    84:01:e3:9b:da:d3:7d:43:d8:15:9b:bb:94:eb:93:cc:
                    2b:ad:0e:5f:00:ae:5e:1d:92:ce:f2:f1:d7:4c:be:15:
                    60:c8:b0:fd:bb:74:7b:27:80:64:f7:b6:7b:74:07:88:
                    37:70:6f:f9:ee:37:75:79:cc:cb:7e:37:41:e9:84:97:
                    43:3b:37:70:14:76:e1:a8:36:7b:cb:3b:fb:e4:b8:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        34:d0:83:2e:59:74:6d:ea:c0:56:cf:c4:29:ba:2d:bd:
        70:34:d1:d6:e4:31:ca:dc:3f:6a:ed:f1:9f:bd:27:a0:
        77:5d:2f:e3:1e:7d:e5:5e:fc:46:1b:af:b5:75:c7:18:
        81:82:33:9f:ad:0f:5d:d0:33:be:52:39:3b:16:b9:69:
        31:ba:eb:bf:af:fe:17:32:51:a0:4f:63:40:68:dc:59:
        d7:cd:79:ff:11:a7:42:40:38:cb:f5:8e:e1:f9:e1:c4:
        d8:ba:17:f6:d8:c5:25:f4:25:50:5f:bf:1d:f1:74:d6:
        ad:d0:a4:59:9c:0d:0e:f1:ba:65:75:05:6c:c6:89:79:
        13:a0:4e:1c:bf:c2:3b:49:87:ac:28:4d:20:6d:7f:3d:
        2f:d1:47:e3:82:d7:a4:d3:54:e8:a1:49:ee:2c:01:f0:
        02:dd:bb:cf:53:ec:2b:1f:d2:f8:7f:2d:a1:ae:30:ea:
        37:14:f4:91:f1:29:05:02:dd:e7:f0:9b:37:be:9d:1a:
        92:24:11:a7:1e:0f:47:b6:70:38:ae:3d:ad:79:d0:9a:
        64:41:74:96:2e:34:25:d8:2e:72:19:e7:27:21:ad:13:
        77:9c:70:11:0b:f2:49:81:72:06:54:b9:bd:bf:12:c3:
        16:27:ba:e3:f9:a7:23:4c:d9:78:37:19:b9:76:b6:02
    Fingerprint (SHA-256):
        BF:09:F5:BE:EF:A0:CD:E5:2E:D6:13:E4:F9:32:85:08:C3:CF:EE:13:DF:E5:A3:F7:85:D3:B0:50:F8:AC:A4:41
    Fingerprint (SHA1):
        88:6B:D9:33:56:06:2C:11:99:B7:65:B4:DF:DE:5C:DC:D7:4C:09:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11030: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121066 (0x1e67d46a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:11:45 2017
            Not After : Tue May 10 12:11:45 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:02:64:8a:0b:33:c1:00:3d:cc:ee:af:d6:52:cf:f2:
                    94:10:d9:b0:1a:74:8f:68:59:f8:66:e5:14:ce:33:1d:
                    d0:a1:f1:21:38:f3:ca:fc:2f:db:89:fe:98:d1:73:d1:
                    79:2c:13:1f:24:2b:89:02:6a:35:71:62:46:44:f1:71:
                    61:37:d7:e5:8b:84:8f:ba:1c:c9:ce:c2:b9:c2:69:e5:
                    3c:57:80:20:58:dc:4d:7c:ac:ed:99:07:14:d4:19:9c:
                    0f:53:c6:c3:ee:00:b7:d2:88:ff:b3:d0:8a:47:b8:ac:
                    41:31:90:ce:c4:51:7b:b5:57:9e:71:95:56:91:c9:c9:
                    d7:8b:54:91:6e:cc:d7:f0:2a:72:c6:b8:02:86:a8:28:
                    66:92:2d:11:ec:8e:af:a3:f1:01:a3:19:82:a6:2e:38:
                    cf:ea:65:4e:da:9f:34:dc:ca:42:6b:ea:39:74:fe:5d:
                    84:01:e3:9b:da:d3:7d:43:d8:15:9b:bb:94:eb:93:cc:
                    2b:ad:0e:5f:00:ae:5e:1d:92:ce:f2:f1:d7:4c:be:15:
                    60:c8:b0:fd:bb:74:7b:27:80:64:f7:b6:7b:74:07:88:
                    37:70:6f:f9:ee:37:75:79:cc:cb:7e:37:41:e9:84:97:
                    43:3b:37:70:14:76:e1:a8:36:7b:cb:3b:fb:e4:b8:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        34:d0:83:2e:59:74:6d:ea:c0:56:cf:c4:29:ba:2d:bd:
        70:34:d1:d6:e4:31:ca:dc:3f:6a:ed:f1:9f:bd:27:a0:
        77:5d:2f:e3:1e:7d:e5:5e:fc:46:1b:af:b5:75:c7:18:
        81:82:33:9f:ad:0f:5d:d0:33:be:52:39:3b:16:b9:69:
        31:ba:eb:bf:af:fe:17:32:51:a0:4f:63:40:68:dc:59:
        d7:cd:79:ff:11:a7:42:40:38:cb:f5:8e:e1:f9:e1:c4:
        d8:ba:17:f6:d8:c5:25:f4:25:50:5f:bf:1d:f1:74:d6:
        ad:d0:a4:59:9c:0d:0e:f1:ba:65:75:05:6c:c6:89:79:
        13:a0:4e:1c:bf:c2:3b:49:87:ac:28:4d:20:6d:7f:3d:
        2f:d1:47:e3:82:d7:a4:d3:54:e8:a1:49:ee:2c:01:f0:
        02:dd:bb:cf:53:ec:2b:1f:d2:f8:7f:2d:a1:ae:30:ea:
        37:14:f4:91:f1:29:05:02:dd:e7:f0:9b:37:be:9d:1a:
        92:24:11:a7:1e:0f:47:b6:70:38:ae:3d:ad:79:d0:9a:
        64:41:74:96:2e:34:25:d8:2e:72:19:e7:27:21:ad:13:
        77:9c:70:11:0b:f2:49:81:72:06:54:b9:bd:bf:12:c3:
        16:27:ba:e3:f9:a7:23:4c:d9:78:37:19:b9:76:b6:02
    Fingerprint (SHA-256):
        BF:09:F5:BE:EF:A0:CD:E5:2E:D6:13:E4:F9:32:85:08:C3:CF:EE:13:DF:E5:A3:F7:85:D3:B0:50:F8:AC:A4:41
    Fingerprint (SHA1):
        88:6B:D9:33:56:06:2C:11:99:B7:65:B4:DF:DE:5C:DC:D7:4C:09:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11031: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11032: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121069 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11033: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11034: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11035: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11036: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510121070   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11037: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11038: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11039: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11040: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121071   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11041: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11042: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11043: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11044: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 510121072   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11045: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11046: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #11047: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11048: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510121073   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11049: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11050: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #11051: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11052: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510121074   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11053: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11054: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #11055: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11056: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 510121075   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11057: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11058: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11059: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #11060: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #11061: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11062: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #11063: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121069 (0x1e67d46d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:11:51 2017
            Not After : Tue May 10 12:11:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:38:da:af:87:0a:10:e7:4b:aa:80:24:98:ab:56:bb:
                    7f:10:a6:de:80:4d:74:0f:23:e4:83:6e:57:58:df:fa:
                    60:ed:e6:67:8f:59:1d:f7:25:65:37:21:ba:03:cd:4e:
                    03:c4:73:69:b1:bf:c9:02:ef:09:a9:1f:ee:55:36:46:
                    5c:28:82:84:24:d0:69:f7:38:1c:a0:75:3d:31:a2:1f:
                    50:86:6f:98:cb:ac:83:17:e9:13:e7:af:81:18:4a:1a:
                    9d:76:19:3e:53:63:18:3a:04:2b:03:7f:30:43:ec:3c:
                    fd:d3:28:ad:ba:be:14:f1:74:b8:ee:94:be:62:7d:f4:
                    d0:f9:41:2e:0c:90:3f:39:a3:47:0c:d9:cc:b7:9c:d9:
                    bb:d5:c6:21:9f:23:a7:b1:ea:4e:44:f1:2e:0c:92:9b:
                    bd:07:c0:ff:8c:76:d0:29:a3:39:33:60:94:72:ae:d3:
                    28:28:87:60:1e:ca:f2:b2:e4:c7:6c:15:7a:0b:8d:cf:
                    82:c1:ca:c1:c2:50:df:9e:72:4a:dd:a0:a5:6c:35:e5:
                    d6:22:c6:89:8b:90:8a:77:e9:d6:3c:97:68:bc:6d:34:
                    19:3b:d2:1b:93:d9:87:3b:cd:8f:a9:90:bf:ab:7f:c8:
                    3d:d1:bd:02:88:49:df:54:41:a7:2f:16:36:f9:07:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:aa:0d:72:a2:97:2f:b9:a3:63:8d:e8:71:31:b5:61:
        77:ed:b1:0a:3b:32:e1:be:4a:7d:26:2f:b4:2a:57:fe:
        c0:34:23:e4:bc:59:19:bf:b1:1c:fa:ae:ec:b6:99:0b:
        d7:1e:17:3e:99:a8:54:77:70:54:0c:3b:a6:47:71:c7:
        76:49:ff:81:f9:1b:5b:16:46:02:b9:e5:c9:cb:70:7e:
        06:86:d1:f0:3b:e2:11:d6:f2:0c:d6:63:3b:3f:33:be:
        dd:dd:51:81:b7:e5:b2:7a:39:07:94:59:26:fe:03:cd:
        56:04:24:9a:c9:03:29:ab:9c:3e:5d:e1:65:6f:ae:b2:
        a5:3d:d7:82:f6:0f:ec:43:ee:80:c5:f3:7c:9f:e8:cb:
        41:80:c0:06:b5:b2:8a:1d:9f:26:62:bb:fb:ae:56:cb:
        09:f4:2f:66:48:28:5a:8d:ec:46:cd:9c:66:e6:3c:66:
        6b:98:42:8e:06:f2:18:37:ab:37:ae:64:28:cb:26:96:
        48:21:19:f7:c2:d5:07:2e:38:45:4b:98:35:b6:98:db:
        95:a3:ad:89:50:28:62:ef:c4:05:b6:67:da:26:85:da:
        f1:b7:b5:c3:10:d7:0b:77:ec:1b:e6:e0:5a:8b:7c:03:
        be:c0:5f:f3:b8:75:61:e1:c8:8d:44:ca:da:69:79:a8
    Fingerprint (SHA-256):
        5C:5D:03:AA:D5:1E:BB:DE:37:F2:AA:BB:23:0E:F0:D3:28:5C:03:3C:F7:A3:00:1A:BE:53:E3:48:45:46:8C:37
    Fingerprint (SHA1):
        8D:6C:80:FF:DC:D0:C1:95:59:70:C3:F4:DA:AF:54:F5:87:A6:70:96
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11064: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11065: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11066: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11067: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121069 (0x1e67d46d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:11:51 2017
            Not After : Tue May 10 12:11:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:38:da:af:87:0a:10:e7:4b:aa:80:24:98:ab:56:bb:
                    7f:10:a6:de:80:4d:74:0f:23:e4:83:6e:57:58:df:fa:
                    60:ed:e6:67:8f:59:1d:f7:25:65:37:21:ba:03:cd:4e:
                    03:c4:73:69:b1:bf:c9:02:ef:09:a9:1f:ee:55:36:46:
                    5c:28:82:84:24:d0:69:f7:38:1c:a0:75:3d:31:a2:1f:
                    50:86:6f:98:cb:ac:83:17:e9:13:e7:af:81:18:4a:1a:
                    9d:76:19:3e:53:63:18:3a:04:2b:03:7f:30:43:ec:3c:
                    fd:d3:28:ad:ba:be:14:f1:74:b8:ee:94:be:62:7d:f4:
                    d0:f9:41:2e:0c:90:3f:39:a3:47:0c:d9:cc:b7:9c:d9:
                    bb:d5:c6:21:9f:23:a7:b1:ea:4e:44:f1:2e:0c:92:9b:
                    bd:07:c0:ff:8c:76:d0:29:a3:39:33:60:94:72:ae:d3:
                    28:28:87:60:1e:ca:f2:b2:e4:c7:6c:15:7a:0b:8d:cf:
                    82:c1:ca:c1:c2:50:df:9e:72:4a:dd:a0:a5:6c:35:e5:
                    d6:22:c6:89:8b:90:8a:77:e9:d6:3c:97:68:bc:6d:34:
                    19:3b:d2:1b:93:d9:87:3b:cd:8f:a9:90:bf:ab:7f:c8:
                    3d:d1:bd:02:88:49:df:54:41:a7:2f:16:36:f9:07:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:aa:0d:72:a2:97:2f:b9:a3:63:8d:e8:71:31:b5:61:
        77:ed:b1:0a:3b:32:e1:be:4a:7d:26:2f:b4:2a:57:fe:
        c0:34:23:e4:bc:59:19:bf:b1:1c:fa:ae:ec:b6:99:0b:
        d7:1e:17:3e:99:a8:54:77:70:54:0c:3b:a6:47:71:c7:
        76:49:ff:81:f9:1b:5b:16:46:02:b9:e5:c9:cb:70:7e:
        06:86:d1:f0:3b:e2:11:d6:f2:0c:d6:63:3b:3f:33:be:
        dd:dd:51:81:b7:e5:b2:7a:39:07:94:59:26:fe:03:cd:
        56:04:24:9a:c9:03:29:ab:9c:3e:5d:e1:65:6f:ae:b2:
        a5:3d:d7:82:f6:0f:ec:43:ee:80:c5:f3:7c:9f:e8:cb:
        41:80:c0:06:b5:b2:8a:1d:9f:26:62:bb:fb:ae:56:cb:
        09:f4:2f:66:48:28:5a:8d:ec:46:cd:9c:66:e6:3c:66:
        6b:98:42:8e:06:f2:18:37:ab:37:ae:64:28:cb:26:96:
        48:21:19:f7:c2:d5:07:2e:38:45:4b:98:35:b6:98:db:
        95:a3:ad:89:50:28:62:ef:c4:05:b6:67:da:26:85:da:
        f1:b7:b5:c3:10:d7:0b:77:ec:1b:e6:e0:5a:8b:7c:03:
        be:c0:5f:f3:b8:75:61:e1:c8:8d:44:ca:da:69:79:a8
    Fingerprint (SHA-256):
        5C:5D:03:AA:D5:1E:BB:DE:37:F2:AA:BB:23:0E:F0:D3:28:5C:03:3C:F7:A3:00:1A:BE:53:E3:48:45:46:8C:37
    Fingerprint (SHA1):
        8D:6C:80:FF:DC:D0:C1:95:59:70:C3:F4:DA:AF:54:F5:87:A6:70:96
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11068: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11069: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11070: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121076 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11071: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11072: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11073: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11074: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510121077   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11075: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11076: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #11077: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11078: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 510121078   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11079: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11080: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #11081: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11082: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 510121079   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11083: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11084: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11085: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11086: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 510121080   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11087: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11088: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #11089: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11090: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 510121081   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11091: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11092: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #11093: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11094: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 510121082   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11095: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11096: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11097: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11098: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 510121083   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11099: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11100: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #11101: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11102: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 510121084   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11103: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11104: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #11105: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11106: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 510121085   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11107: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11108: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11109: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11110: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 510121086   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11111: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11112: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #11113: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11114: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 510121087   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11115: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11116: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #11117: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11118: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 510121088   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11119: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11120: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11121: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11122: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 510121089   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11123: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11124: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #11125: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11126: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 510121090   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11127: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11128: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #11129: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11130: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 510121091   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11131: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11132: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #11133: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11134: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 510121092   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11135: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11136: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #11137: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11138: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 510121093   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11139: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11140: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #11141: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11142: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 510121094   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11143: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11144: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #11145: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11146: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 510121095   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11147: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11148: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #11149: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11150: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 510121096   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11151: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11152: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #11153: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11154: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 510121097   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11155: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11156: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #11157: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11158: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 510121098   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11159: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11160: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #11161: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11162: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 510121099   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11163: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11164: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #11165: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11166: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 510121100   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11167: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11168: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #11169: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11170: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 510121101   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11171: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11172: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #11173: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11174: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 510121102   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11175: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11176: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #11177: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11178: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 510121103   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11179: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11180: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #11181: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11182: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 510121104   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11183: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11184: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #11185: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11186: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 510121105   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11187: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11188: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11189: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121076 (0x1e67d474)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:63:57:41:8f:08:3a:4c:33:a7:31:fe:4e:9b:45:96:
                    2c:c0:7e:8e:1e:7d:e7:8b:4f:31:c2:5d:75:b4:f9:5e:
                    c8:d5:2c:ba:e6:a9:1c:82:f7:16:bc:8f:1c:a0:18:30:
                    7e:0c:24:cb:0c:e1:b0:54:ed:40:9e:0d:92:cd:35:79:
                    7c:ae:04:73:55:13:25:d0:f6:10:79:81:25:54:26:89:
                    91:bc:e9:43:ea:b9:89:5b:a5:4f:29:f3:c3:52:40:2c:
                    85:6e:45:c1:26:06:92:c9:d2:9f:00:2b:cf:14:c8:3e:
                    b8:81:4a:ef:b9:55:8c:ef:af:68:bf:85:dc:e2:38:3c:
                    68:68:18:3e:f2:c1:e4:bc:2b:53:0b:34:8f:4b:a1:3f:
                    09:a1:0e:b4:df:2b:c3:31:ef:b3:c6:f4:e9:78:b5:c6:
                    30:38:29:e4:cf:36:ee:ee:54:8f:c6:76:54:27:3a:bc:
                    65:15:31:ba:ff:cf:76:ab:9f:24:22:e8:98:81:50:b2:
                    d5:dc:4e:34:4f:2b:9a:27:7f:28:0b:ec:f7:64:8a:e6:
                    e0:56:ac:6a:ed:92:c7:03:bc:e7:65:0c:13:77:b1:93:
                    2b:fe:0e:36:e0:89:78:ba:d7:a3:64:ee:74:32:c1:a8:
                    fa:30:c1:dd:34:ed:a6:1c:29:9e:98:e5:d2:1b:28:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:42:2b:3e:1c:25:a4:2c:55:12:49:94:34:6f:03:bf:
        80:57:cd:59:6e:63:9e:fa:19:16:ce:76:7f:31:2e:7d:
        9b:f3:ec:ec:57:f6:58:fa:9f:43:2d:97:94:0f:d1:e3:
        c9:b7:4d:5c:a3:b0:86:3f:86:3c:45:b1:b8:f4:19:cc:
        60:8a:0e:b6:86:8e:cc:8d:a2:f9:9d:eb:96:2d:8d:03:
        1a:60:8e:39:a7:64:8c:bb:3d:ca:6e:28:6e:8e:fd:05:
        87:24:0c:2e:a9:f1:b8:06:ad:2a:e4:b8:2d:fb:b7:3c:
        b8:4d:ff:07:f7:bd:ef:6b:c4:4d:0c:90:12:3e:08:dd:
        6a:44:85:70:cd:3a:4f:84:3e:92:b1:1e:47:cf:ac:ee:
        a6:d2:02:01:de:31:a2:90:4f:e2:a8:80:f2:8d:e9:80:
        63:84:38:4b:bb:91:b2:a4:5f:ba:19:2a:69:6e:3b:dc:
        b7:65:fc:ed:7f:a4:a4:39:6a:6f:ea:4f:df:14:ca:ee:
        69:c1:90:72:c8:8b:bb:a5:24:b5:b5:6b:74:04:f6:fd:
        fc:ca:f4:bb:7d:c9:c8:d6:1a:38:68:8f:7b:e5:a6:dd:
        31:2c:cb:01:15:f6:5a:14:e2:6b:ef:f1:7a:4c:73:fa:
        b7:72:60:00:61:e7:50:84:a7:2f:29:30:80:d0:45:34
    Fingerprint (SHA-256):
        80:AE:94:08:6C:B7:12:83:E4:0F:9A:72:37:E3:7E:66:B4:D3:3E:C2:9E:1A:EE:66:26:9C:93:EB:7D:CF:CA:26
    Fingerprint (SHA1):
        99:2D:CF:E9:D9:39:51:D5:F0:3D:38:48:8A:42:90:29:C1:46:68:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11190: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11191: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121076 (0x1e67d474)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:63:57:41:8f:08:3a:4c:33:a7:31:fe:4e:9b:45:96:
                    2c:c0:7e:8e:1e:7d:e7:8b:4f:31:c2:5d:75:b4:f9:5e:
                    c8:d5:2c:ba:e6:a9:1c:82:f7:16:bc:8f:1c:a0:18:30:
                    7e:0c:24:cb:0c:e1:b0:54:ed:40:9e:0d:92:cd:35:79:
                    7c:ae:04:73:55:13:25:d0:f6:10:79:81:25:54:26:89:
                    91:bc:e9:43:ea:b9:89:5b:a5:4f:29:f3:c3:52:40:2c:
                    85:6e:45:c1:26:06:92:c9:d2:9f:00:2b:cf:14:c8:3e:
                    b8:81:4a:ef:b9:55:8c:ef:af:68:bf:85:dc:e2:38:3c:
                    68:68:18:3e:f2:c1:e4:bc:2b:53:0b:34:8f:4b:a1:3f:
                    09:a1:0e:b4:df:2b:c3:31:ef:b3:c6:f4:e9:78:b5:c6:
                    30:38:29:e4:cf:36:ee:ee:54:8f:c6:76:54:27:3a:bc:
                    65:15:31:ba:ff:cf:76:ab:9f:24:22:e8:98:81:50:b2:
                    d5:dc:4e:34:4f:2b:9a:27:7f:28:0b:ec:f7:64:8a:e6:
                    e0:56:ac:6a:ed:92:c7:03:bc:e7:65:0c:13:77:b1:93:
                    2b:fe:0e:36:e0:89:78:ba:d7:a3:64:ee:74:32:c1:a8:
                    fa:30:c1:dd:34:ed:a6:1c:29:9e:98:e5:d2:1b:28:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:42:2b:3e:1c:25:a4:2c:55:12:49:94:34:6f:03:bf:
        80:57:cd:59:6e:63:9e:fa:19:16:ce:76:7f:31:2e:7d:
        9b:f3:ec:ec:57:f6:58:fa:9f:43:2d:97:94:0f:d1:e3:
        c9:b7:4d:5c:a3:b0:86:3f:86:3c:45:b1:b8:f4:19:cc:
        60:8a:0e:b6:86:8e:cc:8d:a2:f9:9d:eb:96:2d:8d:03:
        1a:60:8e:39:a7:64:8c:bb:3d:ca:6e:28:6e:8e:fd:05:
        87:24:0c:2e:a9:f1:b8:06:ad:2a:e4:b8:2d:fb:b7:3c:
        b8:4d:ff:07:f7:bd:ef:6b:c4:4d:0c:90:12:3e:08:dd:
        6a:44:85:70:cd:3a:4f:84:3e:92:b1:1e:47:cf:ac:ee:
        a6:d2:02:01:de:31:a2:90:4f:e2:a8:80:f2:8d:e9:80:
        63:84:38:4b:bb:91:b2:a4:5f:ba:19:2a:69:6e:3b:dc:
        b7:65:fc:ed:7f:a4:a4:39:6a:6f:ea:4f:df:14:ca:ee:
        69:c1:90:72:c8:8b:bb:a5:24:b5:b5:6b:74:04:f6:fd:
        fc:ca:f4:bb:7d:c9:c8:d6:1a:38:68:8f:7b:e5:a6:dd:
        31:2c:cb:01:15:f6:5a:14:e2:6b:ef:f1:7a:4c:73:fa:
        b7:72:60:00:61:e7:50:84:a7:2f:29:30:80:d0:45:34
    Fingerprint (SHA-256):
        80:AE:94:08:6C:B7:12:83:E4:0F:9A:72:37:E3:7E:66:B4:D3:3E:C2:9E:1A:EE:66:26:9C:93:EB:7D:CF:CA:26
    Fingerprint (SHA1):
        99:2D:CF:E9:D9:39:51:D5:F0:3D:38:48:8A:42:90:29:C1:46:68:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11192: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11193: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11194: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11195: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121076 (0x1e67d474)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:63:57:41:8f:08:3a:4c:33:a7:31:fe:4e:9b:45:96:
                    2c:c0:7e:8e:1e:7d:e7:8b:4f:31:c2:5d:75:b4:f9:5e:
                    c8:d5:2c:ba:e6:a9:1c:82:f7:16:bc:8f:1c:a0:18:30:
                    7e:0c:24:cb:0c:e1:b0:54:ed:40:9e:0d:92:cd:35:79:
                    7c:ae:04:73:55:13:25:d0:f6:10:79:81:25:54:26:89:
                    91:bc:e9:43:ea:b9:89:5b:a5:4f:29:f3:c3:52:40:2c:
                    85:6e:45:c1:26:06:92:c9:d2:9f:00:2b:cf:14:c8:3e:
                    b8:81:4a:ef:b9:55:8c:ef:af:68:bf:85:dc:e2:38:3c:
                    68:68:18:3e:f2:c1:e4:bc:2b:53:0b:34:8f:4b:a1:3f:
                    09:a1:0e:b4:df:2b:c3:31:ef:b3:c6:f4:e9:78:b5:c6:
                    30:38:29:e4:cf:36:ee:ee:54:8f:c6:76:54:27:3a:bc:
                    65:15:31:ba:ff:cf:76:ab:9f:24:22:e8:98:81:50:b2:
                    d5:dc:4e:34:4f:2b:9a:27:7f:28:0b:ec:f7:64:8a:e6:
                    e0:56:ac:6a:ed:92:c7:03:bc:e7:65:0c:13:77:b1:93:
                    2b:fe:0e:36:e0:89:78:ba:d7:a3:64:ee:74:32:c1:a8:
                    fa:30:c1:dd:34:ed:a6:1c:29:9e:98:e5:d2:1b:28:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:42:2b:3e:1c:25:a4:2c:55:12:49:94:34:6f:03:bf:
        80:57:cd:59:6e:63:9e:fa:19:16:ce:76:7f:31:2e:7d:
        9b:f3:ec:ec:57:f6:58:fa:9f:43:2d:97:94:0f:d1:e3:
        c9:b7:4d:5c:a3:b0:86:3f:86:3c:45:b1:b8:f4:19:cc:
        60:8a:0e:b6:86:8e:cc:8d:a2:f9:9d:eb:96:2d:8d:03:
        1a:60:8e:39:a7:64:8c:bb:3d:ca:6e:28:6e:8e:fd:05:
        87:24:0c:2e:a9:f1:b8:06:ad:2a:e4:b8:2d:fb:b7:3c:
        b8:4d:ff:07:f7:bd:ef:6b:c4:4d:0c:90:12:3e:08:dd:
        6a:44:85:70:cd:3a:4f:84:3e:92:b1:1e:47:cf:ac:ee:
        a6:d2:02:01:de:31:a2:90:4f:e2:a8:80:f2:8d:e9:80:
        63:84:38:4b:bb:91:b2:a4:5f:ba:19:2a:69:6e:3b:dc:
        b7:65:fc:ed:7f:a4:a4:39:6a:6f:ea:4f:df:14:ca:ee:
        69:c1:90:72:c8:8b:bb:a5:24:b5:b5:6b:74:04:f6:fd:
        fc:ca:f4:bb:7d:c9:c8:d6:1a:38:68:8f:7b:e5:a6:dd:
        31:2c:cb:01:15:f6:5a:14:e2:6b:ef:f1:7a:4c:73:fa:
        b7:72:60:00:61:e7:50:84:a7:2f:29:30:80:d0:45:34
    Fingerprint (SHA-256):
        80:AE:94:08:6C:B7:12:83:E4:0F:9A:72:37:E3:7E:66:B4:D3:3E:C2:9E:1A:EE:66:26:9C:93:EB:7D:CF:CA:26
    Fingerprint (SHA1):
        99:2D:CF:E9:D9:39:51:D5:F0:3D:38:48:8A:42:90:29:C1:46:68:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11196: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11197: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11198: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11199: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121076 (0x1e67d474)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:63:57:41:8f:08:3a:4c:33:a7:31:fe:4e:9b:45:96:
                    2c:c0:7e:8e:1e:7d:e7:8b:4f:31:c2:5d:75:b4:f9:5e:
                    c8:d5:2c:ba:e6:a9:1c:82:f7:16:bc:8f:1c:a0:18:30:
                    7e:0c:24:cb:0c:e1:b0:54:ed:40:9e:0d:92:cd:35:79:
                    7c:ae:04:73:55:13:25:d0:f6:10:79:81:25:54:26:89:
                    91:bc:e9:43:ea:b9:89:5b:a5:4f:29:f3:c3:52:40:2c:
                    85:6e:45:c1:26:06:92:c9:d2:9f:00:2b:cf:14:c8:3e:
                    b8:81:4a:ef:b9:55:8c:ef:af:68:bf:85:dc:e2:38:3c:
                    68:68:18:3e:f2:c1:e4:bc:2b:53:0b:34:8f:4b:a1:3f:
                    09:a1:0e:b4:df:2b:c3:31:ef:b3:c6:f4:e9:78:b5:c6:
                    30:38:29:e4:cf:36:ee:ee:54:8f:c6:76:54:27:3a:bc:
                    65:15:31:ba:ff:cf:76:ab:9f:24:22:e8:98:81:50:b2:
                    d5:dc:4e:34:4f:2b:9a:27:7f:28:0b:ec:f7:64:8a:e6:
                    e0:56:ac:6a:ed:92:c7:03:bc:e7:65:0c:13:77:b1:93:
                    2b:fe:0e:36:e0:89:78:ba:d7:a3:64:ee:74:32:c1:a8:
                    fa:30:c1:dd:34:ed:a6:1c:29:9e:98:e5:d2:1b:28:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:42:2b:3e:1c:25:a4:2c:55:12:49:94:34:6f:03:bf:
        80:57:cd:59:6e:63:9e:fa:19:16:ce:76:7f:31:2e:7d:
        9b:f3:ec:ec:57:f6:58:fa:9f:43:2d:97:94:0f:d1:e3:
        c9:b7:4d:5c:a3:b0:86:3f:86:3c:45:b1:b8:f4:19:cc:
        60:8a:0e:b6:86:8e:cc:8d:a2:f9:9d:eb:96:2d:8d:03:
        1a:60:8e:39:a7:64:8c:bb:3d:ca:6e:28:6e:8e:fd:05:
        87:24:0c:2e:a9:f1:b8:06:ad:2a:e4:b8:2d:fb:b7:3c:
        b8:4d:ff:07:f7:bd:ef:6b:c4:4d:0c:90:12:3e:08:dd:
        6a:44:85:70:cd:3a:4f:84:3e:92:b1:1e:47:cf:ac:ee:
        a6:d2:02:01:de:31:a2:90:4f:e2:a8:80:f2:8d:e9:80:
        63:84:38:4b:bb:91:b2:a4:5f:ba:19:2a:69:6e:3b:dc:
        b7:65:fc:ed:7f:a4:a4:39:6a:6f:ea:4f:df:14:ca:ee:
        69:c1:90:72:c8:8b:bb:a5:24:b5:b5:6b:74:04:f6:fd:
        fc:ca:f4:bb:7d:c9:c8:d6:1a:38:68:8f:7b:e5:a6:dd:
        31:2c:cb:01:15:f6:5a:14:e2:6b:ef:f1:7a:4c:73:fa:
        b7:72:60:00:61:e7:50:84:a7:2f:29:30:80:d0:45:34
    Fingerprint (SHA-256):
        80:AE:94:08:6C:B7:12:83:E4:0F:9A:72:37:E3:7E:66:B4:D3:3E:C2:9E:1A:EE:66:26:9C:93:EB:7D:CF:CA:26
    Fingerprint (SHA1):
        99:2D:CF:E9:D9:39:51:D5:F0:3D:38:48:8A:42:90:29:C1:46:68:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11200: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121076 (0x1e67d474)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:63:57:41:8f:08:3a:4c:33:a7:31:fe:4e:9b:45:96:
                    2c:c0:7e:8e:1e:7d:e7:8b:4f:31:c2:5d:75:b4:f9:5e:
                    c8:d5:2c:ba:e6:a9:1c:82:f7:16:bc:8f:1c:a0:18:30:
                    7e:0c:24:cb:0c:e1:b0:54:ed:40:9e:0d:92:cd:35:79:
                    7c:ae:04:73:55:13:25:d0:f6:10:79:81:25:54:26:89:
                    91:bc:e9:43:ea:b9:89:5b:a5:4f:29:f3:c3:52:40:2c:
                    85:6e:45:c1:26:06:92:c9:d2:9f:00:2b:cf:14:c8:3e:
                    b8:81:4a:ef:b9:55:8c:ef:af:68:bf:85:dc:e2:38:3c:
                    68:68:18:3e:f2:c1:e4:bc:2b:53:0b:34:8f:4b:a1:3f:
                    09:a1:0e:b4:df:2b:c3:31:ef:b3:c6:f4:e9:78:b5:c6:
                    30:38:29:e4:cf:36:ee:ee:54:8f:c6:76:54:27:3a:bc:
                    65:15:31:ba:ff:cf:76:ab:9f:24:22:e8:98:81:50:b2:
                    d5:dc:4e:34:4f:2b:9a:27:7f:28:0b:ec:f7:64:8a:e6:
                    e0:56:ac:6a:ed:92:c7:03:bc:e7:65:0c:13:77:b1:93:
                    2b:fe:0e:36:e0:89:78:ba:d7:a3:64:ee:74:32:c1:a8:
                    fa:30:c1:dd:34:ed:a6:1c:29:9e:98:e5:d2:1b:28:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:42:2b:3e:1c:25:a4:2c:55:12:49:94:34:6f:03:bf:
        80:57:cd:59:6e:63:9e:fa:19:16:ce:76:7f:31:2e:7d:
        9b:f3:ec:ec:57:f6:58:fa:9f:43:2d:97:94:0f:d1:e3:
        c9:b7:4d:5c:a3:b0:86:3f:86:3c:45:b1:b8:f4:19:cc:
        60:8a:0e:b6:86:8e:cc:8d:a2:f9:9d:eb:96:2d:8d:03:
        1a:60:8e:39:a7:64:8c:bb:3d:ca:6e:28:6e:8e:fd:05:
        87:24:0c:2e:a9:f1:b8:06:ad:2a:e4:b8:2d:fb:b7:3c:
        b8:4d:ff:07:f7:bd:ef:6b:c4:4d:0c:90:12:3e:08:dd:
        6a:44:85:70:cd:3a:4f:84:3e:92:b1:1e:47:cf:ac:ee:
        a6:d2:02:01:de:31:a2:90:4f:e2:a8:80:f2:8d:e9:80:
        63:84:38:4b:bb:91:b2:a4:5f:ba:19:2a:69:6e:3b:dc:
        b7:65:fc:ed:7f:a4:a4:39:6a:6f:ea:4f:df:14:ca:ee:
        69:c1:90:72:c8:8b:bb:a5:24:b5:b5:6b:74:04:f6:fd:
        fc:ca:f4:bb:7d:c9:c8:d6:1a:38:68:8f:7b:e5:a6:dd:
        31:2c:cb:01:15:f6:5a:14:e2:6b:ef:f1:7a:4c:73:fa:
        b7:72:60:00:61:e7:50:84:a7:2f:29:30:80:d0:45:34
    Fingerprint (SHA-256):
        80:AE:94:08:6C:B7:12:83:E4:0F:9A:72:37:E3:7E:66:B4:D3:3E:C2:9E:1A:EE:66:26:9C:93:EB:7D:CF:CA:26
    Fingerprint (SHA1):
        99:2D:CF:E9:D9:39:51:D5:F0:3D:38:48:8A:42:90:29:C1:46:68:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11201: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11202: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121076 (0x1e67d474)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:63:57:41:8f:08:3a:4c:33:a7:31:fe:4e:9b:45:96:
                    2c:c0:7e:8e:1e:7d:e7:8b:4f:31:c2:5d:75:b4:f9:5e:
                    c8:d5:2c:ba:e6:a9:1c:82:f7:16:bc:8f:1c:a0:18:30:
                    7e:0c:24:cb:0c:e1:b0:54:ed:40:9e:0d:92:cd:35:79:
                    7c:ae:04:73:55:13:25:d0:f6:10:79:81:25:54:26:89:
                    91:bc:e9:43:ea:b9:89:5b:a5:4f:29:f3:c3:52:40:2c:
                    85:6e:45:c1:26:06:92:c9:d2:9f:00:2b:cf:14:c8:3e:
                    b8:81:4a:ef:b9:55:8c:ef:af:68:bf:85:dc:e2:38:3c:
                    68:68:18:3e:f2:c1:e4:bc:2b:53:0b:34:8f:4b:a1:3f:
                    09:a1:0e:b4:df:2b:c3:31:ef:b3:c6:f4:e9:78:b5:c6:
                    30:38:29:e4:cf:36:ee:ee:54:8f:c6:76:54:27:3a:bc:
                    65:15:31:ba:ff:cf:76:ab:9f:24:22:e8:98:81:50:b2:
                    d5:dc:4e:34:4f:2b:9a:27:7f:28:0b:ec:f7:64:8a:e6:
                    e0:56:ac:6a:ed:92:c7:03:bc:e7:65:0c:13:77:b1:93:
                    2b:fe:0e:36:e0:89:78:ba:d7:a3:64:ee:74:32:c1:a8:
                    fa:30:c1:dd:34:ed:a6:1c:29:9e:98:e5:d2:1b:28:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:42:2b:3e:1c:25:a4:2c:55:12:49:94:34:6f:03:bf:
        80:57:cd:59:6e:63:9e:fa:19:16:ce:76:7f:31:2e:7d:
        9b:f3:ec:ec:57:f6:58:fa:9f:43:2d:97:94:0f:d1:e3:
        c9:b7:4d:5c:a3:b0:86:3f:86:3c:45:b1:b8:f4:19:cc:
        60:8a:0e:b6:86:8e:cc:8d:a2:f9:9d:eb:96:2d:8d:03:
        1a:60:8e:39:a7:64:8c:bb:3d:ca:6e:28:6e:8e:fd:05:
        87:24:0c:2e:a9:f1:b8:06:ad:2a:e4:b8:2d:fb:b7:3c:
        b8:4d:ff:07:f7:bd:ef:6b:c4:4d:0c:90:12:3e:08:dd:
        6a:44:85:70:cd:3a:4f:84:3e:92:b1:1e:47:cf:ac:ee:
        a6:d2:02:01:de:31:a2:90:4f:e2:a8:80:f2:8d:e9:80:
        63:84:38:4b:bb:91:b2:a4:5f:ba:19:2a:69:6e:3b:dc:
        b7:65:fc:ed:7f:a4:a4:39:6a:6f:ea:4f:df:14:ca:ee:
        69:c1:90:72:c8:8b:bb:a5:24:b5:b5:6b:74:04:f6:fd:
        fc:ca:f4:bb:7d:c9:c8:d6:1a:38:68:8f:7b:e5:a6:dd:
        31:2c:cb:01:15:f6:5a:14:e2:6b:ef:f1:7a:4c:73:fa:
        b7:72:60:00:61:e7:50:84:a7:2f:29:30:80:d0:45:34
    Fingerprint (SHA-256):
        80:AE:94:08:6C:B7:12:83:E4:0F:9A:72:37:E3:7E:66:B4:D3:3E:C2:9E:1A:EE:66:26:9C:93:EB:7D:CF:CA:26
    Fingerprint (SHA1):
        99:2D:CF:E9:D9:39:51:D5:F0:3D:38:48:8A:42:90:29:C1:46:68:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11203: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11204: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11205: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11206: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121076 (0x1e67d474)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:63:57:41:8f:08:3a:4c:33:a7:31:fe:4e:9b:45:96:
                    2c:c0:7e:8e:1e:7d:e7:8b:4f:31:c2:5d:75:b4:f9:5e:
                    c8:d5:2c:ba:e6:a9:1c:82:f7:16:bc:8f:1c:a0:18:30:
                    7e:0c:24:cb:0c:e1:b0:54:ed:40:9e:0d:92:cd:35:79:
                    7c:ae:04:73:55:13:25:d0:f6:10:79:81:25:54:26:89:
                    91:bc:e9:43:ea:b9:89:5b:a5:4f:29:f3:c3:52:40:2c:
                    85:6e:45:c1:26:06:92:c9:d2:9f:00:2b:cf:14:c8:3e:
                    b8:81:4a:ef:b9:55:8c:ef:af:68:bf:85:dc:e2:38:3c:
                    68:68:18:3e:f2:c1:e4:bc:2b:53:0b:34:8f:4b:a1:3f:
                    09:a1:0e:b4:df:2b:c3:31:ef:b3:c6:f4:e9:78:b5:c6:
                    30:38:29:e4:cf:36:ee:ee:54:8f:c6:76:54:27:3a:bc:
                    65:15:31:ba:ff:cf:76:ab:9f:24:22:e8:98:81:50:b2:
                    d5:dc:4e:34:4f:2b:9a:27:7f:28:0b:ec:f7:64:8a:e6:
                    e0:56:ac:6a:ed:92:c7:03:bc:e7:65:0c:13:77:b1:93:
                    2b:fe:0e:36:e0:89:78:ba:d7:a3:64:ee:74:32:c1:a8:
                    fa:30:c1:dd:34:ed:a6:1c:29:9e:98:e5:d2:1b:28:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:42:2b:3e:1c:25:a4:2c:55:12:49:94:34:6f:03:bf:
        80:57:cd:59:6e:63:9e:fa:19:16:ce:76:7f:31:2e:7d:
        9b:f3:ec:ec:57:f6:58:fa:9f:43:2d:97:94:0f:d1:e3:
        c9:b7:4d:5c:a3:b0:86:3f:86:3c:45:b1:b8:f4:19:cc:
        60:8a:0e:b6:86:8e:cc:8d:a2:f9:9d:eb:96:2d:8d:03:
        1a:60:8e:39:a7:64:8c:bb:3d:ca:6e:28:6e:8e:fd:05:
        87:24:0c:2e:a9:f1:b8:06:ad:2a:e4:b8:2d:fb:b7:3c:
        b8:4d:ff:07:f7:bd:ef:6b:c4:4d:0c:90:12:3e:08:dd:
        6a:44:85:70:cd:3a:4f:84:3e:92:b1:1e:47:cf:ac:ee:
        a6:d2:02:01:de:31:a2:90:4f:e2:a8:80:f2:8d:e9:80:
        63:84:38:4b:bb:91:b2:a4:5f:ba:19:2a:69:6e:3b:dc:
        b7:65:fc:ed:7f:a4:a4:39:6a:6f:ea:4f:df:14:ca:ee:
        69:c1:90:72:c8:8b:bb:a5:24:b5:b5:6b:74:04:f6:fd:
        fc:ca:f4:bb:7d:c9:c8:d6:1a:38:68:8f:7b:e5:a6:dd:
        31:2c:cb:01:15:f6:5a:14:e2:6b:ef:f1:7a:4c:73:fa:
        b7:72:60:00:61:e7:50:84:a7:2f:29:30:80:d0:45:34
    Fingerprint (SHA-256):
        80:AE:94:08:6C:B7:12:83:E4:0F:9A:72:37:E3:7E:66:B4:D3:3E:C2:9E:1A:EE:66:26:9C:93:EB:7D:CF:CA:26
    Fingerprint (SHA1):
        99:2D:CF:E9:D9:39:51:D5:F0:3D:38:48:8A:42:90:29:C1:46:68:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11207: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121076 (0x1e67d474)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:63:57:41:8f:08:3a:4c:33:a7:31:fe:4e:9b:45:96:
                    2c:c0:7e:8e:1e:7d:e7:8b:4f:31:c2:5d:75:b4:f9:5e:
                    c8:d5:2c:ba:e6:a9:1c:82:f7:16:bc:8f:1c:a0:18:30:
                    7e:0c:24:cb:0c:e1:b0:54:ed:40:9e:0d:92:cd:35:79:
                    7c:ae:04:73:55:13:25:d0:f6:10:79:81:25:54:26:89:
                    91:bc:e9:43:ea:b9:89:5b:a5:4f:29:f3:c3:52:40:2c:
                    85:6e:45:c1:26:06:92:c9:d2:9f:00:2b:cf:14:c8:3e:
                    b8:81:4a:ef:b9:55:8c:ef:af:68:bf:85:dc:e2:38:3c:
                    68:68:18:3e:f2:c1:e4:bc:2b:53:0b:34:8f:4b:a1:3f:
                    09:a1:0e:b4:df:2b:c3:31:ef:b3:c6:f4:e9:78:b5:c6:
                    30:38:29:e4:cf:36:ee:ee:54:8f:c6:76:54:27:3a:bc:
                    65:15:31:ba:ff:cf:76:ab:9f:24:22:e8:98:81:50:b2:
                    d5:dc:4e:34:4f:2b:9a:27:7f:28:0b:ec:f7:64:8a:e6:
                    e0:56:ac:6a:ed:92:c7:03:bc:e7:65:0c:13:77:b1:93:
                    2b:fe:0e:36:e0:89:78:ba:d7:a3:64:ee:74:32:c1:a8:
                    fa:30:c1:dd:34:ed:a6:1c:29:9e:98:e5:d2:1b:28:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:42:2b:3e:1c:25:a4:2c:55:12:49:94:34:6f:03:bf:
        80:57:cd:59:6e:63:9e:fa:19:16:ce:76:7f:31:2e:7d:
        9b:f3:ec:ec:57:f6:58:fa:9f:43:2d:97:94:0f:d1:e3:
        c9:b7:4d:5c:a3:b0:86:3f:86:3c:45:b1:b8:f4:19:cc:
        60:8a:0e:b6:86:8e:cc:8d:a2:f9:9d:eb:96:2d:8d:03:
        1a:60:8e:39:a7:64:8c:bb:3d:ca:6e:28:6e:8e:fd:05:
        87:24:0c:2e:a9:f1:b8:06:ad:2a:e4:b8:2d:fb:b7:3c:
        b8:4d:ff:07:f7:bd:ef:6b:c4:4d:0c:90:12:3e:08:dd:
        6a:44:85:70:cd:3a:4f:84:3e:92:b1:1e:47:cf:ac:ee:
        a6:d2:02:01:de:31:a2:90:4f:e2:a8:80:f2:8d:e9:80:
        63:84:38:4b:bb:91:b2:a4:5f:ba:19:2a:69:6e:3b:dc:
        b7:65:fc:ed:7f:a4:a4:39:6a:6f:ea:4f:df:14:ca:ee:
        69:c1:90:72:c8:8b:bb:a5:24:b5:b5:6b:74:04:f6:fd:
        fc:ca:f4:bb:7d:c9:c8:d6:1a:38:68:8f:7b:e5:a6:dd:
        31:2c:cb:01:15:f6:5a:14:e2:6b:ef:f1:7a:4c:73:fa:
        b7:72:60:00:61:e7:50:84:a7:2f:29:30:80:d0:45:34
    Fingerprint (SHA-256):
        80:AE:94:08:6C:B7:12:83:E4:0F:9A:72:37:E3:7E:66:B4:D3:3E:C2:9E:1A:EE:66:26:9C:93:EB:7D:CF:CA:26
    Fingerprint (SHA1):
        99:2D:CF:E9:D9:39:51:D5:F0:3D:38:48:8A:42:90:29:C1:46:68:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11208: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121076 (0x1e67d474)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:63:57:41:8f:08:3a:4c:33:a7:31:fe:4e:9b:45:96:
                    2c:c0:7e:8e:1e:7d:e7:8b:4f:31:c2:5d:75:b4:f9:5e:
                    c8:d5:2c:ba:e6:a9:1c:82:f7:16:bc:8f:1c:a0:18:30:
                    7e:0c:24:cb:0c:e1:b0:54:ed:40:9e:0d:92:cd:35:79:
                    7c:ae:04:73:55:13:25:d0:f6:10:79:81:25:54:26:89:
                    91:bc:e9:43:ea:b9:89:5b:a5:4f:29:f3:c3:52:40:2c:
                    85:6e:45:c1:26:06:92:c9:d2:9f:00:2b:cf:14:c8:3e:
                    b8:81:4a:ef:b9:55:8c:ef:af:68:bf:85:dc:e2:38:3c:
                    68:68:18:3e:f2:c1:e4:bc:2b:53:0b:34:8f:4b:a1:3f:
                    09:a1:0e:b4:df:2b:c3:31:ef:b3:c6:f4:e9:78:b5:c6:
                    30:38:29:e4:cf:36:ee:ee:54:8f:c6:76:54:27:3a:bc:
                    65:15:31:ba:ff:cf:76:ab:9f:24:22:e8:98:81:50:b2:
                    d5:dc:4e:34:4f:2b:9a:27:7f:28:0b:ec:f7:64:8a:e6:
                    e0:56:ac:6a:ed:92:c7:03:bc:e7:65:0c:13:77:b1:93:
                    2b:fe:0e:36:e0:89:78:ba:d7:a3:64:ee:74:32:c1:a8:
                    fa:30:c1:dd:34:ed:a6:1c:29:9e:98:e5:d2:1b:28:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:42:2b:3e:1c:25:a4:2c:55:12:49:94:34:6f:03:bf:
        80:57:cd:59:6e:63:9e:fa:19:16:ce:76:7f:31:2e:7d:
        9b:f3:ec:ec:57:f6:58:fa:9f:43:2d:97:94:0f:d1:e3:
        c9:b7:4d:5c:a3:b0:86:3f:86:3c:45:b1:b8:f4:19:cc:
        60:8a:0e:b6:86:8e:cc:8d:a2:f9:9d:eb:96:2d:8d:03:
        1a:60:8e:39:a7:64:8c:bb:3d:ca:6e:28:6e:8e:fd:05:
        87:24:0c:2e:a9:f1:b8:06:ad:2a:e4:b8:2d:fb:b7:3c:
        b8:4d:ff:07:f7:bd:ef:6b:c4:4d:0c:90:12:3e:08:dd:
        6a:44:85:70:cd:3a:4f:84:3e:92:b1:1e:47:cf:ac:ee:
        a6:d2:02:01:de:31:a2:90:4f:e2:a8:80:f2:8d:e9:80:
        63:84:38:4b:bb:91:b2:a4:5f:ba:19:2a:69:6e:3b:dc:
        b7:65:fc:ed:7f:a4:a4:39:6a:6f:ea:4f:df:14:ca:ee:
        69:c1:90:72:c8:8b:bb:a5:24:b5:b5:6b:74:04:f6:fd:
        fc:ca:f4:bb:7d:c9:c8:d6:1a:38:68:8f:7b:e5:a6:dd:
        31:2c:cb:01:15:f6:5a:14:e2:6b:ef:f1:7a:4c:73:fa:
        b7:72:60:00:61:e7:50:84:a7:2f:29:30:80:d0:45:34
    Fingerprint (SHA-256):
        80:AE:94:08:6C:B7:12:83:E4:0F:9A:72:37:E3:7E:66:B4:D3:3E:C2:9E:1A:EE:66:26:9C:93:EB:7D:CF:CA:26
    Fingerprint (SHA1):
        99:2D:CF:E9:D9:39:51:D5:F0:3D:38:48:8A:42:90:29:C1:46:68:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11209: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121076 (0x1e67d474)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:63:57:41:8f:08:3a:4c:33:a7:31:fe:4e:9b:45:96:
                    2c:c0:7e:8e:1e:7d:e7:8b:4f:31:c2:5d:75:b4:f9:5e:
                    c8:d5:2c:ba:e6:a9:1c:82:f7:16:bc:8f:1c:a0:18:30:
                    7e:0c:24:cb:0c:e1:b0:54:ed:40:9e:0d:92:cd:35:79:
                    7c:ae:04:73:55:13:25:d0:f6:10:79:81:25:54:26:89:
                    91:bc:e9:43:ea:b9:89:5b:a5:4f:29:f3:c3:52:40:2c:
                    85:6e:45:c1:26:06:92:c9:d2:9f:00:2b:cf:14:c8:3e:
                    b8:81:4a:ef:b9:55:8c:ef:af:68:bf:85:dc:e2:38:3c:
                    68:68:18:3e:f2:c1:e4:bc:2b:53:0b:34:8f:4b:a1:3f:
                    09:a1:0e:b4:df:2b:c3:31:ef:b3:c6:f4:e9:78:b5:c6:
                    30:38:29:e4:cf:36:ee:ee:54:8f:c6:76:54:27:3a:bc:
                    65:15:31:ba:ff:cf:76:ab:9f:24:22:e8:98:81:50:b2:
                    d5:dc:4e:34:4f:2b:9a:27:7f:28:0b:ec:f7:64:8a:e6:
                    e0:56:ac:6a:ed:92:c7:03:bc:e7:65:0c:13:77:b1:93:
                    2b:fe:0e:36:e0:89:78:ba:d7:a3:64:ee:74:32:c1:a8:
                    fa:30:c1:dd:34:ed:a6:1c:29:9e:98:e5:d2:1b:28:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:42:2b:3e:1c:25:a4:2c:55:12:49:94:34:6f:03:bf:
        80:57:cd:59:6e:63:9e:fa:19:16:ce:76:7f:31:2e:7d:
        9b:f3:ec:ec:57:f6:58:fa:9f:43:2d:97:94:0f:d1:e3:
        c9:b7:4d:5c:a3:b0:86:3f:86:3c:45:b1:b8:f4:19:cc:
        60:8a:0e:b6:86:8e:cc:8d:a2:f9:9d:eb:96:2d:8d:03:
        1a:60:8e:39:a7:64:8c:bb:3d:ca:6e:28:6e:8e:fd:05:
        87:24:0c:2e:a9:f1:b8:06:ad:2a:e4:b8:2d:fb:b7:3c:
        b8:4d:ff:07:f7:bd:ef:6b:c4:4d:0c:90:12:3e:08:dd:
        6a:44:85:70:cd:3a:4f:84:3e:92:b1:1e:47:cf:ac:ee:
        a6:d2:02:01:de:31:a2:90:4f:e2:a8:80:f2:8d:e9:80:
        63:84:38:4b:bb:91:b2:a4:5f:ba:19:2a:69:6e:3b:dc:
        b7:65:fc:ed:7f:a4:a4:39:6a:6f:ea:4f:df:14:ca:ee:
        69:c1:90:72:c8:8b:bb:a5:24:b5:b5:6b:74:04:f6:fd:
        fc:ca:f4:bb:7d:c9:c8:d6:1a:38:68:8f:7b:e5:a6:dd:
        31:2c:cb:01:15:f6:5a:14:e2:6b:ef:f1:7a:4c:73:fa:
        b7:72:60:00:61:e7:50:84:a7:2f:29:30:80:d0:45:34
    Fingerprint (SHA-256):
        80:AE:94:08:6C:B7:12:83:E4:0F:9A:72:37:E3:7E:66:B4:D3:3E:C2:9E:1A:EE:66:26:9C:93:EB:7D:CF:CA:26
    Fingerprint (SHA1):
        99:2D:CF:E9:D9:39:51:D5:F0:3D:38:48:8A:42:90:29:C1:46:68:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11210: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121076 (0x1e67d474)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:63:57:41:8f:08:3a:4c:33:a7:31:fe:4e:9b:45:96:
                    2c:c0:7e:8e:1e:7d:e7:8b:4f:31:c2:5d:75:b4:f9:5e:
                    c8:d5:2c:ba:e6:a9:1c:82:f7:16:bc:8f:1c:a0:18:30:
                    7e:0c:24:cb:0c:e1:b0:54:ed:40:9e:0d:92:cd:35:79:
                    7c:ae:04:73:55:13:25:d0:f6:10:79:81:25:54:26:89:
                    91:bc:e9:43:ea:b9:89:5b:a5:4f:29:f3:c3:52:40:2c:
                    85:6e:45:c1:26:06:92:c9:d2:9f:00:2b:cf:14:c8:3e:
                    b8:81:4a:ef:b9:55:8c:ef:af:68:bf:85:dc:e2:38:3c:
                    68:68:18:3e:f2:c1:e4:bc:2b:53:0b:34:8f:4b:a1:3f:
                    09:a1:0e:b4:df:2b:c3:31:ef:b3:c6:f4:e9:78:b5:c6:
                    30:38:29:e4:cf:36:ee:ee:54:8f:c6:76:54:27:3a:bc:
                    65:15:31:ba:ff:cf:76:ab:9f:24:22:e8:98:81:50:b2:
                    d5:dc:4e:34:4f:2b:9a:27:7f:28:0b:ec:f7:64:8a:e6:
                    e0:56:ac:6a:ed:92:c7:03:bc:e7:65:0c:13:77:b1:93:
                    2b:fe:0e:36:e0:89:78:ba:d7:a3:64:ee:74:32:c1:a8:
                    fa:30:c1:dd:34:ed:a6:1c:29:9e:98:e5:d2:1b:28:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:42:2b:3e:1c:25:a4:2c:55:12:49:94:34:6f:03:bf:
        80:57:cd:59:6e:63:9e:fa:19:16:ce:76:7f:31:2e:7d:
        9b:f3:ec:ec:57:f6:58:fa:9f:43:2d:97:94:0f:d1:e3:
        c9:b7:4d:5c:a3:b0:86:3f:86:3c:45:b1:b8:f4:19:cc:
        60:8a:0e:b6:86:8e:cc:8d:a2:f9:9d:eb:96:2d:8d:03:
        1a:60:8e:39:a7:64:8c:bb:3d:ca:6e:28:6e:8e:fd:05:
        87:24:0c:2e:a9:f1:b8:06:ad:2a:e4:b8:2d:fb:b7:3c:
        b8:4d:ff:07:f7:bd:ef:6b:c4:4d:0c:90:12:3e:08:dd:
        6a:44:85:70:cd:3a:4f:84:3e:92:b1:1e:47:cf:ac:ee:
        a6:d2:02:01:de:31:a2:90:4f:e2:a8:80:f2:8d:e9:80:
        63:84:38:4b:bb:91:b2:a4:5f:ba:19:2a:69:6e:3b:dc:
        b7:65:fc:ed:7f:a4:a4:39:6a:6f:ea:4f:df:14:ca:ee:
        69:c1:90:72:c8:8b:bb:a5:24:b5:b5:6b:74:04:f6:fd:
        fc:ca:f4:bb:7d:c9:c8:d6:1a:38:68:8f:7b:e5:a6:dd:
        31:2c:cb:01:15:f6:5a:14:e2:6b:ef:f1:7a:4c:73:fa:
        b7:72:60:00:61:e7:50:84:a7:2f:29:30:80:d0:45:34
    Fingerprint (SHA-256):
        80:AE:94:08:6C:B7:12:83:E4:0F:9A:72:37:E3:7E:66:B4:D3:3E:C2:9E:1A:EE:66:26:9C:93:EB:7D:CF:CA:26
    Fingerprint (SHA1):
        99:2D:CF:E9:D9:39:51:D5:F0:3D:38:48:8A:42:90:29:C1:46:68:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11211: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121076 (0x1e67d474)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:63:57:41:8f:08:3a:4c:33:a7:31:fe:4e:9b:45:96:
                    2c:c0:7e:8e:1e:7d:e7:8b:4f:31:c2:5d:75:b4:f9:5e:
                    c8:d5:2c:ba:e6:a9:1c:82:f7:16:bc:8f:1c:a0:18:30:
                    7e:0c:24:cb:0c:e1:b0:54:ed:40:9e:0d:92:cd:35:79:
                    7c:ae:04:73:55:13:25:d0:f6:10:79:81:25:54:26:89:
                    91:bc:e9:43:ea:b9:89:5b:a5:4f:29:f3:c3:52:40:2c:
                    85:6e:45:c1:26:06:92:c9:d2:9f:00:2b:cf:14:c8:3e:
                    b8:81:4a:ef:b9:55:8c:ef:af:68:bf:85:dc:e2:38:3c:
                    68:68:18:3e:f2:c1:e4:bc:2b:53:0b:34:8f:4b:a1:3f:
                    09:a1:0e:b4:df:2b:c3:31:ef:b3:c6:f4:e9:78:b5:c6:
                    30:38:29:e4:cf:36:ee:ee:54:8f:c6:76:54:27:3a:bc:
                    65:15:31:ba:ff:cf:76:ab:9f:24:22:e8:98:81:50:b2:
                    d5:dc:4e:34:4f:2b:9a:27:7f:28:0b:ec:f7:64:8a:e6:
                    e0:56:ac:6a:ed:92:c7:03:bc:e7:65:0c:13:77:b1:93:
                    2b:fe:0e:36:e0:89:78:ba:d7:a3:64:ee:74:32:c1:a8:
                    fa:30:c1:dd:34:ed:a6:1c:29:9e:98:e5:d2:1b:28:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:42:2b:3e:1c:25:a4:2c:55:12:49:94:34:6f:03:bf:
        80:57:cd:59:6e:63:9e:fa:19:16:ce:76:7f:31:2e:7d:
        9b:f3:ec:ec:57:f6:58:fa:9f:43:2d:97:94:0f:d1:e3:
        c9:b7:4d:5c:a3:b0:86:3f:86:3c:45:b1:b8:f4:19:cc:
        60:8a:0e:b6:86:8e:cc:8d:a2:f9:9d:eb:96:2d:8d:03:
        1a:60:8e:39:a7:64:8c:bb:3d:ca:6e:28:6e:8e:fd:05:
        87:24:0c:2e:a9:f1:b8:06:ad:2a:e4:b8:2d:fb:b7:3c:
        b8:4d:ff:07:f7:bd:ef:6b:c4:4d:0c:90:12:3e:08:dd:
        6a:44:85:70:cd:3a:4f:84:3e:92:b1:1e:47:cf:ac:ee:
        a6:d2:02:01:de:31:a2:90:4f:e2:a8:80:f2:8d:e9:80:
        63:84:38:4b:bb:91:b2:a4:5f:ba:19:2a:69:6e:3b:dc:
        b7:65:fc:ed:7f:a4:a4:39:6a:6f:ea:4f:df:14:ca:ee:
        69:c1:90:72:c8:8b:bb:a5:24:b5:b5:6b:74:04:f6:fd:
        fc:ca:f4:bb:7d:c9:c8:d6:1a:38:68:8f:7b:e5:a6:dd:
        31:2c:cb:01:15:f6:5a:14:e2:6b:ef:f1:7a:4c:73:fa:
        b7:72:60:00:61:e7:50:84:a7:2f:29:30:80:d0:45:34
    Fingerprint (SHA-256):
        80:AE:94:08:6C:B7:12:83:E4:0F:9A:72:37:E3:7E:66:B4:D3:3E:C2:9E:1A:EE:66:26:9C:93:EB:7D:CF:CA:26
    Fingerprint (SHA1):
        99:2D:CF:E9:D9:39:51:D5:F0:3D:38:48:8A:42:90:29:C1:46:68:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11212: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11213: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11214: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121106 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11215: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11216: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #11217: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11218: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 510121107   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11219: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11220: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #11221: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11222: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 510121108   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11223: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11224: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #11225: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11226: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 510121109   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11227: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11228: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #11229: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11230: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 510121110   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11231: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11232: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #11233: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11234: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 510121111   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11235: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11236: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #11237: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11238: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 510121112   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11239: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11240: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11241: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121106 (0x1e67d492)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:47 2017
            Not After : Tue May 10 12:12:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:2d:74:f1:3f:93:ec:21:fd:a7:89:c5:78:81:fe:57:
                    fd:56:0c:10:18:59:8a:b7:88:02:b9:b0:51:66:29:11:
                    36:c1:68:64:f1:b6:97:a5:11:bf:4a:02:2f:f8:51:3c:
                    8f:38:1b:69:96:ca:1c:8a:d9:a3:7d:f4:e7:41:1f:15:
                    4a:f3:b5:c3:78:63:55:13:9f:33:8f:a0:37:6c:e4:42:
                    c6:28:02:b8:39:0e:7c:82:89:ee:53:59:7c:28:0e:2e:
                    d3:e0:cf:77:b3:44:c0:8a:8c:66:6b:6a:81:83:82:50:
                    3e:15:0c:47:03:91:a1:99:0f:f9:c3:2a:49:a2:39:da:
                    a8:4a:7a:36:55:53:07:87:45:3a:c2:74:e1:05:34:07:
                    7f:1a:a3:37:10:55:3c:7c:66:ff:6f:0b:bc:95:8e:dd:
                    69:51:97:b5:2f:5a:04:94:a4:47:c3:e9:46:64:e2:8e:
                    94:1a:89:2a:9e:2d:69:64:38:7b:ea:73:e5:41:e0:01:
                    07:36:f3:73:44:23:c8:7d:41:54:04:d6:24:73:73:38:
                    4c:fc:a8:15:0f:4b:b6:9c:c7:d7:09:3c:d6:87:6c:89:
                    56:fc:48:fe:d1:a7:72:9e:fc:72:c2:79:24:54:b8:8a:
                    10:c3:ea:d5:60:84:05:44:13:dd:8f:b3:53:16:1b:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bc:7e:92:49:9b:62:07:f2:7c:0d:8a:5c:cd:f3:05:90:
        7d:76:d8:15:1d:ec:cf:0a:1d:a2:62:6c:26:bc:5d:c4:
        a6:03:e1:18:f3:95:27:d2:b9:f2:27:03:bf:ad:01:8d:
        18:c8:e5:37:d1:1c:1f:10:1f:29:d4:1f:d1:2f:72:5d:
        c0:2e:84:74:64:5a:9d:22:71:f4:da:eb:17:72:5e:8e:
        f1:f9:c7:7d:13:0e:47:45:d8:c6:7e:8d:51:75:4d:d2:
        c1:9f:8b:7c:8e:11:47:d6:47:91:75:40:ed:7e:c1:d2:
        49:c8:d2:c0:31:e6:2b:0f:36:74:65:9b:97:9a:30:28:
        44:35:9d:6b:bd:3c:a5:b8:ca:dd:ba:df:97:00:de:0b:
        13:49:0a:9c:6b:b3:37:26:3f:c8:c2:3e:9a:af:af:56:
        7b:3a:4e:4a:de:0a:7b:2a:bb:0e:84:e6:54:52:9d:f2:
        97:bd:ee:22:40:fb:87:a0:bf:04:b8:d9:bf:9c:c6:58:
        e7:62:31:2a:29:13:8b:c7:5e:de:04:26:34:8b:ce:b8:
        d0:5a:46:b3:ab:4b:ab:ca:ed:22:b4:aa:ed:ac:23:ae:
        c5:15:48:47:5c:77:3e:84:57:17:b1:ef:9c:f1:03:fd:
        cf:77:0d:1a:44:77:4b:07:ef:da:03:7e:9e:ce:29:af
    Fingerprint (SHA-256):
        3F:BA:0D:26:52:91:A8:32:17:90:C1:BA:49:3E:1A:EA:62:0B:D0:AE:13:27:26:27:60:4D:96:BD:A3:F2:98:59
    Fingerprint (SHA1):
        15:07:CE:6B:30:EC:54:9B:23:3A:CD:29:00:66:8C:D7:BC:ED:11:E0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11242: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11243: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11244: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11245: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121106 (0x1e67d492)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:47 2017
            Not After : Tue May 10 12:12:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:2d:74:f1:3f:93:ec:21:fd:a7:89:c5:78:81:fe:57:
                    fd:56:0c:10:18:59:8a:b7:88:02:b9:b0:51:66:29:11:
                    36:c1:68:64:f1:b6:97:a5:11:bf:4a:02:2f:f8:51:3c:
                    8f:38:1b:69:96:ca:1c:8a:d9:a3:7d:f4:e7:41:1f:15:
                    4a:f3:b5:c3:78:63:55:13:9f:33:8f:a0:37:6c:e4:42:
                    c6:28:02:b8:39:0e:7c:82:89:ee:53:59:7c:28:0e:2e:
                    d3:e0:cf:77:b3:44:c0:8a:8c:66:6b:6a:81:83:82:50:
                    3e:15:0c:47:03:91:a1:99:0f:f9:c3:2a:49:a2:39:da:
                    a8:4a:7a:36:55:53:07:87:45:3a:c2:74:e1:05:34:07:
                    7f:1a:a3:37:10:55:3c:7c:66:ff:6f:0b:bc:95:8e:dd:
                    69:51:97:b5:2f:5a:04:94:a4:47:c3:e9:46:64:e2:8e:
                    94:1a:89:2a:9e:2d:69:64:38:7b:ea:73:e5:41:e0:01:
                    07:36:f3:73:44:23:c8:7d:41:54:04:d6:24:73:73:38:
                    4c:fc:a8:15:0f:4b:b6:9c:c7:d7:09:3c:d6:87:6c:89:
                    56:fc:48:fe:d1:a7:72:9e:fc:72:c2:79:24:54:b8:8a:
                    10:c3:ea:d5:60:84:05:44:13:dd:8f:b3:53:16:1b:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bc:7e:92:49:9b:62:07:f2:7c:0d:8a:5c:cd:f3:05:90:
        7d:76:d8:15:1d:ec:cf:0a:1d:a2:62:6c:26:bc:5d:c4:
        a6:03:e1:18:f3:95:27:d2:b9:f2:27:03:bf:ad:01:8d:
        18:c8:e5:37:d1:1c:1f:10:1f:29:d4:1f:d1:2f:72:5d:
        c0:2e:84:74:64:5a:9d:22:71:f4:da:eb:17:72:5e:8e:
        f1:f9:c7:7d:13:0e:47:45:d8:c6:7e:8d:51:75:4d:d2:
        c1:9f:8b:7c:8e:11:47:d6:47:91:75:40:ed:7e:c1:d2:
        49:c8:d2:c0:31:e6:2b:0f:36:74:65:9b:97:9a:30:28:
        44:35:9d:6b:bd:3c:a5:b8:ca:dd:ba:df:97:00:de:0b:
        13:49:0a:9c:6b:b3:37:26:3f:c8:c2:3e:9a:af:af:56:
        7b:3a:4e:4a:de:0a:7b:2a:bb:0e:84:e6:54:52:9d:f2:
        97:bd:ee:22:40:fb:87:a0:bf:04:b8:d9:bf:9c:c6:58:
        e7:62:31:2a:29:13:8b:c7:5e:de:04:26:34:8b:ce:b8:
        d0:5a:46:b3:ab:4b:ab:ca:ed:22:b4:aa:ed:ac:23:ae:
        c5:15:48:47:5c:77:3e:84:57:17:b1:ef:9c:f1:03:fd:
        cf:77:0d:1a:44:77:4b:07:ef:da:03:7e:9e:ce:29:af
    Fingerprint (SHA-256):
        3F:BA:0D:26:52:91:A8:32:17:90:C1:BA:49:3E:1A:EA:62:0B:D0:AE:13:27:26:27:60:4D:96:BD:A3:F2:98:59
    Fingerprint (SHA1):
        15:07:CE:6B:30:EC:54:9B:23:3A:CD:29:00:66:8C:D7:BC:ED:11:E0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11246: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11247: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11248: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11249: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121113 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11250: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11251: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11252: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11253: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121114   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11254: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11255: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11256: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11257: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121115   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11258: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11259: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11260: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11261: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510121116   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11262: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11263: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11264: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11265: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11266: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11267: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121113 (0x1e67d499)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:58 2017
            Not After : Tue May 10 12:12:58 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:69:c3:13:32:6b:cb:11:c9:4f:a4:ca:a6:53:d6:cc:
                    ff:bb:d3:1e:cd:b7:42:06:f1:89:f8:a3:e7:83:e9:d0:
                    8b:b6:59:40:9a:22:3b:2a:73:dc:4e:1c:71:9b:12:f9:
                    2e:4a:7a:31:e0:9a:00:4b:df:aa:7a:76:40:97:2d:cf:
                    6e:fb:7e:43:07:1a:ab:b0:e0:06:97:0e:2d:a3:80:d3:
                    71:8a:04:53:0e:cd:72:b9:0d:44:d2:fd:a8:e1:47:b8:
                    fa:f6:f7:09:53:7f:e5:1a:a5:f8:80:a4:c7:ef:f3:40:
                    72:4e:ff:d8:ef:47:14:43:fe:55:9a:b6:46:a9:05:29:
                    6d:ac:13:4d:7c:33:c2:62:91:7d:ad:ce:b2:98:43:ba:
                    e7:e6:a5:96:76:01:63:9a:dc:7e:ec:97:68:1f:9b:66:
                    51:e1:1d:19:dd:f5:79:d0:83:c5:00:49:28:9e:f1:18:
                    9b:54:29:b3:2e:89:e1:e1:64:d0:eb:21:43:70:55:5e:
                    ed:cc:57:c8:27:17:44:9f:67:aa:33:39:82:89:99:47:
                    19:ad:09:55:bc:0c:73:e4:c9:11:c6:08:3d:13:f6:06:
                    6f:e7:aa:25:70:56:f0:ca:0c:bb:62:88:37:28:38:7a:
                    af:fb:9e:ae:37:07:a7:10:cf:8b:41:dc:8f:4f:2c:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        af:c8:6d:2d:eb:32:c9:0f:e2:dd:79:e2:6e:72:e3:b7:
        1d:57:98:e4:bf:25:0c:0d:1b:35:b7:63:05:a2:e4:a3:
        e7:db:ed:4d:7f:ba:fd:82:ae:7c:d7:51:73:e5:89:87:
        a1:6d:09:f1:7a:4f:b0:49:58:80:a2:68:75:63:57:a2:
        a4:9a:2f:50:1f:8d:dd:5e:01:c3:d8:30:fb:9d:ad:82:
        1e:4d:1b:be:1c:fa:01:31:af:d8:e9:ed:76:1e:cc:ab:
        e3:51:c4:3f:76:53:b0:04:e5:15:3c:0a:35:c9:63:fe:
        08:af:a6:8c:0e:7e:ee:76:38:10:93:87:5a:c1:ec:4d:
        54:43:5c:23:01:1e:7f:13:5f:3a:51:53:2a:fe:df:8c:
        9a:a1:da:6c:2d:ae:a9:56:11:6e:f1:4a:58:d1:70:fb:
        3e:b6:55:43:b8:64:41:79:90:8e:ec:43:ea:36:c0:83:
        c6:66:f8:35:73:ef:83:ef:8e:96:b1:79:7b:9a:0c:49:
        c4:9c:04:f6:db:f3:d3:07:d2:40:46:5d:de:bb:ea:4e:
        50:d5:d6:64:61:96:0d:a5:ea:54:f8:60:d7:64:88:1a:
        8f:91:41:f4:59:e7:98:ce:fc:b8:ac:c0:ea:ec:23:15:
        20:4b:27:be:b4:56:9b:0b:64:93:d7:98:9f:6d:83:5a
    Fingerprint (SHA-256):
        59:86:F8:BC:A3:11:E7:27:52:91:0C:28:F7:35:A8:2C:B1:1A:A3:95:88:F0:68:44:F8:83:71:70:8F:ED:59:CB
    Fingerprint (SHA1):
        16:7C:4F:72:9A:47:5E:93:DA:38:63:AA:0B:19:CA:00:AE:C0:75:D3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11268: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11269: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11270: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121114 (0x1e67d49a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:59 2017
            Not After : Tue May 10 12:12:59 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:09:81:60:b5:db:bb:c7:4b:53:03:69:82:a4:12:64:
                    b9:cb:a9:55:7e:78:c1:75:d1:3d:69:52:5f:a7:07:2a:
                    54:38:8b:ca:97:eb:52:23:2b:3a:5c:f1:14:43:4f:e3:
                    3f:07:9a:a1:4f:d9:cf:a2:09:02:b5:a0:f8:57:50:23:
                    d9:f2:0f:e2:af:2f:a4:fb:cb:e0:2a:e3:39:ef:44:da:
                    5e:60:49:8b:6b:20:5a:f3:bd:16:b7:c9:46:3d:a2:a4:
                    49:14:d3:aa:b0:cd:ad:7f:0f:1d:81:d8:ef:b1:13:78:
                    7a:be:f6:66:2a:d6:e9:1a:3a:75:6a:cc:3f:11:88:23:
                    29:00:0e:d7:4b:5b:23:cc:8c:05:8d:d5:b6:bf:5e:5f:
                    5c:c7:a4:7b:81:73:c9:77:8a:44:ef:06:d8:a7:9f:a3:
                    62:d0:d8:a6:f2:4c:75:77:26:f6:30:3d:3e:fe:76:13:
                    e3:d1:6a:e2:6a:8e:e4:89:0f:16:1b:3b:4f:70:75:4a:
                    7a:df:01:c4:04:26:aa:b7:3b:7f:cf:ea:3b:86:95:ef:
                    a7:98:40:dc:40:6d:f5:04:a7:27:59:1b:bd:9c:be:e1:
                    94:e7:ea:d5:27:20:f5:8e:05:4d:6c:21:a4:62:51:26:
                    25:66:95:df:62:4b:30:de:d7:f1:b4:89:22:27:32:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:ee:09:74:70:3e:ca:a7:a7:d2:e4:8a:8f:7b:93:f3:
        15:83:ae:8e:ef:8a:e3:6c:0d:33:46:76:81:0c:ff:69:
        6d:d9:0a:2d:a3:b5:76:d1:ea:64:92:9f:98:de:81:d1:
        ea:7e:92:25:56:2a:21:c0:ef:54:b3:5a:64:53:33:b3:
        d0:80:6d:6c:4e:81:3a:31:0a:b9:76:87:22:3e:a8:e0:
        33:e4:30:10:70:52:e0:1b:a3:3b:b5:04:7a:35:87:4b:
        cf:ce:8e:64:5a:ab:f8:cd:b8:07:d7:18:84:f3:c9:56:
        5a:39:eb:24:ba:d9:41:45:02:70:5b:6a:dc:c6:7b:5e:
        d2:d0:81:9a:69:05:1b:1a:bb:7c:29:1c:98:7f:2a:5a:
        45:00:f6:18:f4:ea:ce:dc:7c:de:90:f2:03:38:1f:df:
        0a:30:94:17:ba:0c:a2:9a:8d:66:9d:e1:79:7a:d9:ce:
        88:e2:99:3f:53:fb:0f:fa:14:33:0f:ca:08:04:ec:6d:
        55:d9:05:a0:55:7c:32:cf:8d:1e:4f:7b:4c:3d:0a:7b:
        cb:cd:e8:d2:f8:b2:83:da:01:bd:87:af:cd:86:ff:23:
        e6:e9:db:94:af:2e:fb:00:63:b3:b5:9b:56:26:08:03:
        a9:d3:e4:c9:a1:02:5a:fe:61:f9:77:5f:31:b5:b8:e1
    Fingerprint (SHA-256):
        D5:40:38:C3:C8:AF:5E:84:8D:C5:36:D2:74:68:38:FC:9D:0B:C7:67:B5:FC:47:09:2F:5B:D5:A9:CE:33:C7:40
    Fingerprint (SHA1):
        85:5E:71:22:2F:B1:A6:E8:D3:44:E0:AA:15:B8:2B:1E:F8:A8:E3:03
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11271: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11272: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121115 (0x1e67d49b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:13:00 2017
            Not After : Tue May 10 12:13:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:49:24:63:2b:36:3b:a0:61:18:68:0a:32:7b:a5:4e:
                    38:05:2f:bc:eb:6b:4e:e8:dc:f8:cd:47:a9:51:04:ac:
                    e1:9f:29:4a:03:f8:72:88:55:d0:1f:86:bb:ea:ae:8c:
                    58:5f:3d:cc:61:06:a2:e9:04:43:0f:b1:54:79:b6:ce:
                    e6:57:a8:05:24:d9:43:cf:74:fa:b8:df:27:63:ca:bb:
                    f7:54:ba:45:0b:72:23:d7:5c:ab:7d:88:67:19:1a:ec:
                    bd:e1:d3:4c:2b:bb:49:11:69:1a:31:c3:95:a8:c5:a0:
                    e8:2a:af:f5:44:d7:04:1e:63:93:7c:79:14:1c:53:0d:
                    08:8c:33:5b:e1:e2:54:8d:55:38:92:32:e5:b4:5b:53:
                    d0:34:6e:28:15:c1:52:81:30:45:72:ee:2d:d0:b7:fc:
                    14:c3:c8:f3:82:ef:3f:ff:0e:8c:9e:2a:a9:cd:5b:ea:
                    01:78:10:37:77:8b:da:71:51:57:f0:79:76:91:f6:28:
                    63:b7:c1:c1:7f:fa:17:ff:88:b4:29:61:a4:e3:d1:b6:
                    ae:18:b0:e3:c0:1c:ef:5a:e3:d6:bd:12:68:b4:62:97:
                    f6:ca:bf:77:c6:9a:04:ce:15:10:c8:e4:aa:4a:46:3c:
                    f1:33:c9:dd:55:59:d3:50:52:8d:30:99:5a:e5:c9:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:0a:66:87:dc:3b:14:88:84:db:e1:ef:b1:2e:4e:15:
        25:8e:07:7f:3c:56:2f:4c:e3:3c:3e:a6:c3:32:10:26:
        b9:c0:ef:51:29:92:14:0f:8c:6d:17:4d:51:35:3f:98:
        ae:1c:5f:d7:a9:0e:6d:25:37:03:2b:2d:38:79:e9:7a:
        19:1a:01:10:03:72:be:a8:55:4c:10:94:a0:08:eb:96:
        00:94:b6:96:d6:0e:7e:d0:4f:87:a7:f3:2e:3c:4d:84:
        08:3e:03:20:8a:2e:34:8a:ca:0e:73:61:ca:b1:67:6c:
        7a:44:f9:80:4f:d6:e6:50:11:09:3c:cd:f0:00:0f:be:
        83:12:a3:b0:b8:5b:64:b7:95:5f:f8:81:b0:2f:4a:a9:
        24:c8:9b:e4:ad:ef:8a:74:e2:8d:c4:89:36:5a:48:dc:
        37:f4:ff:19:6a:50:17:c1:70:95:78:83:12:9e:bb:60:
        d8:40:28:88:b5:05:d7:e9:e0:3c:c3:0c:fe:6b:b2:6a:
        52:ba:2a:d4:64:2c:b9:9e:b9:c3:a4:08:19:78:4a:59:
        c7:9c:dd:57:a5:5f:6d:98:63:7e:10:85:85:bd:f6:3a:
        10:8b:90:9c:a4:43:3d:2d:29:9e:6b:3e:d6:55:ac:20:
        48:52:10:c5:c9:0e:cd:9d:7e:aa:bb:7b:f7:e0:9e:97
    Fingerprint (SHA-256):
        D9:CE:DF:72:68:CC:E0:1E:79:39:A1:15:16:7A:37:07:CF:CA:13:80:66:8F:2E:EF:E0:F4:19:D3:1B:11:2C:C1
    Fingerprint (SHA1):
        1D:50:6E:1C:2E:48:4C:69:12:23:D4:D7:0D:1F:7B:30:B3:CC:84:23
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11273: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11274: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121117 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11275: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11276: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11277: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11278: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121118   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11279: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11280: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11281: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11282: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121119   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11283: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11284: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11285: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11286: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 510121120   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11287: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11288: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11289: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11290: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 510121121   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11291: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11292: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11293: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11294: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11295: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11296: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #11297: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121117 (0x1e67d49d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:04 2017
            Not After : Tue May 10 12:13:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:7f:aa:b2:53:86:d7:5a:8f:77:63:6f:50:3f:f2:7f:
                    ac:43:b7:e2:8b:56:68:03:d5:ad:37:d0:37:fa:ee:77:
                    2a:1b:9e:7c:f6:96:f1:d3:44:5d:57:c0:d1:ab:00:27:
                    00:41:0f:ec:78:cd:cd:9e:5f:86:e6:fa:dd:a5:0d:95:
                    de:23:69:aa:8d:50:fe:41:8c:8f:41:ef:92:3a:83:93:
                    59:b0:9d:89:02:58:40:42:fb:d5:15:0a:e5:4f:24:1b:
                    ce:1d:2b:05:5d:c7:6d:15:f3:d9:3f:99:06:9b:38:bd:
                    f1:87:49:6a:f2:55:10:dc:ad:87:04:eb:4c:13:93:6f:
                    c5:3c:19:60:0c:56:88:a3:26:a7:49:74:e1:dd:3b:54:
                    9a:03:cd:23:1c:d2:eb:5f:f1:19:89:62:d9:b8:4d:38:
                    9d:22:3c:76:55:d2:7a:4a:ec:cb:9d:35:5a:0e:e4:c7:
                    3d:cf:83:89:7a:0b:14:54:bc:58:b8:1d:3a:4a:73:0b:
                    b7:cc:82:5a:c3:f0:4c:64:87:63:d2:48:f5:8b:70:c2:
                    c8:89:85:57:a7:c9:1e:5b:5e:9f:c3:e2:65:35:2a:3a:
                    b7:07:2d:a6:31:ba:f1:ad:90:ce:f6:d4:48:84:0b:26:
                    14:83:1d:25:b2:76:7d:7e:ad:3e:1d:00:a1:bc:ca:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:d1:8c:ff:94:4a:e1:f1:11:61:71:17:b9:67:85:6b:
        8b:44:37:d3:55:b4:24:1f:66:ea:c5:7d:ad:ac:fd:4a:
        55:13:83:d8:57:e6:a2:07:89:44:ed:46:8e:51:54:e5:
        c6:f9:a3:8c:80:1d:1f:97:69:7f:50:6e:41:e9:b3:03:
        3f:d2:53:b6:01:4e:f3:88:dc:ab:af:f9:83:ea:31:7e:
        86:61:71:13:77:0c:bc:4f:62:7b:32:33:86:f6:fe:e3:
        11:42:99:e3:fc:4f:51:1f:9d:d3:36:15:59:73:52:85:
        51:e3:77:88:07:d9:4a:11:9c:fe:ff:2a:7e:a4:45:47:
        95:6b:5f:b9:74:73:60:27:4a:d2:14:d6:93:4f:69:cd:
        d8:11:05:4e:c6:03:32:08:b8:c8:07:43:b2:6f:95:4f:
        40:4b:e7:81:c3:a6:a1:cc:24:6d:e0:78:7c:d3:05:66:
        ac:19:3f:a7:de:d7:dd:61:53:e5:b3:c0:47:e6:15:e9:
        35:17:bf:83:2d:d7:f4:8a:b4:0c:fe:9b:d4:3a:19:7a:
        55:68:f0:d4:3c:c8:d8:37:f9:bb:23:e5:c5:e7:99:90:
        14:86:09:b4:cf:76:71:d9:37:db:dc:4f:88:13:e7:c2:
        b0:f5:fc:9e:6f:b6:47:5f:f3:3f:eb:88:b4:dd:cf:dd
    Fingerprint (SHA-256):
        7B:4C:78:07:66:45:43:5A:73:16:F8:D6:BF:9E:F8:86:86:B5:3D:72:AB:93:ED:68:E9:41:7F:4A:77:71:28:56
    Fingerprint (SHA1):
        92:02:F6:78:56:03:A9:9A:09:7E:64:E9:CB:20:D3:5B:3A:7D:76:73
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11298: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11299: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121118 (0x1e67d49e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:05 2017
            Not After : Tue May 10 12:13:05 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:94:ca:42:ba:3c:eb:72:5c:f1:0a:60:96:ed:62:f1:
                    07:6f:9b:17:5e:3d:be:a1:e1:65:6f:c5:d2:b5:20:e9:
                    4d:00:3e:c9:76:ab:2f:5b:d8:e9:67:ea:95:79:4f:33:
                    73:2e:c4:aa:9e:51:17:a4:24:03:05:d6:62:a7:32:58:
                    d4:07:7b:2e:ec:42:9a:dd:2d:35:b7:7e:aa:b2:79:35:
                    dc:24:7d:12:da:f0:a3:2d:a1:19:7f:98:88:97:75:f7:
                    3b:40:a1:7a:2e:6f:a5:55:b8:ea:3b:07:21:3a:73:b2:
                    0f:20:88:ea:45:1f:b4:16:61:77:c5:3a:4e:58:77:fb:
                    2f:ed:d7:97:11:af:17:14:07:ee:60:c9:7d:9a:bd:7c:
                    72:c0:a3:c7:d8:59:b2:d7:67:47:60:06:41:28:22:c4:
                    85:cb:84:c2:b6:5f:df:80:ea:cc:63:ba:ff:f5:3c:ef:
                    e7:f9:b3:0d:68:32:5a:18:f8:86:b4:9e:7f:7d:4c:4a:
                    95:ee:7b:34:bb:1c:b8:79:ab:6d:b9:80:8b:26:ae:f9:
                    e2:3f:ba:9e:fa:79:7d:50:c7:8f:16:8e:17:c3:d7:90:
                    37:d1:d7:85:84:13:c9:17:5a:2c:e9:24:3f:a5:21:e7:
                    b9:4a:97:9c:ec:08:91:88:e3:c0:9e:a6:aa:9f:8c:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:00:95:e9:cc:5a:0a:8e:bb:93:76:24:b3:5f:2a:7b:
        6c:e6:15:62:8d:ba:d8:71:9a:ce:71:b7:5b:d8:40:c5:
        3b:54:ea:af:f5:c3:cd:c2:e7:72:f7:2c:da:be:e6:a1:
        84:f1:d6:84:c7:cd:b9:1d:ae:1b:93:77:54:5a:ac:9b:
        67:75:4f:ec:de:e5:e3:4f:0c:60:00:a5:a1:92:cc:cd:
        f2:b1:14:04:1c:33:7e:10:45:f0:c7:f4:49:61:bf:df:
        b7:7e:a4:a7:a1:bb:82:3d:7c:8d:7f:14:80:2e:72:62:
        16:41:99:8a:44:aa:c7:28:bb:3c:06:2c:ef:b5:27:ae:
        73:8b:8c:e3:a7:08:34:87:ab:4e:ac:7b:6f:35:6d:39:
        0d:0e:58:9d:4b:cb:eb:ee:53:9b:b3:3e:0e:da:92:3c:
        98:47:33:d9:f3:39:d1:bb:b7:c4:77:b8:5e:25:f3:9e:
        2d:ef:51:4e:b2:97:ca:57:89:f6:71:a5:c6:b7:c8:77:
        70:f5:84:cf:8b:81:38:d5:74:f6:84:1d:88:3a:38:b6:
        4c:1f:5e:91:ac:da:8f:ea:ce:dd:51:56:03:a8:0a:99:
        03:74:ee:af:8c:e2:93:23:32:07:da:be:4c:f7:6e:8b:
        89:5e:29:ad:7c:36:12:f1:91:8c:97:39:24:1d:1d:26
    Fingerprint (SHA-256):
        64:A8:90:67:06:8A:14:BB:77:DE:0E:D2:B0:8B:30:F7:A4:0D:9D:58:A5:98:09:2A:5F:4D:66:7D:3A:CB:3C:C6
    Fingerprint (SHA1):
        7A:71:4F:F1:38:4B:98:82:F0:F4:8B:CE:DA:84:2B:71:00:18:81:B8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11300: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11301: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11302: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121119 (0x1e67d49f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:13:06 2017
            Not After : Tue May 10 12:13:06 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:08:52:e6:8d:5e:ef:4a:9e:12:05:6d:28:99:16:44:
                    c3:48:e1:9e:d3:dc:22:8f:7a:ec:3f:06:fd:d0:ae:9e:
                    94:a0:a0:ec:6d:d4:6b:fe:84:8d:ce:ac:4d:84:57:eb:
                    d0:53:0c:4a:64:88:7a:cb:18:c0:7f:aa:b1:99:54:9f:
                    de:00:e0:52:26:39:ca:03:0a:a9:3b:41:7b:89:cc:5e:
                    f0:eb:f5:b5:b3:55:30:6a:c9:32:d4:c5:06:cb:f1:04:
                    22:1a:7e:92:36:a3:0d:18:88:97:9b:2b:85:a0:f7:d0:
                    db:ff:54:a6:97:5a:24:90:0c:12:65:99:e9:7c:a9:c0:
                    d8:53:a8:72:19:2f:38:78:10:a0:71:ed:95:13:0f:9e:
                    1b:8e:50:d1:ed:be:73:41:93:66:d6:e2:cb:3c:40:b4:
                    86:67:3d:98:88:d6:eb:8b:8e:fc:0b:ca:e9:96:ea:e3:
                    cb:bd:fc:90:97:06:f2:2a:bd:29:cb:f9:b9:55:c3:66:
                    56:3a:69:58:7f:44:b8:01:e7:03:b4:a1:01:5e:67:c3:
                    0e:79:20:60:04:f9:2a:b8:d8:d8:e4:58:a7:5c:ab:57:
                    ca:df:00:70:e8:6f:90:1e:c9:77:84:5e:9d:50:8c:fa:
                    3f:82:90:ae:ed:4f:02:13:15:c6:f3:97:44:1d:da:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        88:67:ef:a6:5d:62:8c:90:77:a4:ee:d7:62:ef:89:d3:
        44:80:86:6f:81:4d:24:68:b5:de:c3:fd:dc:d7:6f:63:
        1c:4a:aa:bf:78:c6:2e:27:57:2b:0d:6a:32:96:07:8e:
        4e:a8:1c:a1:a8:09:04:50:dd:d0:76:94:23:aa:d2:9c:
        22:50:64:de:f4:39:92:3e:ab:3e:bf:61:fa:78:f5:d6:
        58:24:99:c3:1d:e4:66:2a:4f:4b:11:28:8b:37:7c:86:
        d3:46:37:97:02:5c:78:33:d1:1d:07:4c:fb:74:66:06:
        19:88:b6:28:fa:b9:e7:0f:ab:5b:be:04:7f:24:b0:27:
        50:e7:f4:c6:b9:0d:34:2b:7f:c5:f2:00:71:2c:a9:af:
        03:c1:90:a5:03:fc:ca:66:17:db:b7:88:04:20:65:d0:
        4a:00:d6:7d:1e:7a:48:0a:19:c6:c0:13:b4:e3:c7:7d:
        e1:29:cb:a0:ae:e3:78:e6:9a:bb:03:a5:a4:27:dd:4f:
        79:30:63:5c:99:df:04:14:03:5b:4a:24:b0:67:6f:8a:
        d1:b8:9d:f5:8d:b3:96:17:da:c2:75:6a:8e:5f:46:8b:
        d8:7c:83:50:bd:99:98:62:30:a9:e6:d5:df:85:f4:29:
        35:1f:f2:2a:24:aa:2b:c9:22:07:e7:14:35:cf:68:90
    Fingerprint (SHA-256):
        48:CD:42:A3:94:C1:E0:30:06:99:76:06:9E:98:3F:89:88:A4:53:E7:C7:60:03:26:E1:D1:E3:CB:30:13:2F:1D
    Fingerprint (SHA1):
        DA:7E:B0:25:76:52:BC:03:C7:53:07:41:B8:8F:6B:CB:02:D8:5D:F1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #11303: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11304: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121122 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11305: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11306: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11307: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11308: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121123   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11309: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11310: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11311: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11312: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121124   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA1Root-510121031.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11313: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11314: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11315: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11316: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510121125   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11317: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11318: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #11319: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121122 (0x1e67d4a2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:10 2017
            Not After : Tue May 10 12:13:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:7b:df:4f:6c:b7:5b:92:b0:ef:49:37:0c:bd:6e:ab:
                    41:33:e7:40:6c:64:3a:fc:22:20:2b:19:3a:9f:fd:66:
                    cf:d7:eb:c0:29:e1:40:99:60:0b:5c:09:61:6c:02:80:
                    65:7a:60:02:85:94:49:76:24:65:42:b7:6e:c7:8b:f2:
                    10:7c:3d:8d:d8:ba:d2:a2:e8:8c:75:a9:9a:51:8c:82:
                    d5:76:10:78:cf:09:a9:62:67:ca:a9:ce:f1:56:3e:2c:
                    af:42:ee:40:ce:af:c6:68:9b:4a:f1:74:29:a3:01:ca:
                    a1:05:80:ec:3c:fd:80:44:1c:6b:4f:24:21:be:6b:ac:
                    a6:1d:df:2b:a8:3a:92:4e:be:77:c2:96:32:73:43:05:
                    cd:dd:86:59:fb:9a:76:c7:ba:c9:aa:c0:c6:77:8d:bc:
                    00:15:be:e8:dc:cb:8c:6a:74:95:f6:9c:3d:eb:62:23:
                    ac:4f:d6:2b:85:ac:c5:d6:e1:65:c5:a4:bc:1a:21:5b:
                    bf:09:71:9a:c5:70:1f:44:15:34:f8:ae:9d:09:88:d2:
                    9e:e4:39:4a:60:24:c2:1a:15:62:b0:22:be:a2:46:8d:
                    2f:9f:27:2c:49:0d:cf:8f:84:a8:6b:fe:1e:ed:de:dc:
                    6d:95:4e:76:56:f5:65:03:c9:76:e4:8c:dd:41:10:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:4e:65:a9:66:66:78:b3:26:5f:a9:ab:7f:65:ef:e1:
        28:dc:dd:cb:12:cc:e6:e9:28:3a:a5:57:f5:81:e4:4b:
        6e:79:5e:fa:47:1b:cc:ea:5b:50:f0:63:e5:52:9c:73:
        67:39:f8:82:85:07:ef:67:d8:4f:d5:f3:1b:3a:51:98:
        b3:b5:32:92:50:2b:15:9f:fc:08:21:79:bc:f3:9c:76:
        ad:3b:25:1a:5b:82:02:b6:f4:7d:a2:1a:f3:13:da:cd:
        23:7a:ec:f9:16:3d:ca:24:f9:d9:c5:78:38:4d:f6:c6:
        96:e2:de:73:02:2f:cb:98:72:74:e0:89:f0:21:09:7d:
        80:2c:f1:a4:a1:22:bb:fd:25:32:0a:04:8a:c7:45:00:
        65:86:d9:2a:e9:52:e3:b9:d2:17:e2:67:74:2d:b1:eb:
        bc:0d:f4:9f:76:28:44:bf:d4:c0:33:d3:c8:96:bd:c4:
        a1:d4:31:a6:ea:cd:66:1b:bc:9b:12:82:68:80:2e:48:
        1c:aa:9f:24:ec:f0:76:29:4f:4f:c7:a8:ae:fe:15:30:
        1b:88:ec:df:7a:0d:af:20:86:24:2d:74:4c:29:a5:d3:
        13:05:4f:33:92:0e:75:20:f4:6a:da:52:da:9a:48:ea:
        d4:ce:79:ce:90:a6:98:fe:eb:fe:62:31:53:86:68:86
    Fingerprint (SHA-256):
        04:D9:8A:19:B6:CF:AF:F0:B1:DA:F0:5E:60:C5:E0:39:6A:6C:DF:84:40:B1:27:0C:9E:EF:B9:DA:D7:09:25:1E
    Fingerprint (SHA1):
        5D:1D:0A:76:C8:69:2A:45:69:A4:32:22:80:0E:58:E4:0E:13:7C:B0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11320: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11321: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121126 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11322: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11323: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11324: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121127 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11325: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11326: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11327: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11328: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510121128 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11329: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11330: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510121129 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11331: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11332: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11333: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11334: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11335: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510121130   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-Bridge-510121032.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11336: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11337: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11338: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11339: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121131   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11340: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11341: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11342: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121126 (0x1e67d4a6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:13:16 2017
            Not After : Tue May 10 12:13:16 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:c0:1d:3d:48:6d:bf:46:d0:fc:9f:d3:50:88:f6:f3:
                    3b:1d:c8:ea:0c:c0:72:ea:8b:c9:9d:a9:14:c7:dd:21:
                    33:ab:94:36:98:21:b4:69:db:36:07:24:8e:03:b4:f9:
                    b4:b0:20:22:d9:b8:47:9d:6b:df:2f:b8:c3:f7:f9:30:
                    ba:b3:88:bb:9f:9e:1c:82:11:0c:c5:74:7b:fa:12:c9:
                    a9:88:01:4f:63:d6:98:35:74:e8:b4:b9:fc:53:be:89:
                    4f:80:11:62:99:8f:2f:51:ef:ed:be:cd:74:f5:19:4d:
                    0b:6f:41:1d:97:c5:3b:a4:ba:5f:1d:9b:ab:7d:d4:1f:
                    88:c8:e6:f2:fe:b0:8b:2b:45:3b:9c:00:9e:db:39:a7:
                    84:da:ff:42:99:6c:61:ce:30:3b:a0:ac:46:ed:ff:24:
                    a4:38:30:69:5b:20:91:aa:3a:59:91:10:da:c4:5e:61:
                    51:05:e4:bd:76:6d:6c:91:b5:7b:15:3a:93:16:40:b6:
                    47:4d:c1:b1:16:d2:e7:b3:81:86:22:8e:b3:50:a4:74:
                    7b:bc:e9:bd:bf:d9:ce:6d:15:9c:fb:56:c9:a0:e9:45:
                    de:df:96:80:27:88:e6:0d:38:e2:a7:2a:be:ae:23:08:
                    e4:24:d7:18:89:47:5d:42:8b:87:b7:a9:44:97:42:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:b1:d5:ce:d2:be:d5:14:29:b2:dd:65:a1:10:49:7d:
        fe:99:52:a3:16:93:b8:64:1e:f3:c3:40:fa:d3:e8:cd:
        1f:bc:1a:a7:42:a2:3d:67:1f:ab:41:7e:77:e1:03:5e:
        d5:24:a3:a8:f5:95:af:ab:ce:88:3e:1c:0d:3f:d4:aa:
        51:cc:a6:fd:79:0d:84:61:cd:f4:9d:37:bf:1f:19:a2:
        d3:32:4f:6d:23:28:ce:55:9a:02:4b:8b:9b:9e:9d:df:
        84:4f:34:1e:77:88:66:24:a6:ea:55:df:82:d6:d6:6d:
        ef:4d:40:10:be:e3:a4:42:79:26:9b:90:d6:84:38:ca:
        36:7a:61:4a:e4:67:d2:6e:0f:95:a3:56:b3:15:99:4a:
        7e:0f:32:7d:8b:af:81:97:3a:44:dc:db:b7:ac:91:60:
        d1:c4:19:80:dc:8b:3e:da:ce:53:1e:9a:19:97:47:d1:
        44:7f:ed:1d:dd:f2:eb:e1:66:76:b9:2a:31:d5:08:e8:
        7b:64:ce:57:7e:f9:11:47:d6:48:83:1a:c8:1b:f7:35:
        30:fb:f8:a5:3d:cd:93:01:86:7a:2f:b1:f8:3f:3a:e6:
        59:cf:cb:c6:35:25:f0:31:0e:28:9b:b0:da:58:e5:ec:
        60:1d:92:95:75:cc:a5:7e:46:f8:8c:f1:fe:92:f5:b5
    Fingerprint (SHA-256):
        52:A6:7B:BA:26:63:5C:53:A0:BA:4F:FB:9D:DB:33:9E:1F:21:E6:E1:7C:E8:9A:13:18:8B:64:90:0E:3B:97:24
    Fingerprint (SHA1):
        00:52:8C:76:23:5A:61:50:47:84:86:04:7F:E4:5E:53:2A:9D:B6:15
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11343: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121127 (0x1e67d4a7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:13:17 2017
            Not After : Tue May 10 12:13:17 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:ab:2f:ca:2b:5d:e3:b0:bc:04:b6:9e:f2:a6:bb:31:
                    e9:3c:b4:b9:8d:92:66:20:4f:73:23:b0:a0:75:ae:23:
                    43:73:1f:cb:6b:36:64:36:c6:bb:69:ef:f2:4b:42:25:
                    b2:db:fb:4b:c7:56:ad:75:24:82:55:ff:db:91:f8:84:
                    a4:ac:d0:b6:cc:d3:a9:a2:65:00:7f:e7:33:b4:d0:c7:
                    60:3e:f7:7b:30:9d:24:c7:f7:fc:b7:6c:f1:36:8a:21:
                    ab:3e:d0:af:90:62:ec:2e:78:1b:af:83:ae:d7:5e:f9:
                    aa:7e:2f:3c:09:86:ea:5c:36:e7:20:a7:28:b2:55:36:
                    69:b5:b0:a3:1c:74:26:27:99:e8:e0:25:6f:b4:35:4a:
                    6d:a1:a6:94:77:3a:ee:d8:77:8e:86:9c:10:73:51:c1:
                    11:ca:f3:48:70:82:f7:59:f9:dc:7c:d1:18:a7:7a:a6:
                    fe:46:e2:14:5c:7b:5b:a3:9e:0c:68:44:77:4b:03:98:
                    a8:78:0a:11:c4:53:65:50:af:02:8c:54:73:3d:cf:86:
                    53:44:cf:4e:63:be:17:15:cd:3b:11:5d:54:2b:19:25:
                    cb:08:b6:0c:5d:60:66:82:bb:de:a0:85:b6:3b:b4:11:
                    e2:31:1e:20:0a:9d:06:4f:a0:9b:f1:16:e4:9b:c6:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:46:24:74:6c:86:a7:0a:c8:26:5e:57:6b:d1:35:46:
        2c:9d:de:9c:85:c3:9b:a8:43:e0:de:02:1e:cf:c2:51:
        64:d1:b3:d2:73:98:3e:2b:36:27:5b:2c:a2:4f:d2:12:
        66:77:a8:47:db:4f:a9:02:88:8d:f4:59:80:40:a9:5a:
        76:46:7c:ad:be:7b:4e:03:73:44:c9:1b:97:93:a9:6c:
        08:de:3a:ec:c5:af:d6:6a:0d:8a:54:dd:66:07:de:53:
        a8:5e:82:c3:8f:a9:fa:ea:56:eb:52:c3:3e:d1:f4:f3:
        0c:19:59:a4:4a:74:9e:76:a3:cb:f5:aa:ba:d7:11:71:
        5e:58:cc:4b:b8:07:1f:ea:7b:7c:59:08:01:85:a2:00:
        62:7f:58:31:4e:56:f0:44:6e:a0:38:e1:d2:63:cd:b4:
        c1:5a:4c:34:b8:14:87:27:ba:74:9f:12:d7:c5:d9:3d:
        09:a5:42:15:5e:1b:7a:44:b0:09:00:a7:91:e5:42:f2:
        24:28:1d:59:64:41:c7:e4:8b:82:06:00:e6:4a:d1:e3:
        87:08:ef:9a:9d:25:9d:9d:c2:44:27:58:a3:b2:40:0e:
        3a:e1:e5:a9:7c:09:9a:6f:7f:d5:86:0f:d2:0b:5b:96:
        2a:7c:7c:c1:1f:4a:3b:73:93:96:ba:a8:a1:ee:6e:1b
    Fingerprint (SHA-256):
        91:8B:14:87:58:EF:04:AF:6C:62:68:64:D4:10:86:29:77:05:72:0E:46:E2:20:7E:52:CB:C7:05:C4:79:65:50
    Fingerprint (SHA1):
        A4:BF:E7:4B:0D:6F:65:CF:BF:AD:96:EE:0F:1B:3B:D7:77:32:8B:C4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11344: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121127 (0x1e67d4a7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:13:17 2017
            Not After : Tue May 10 12:13:17 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:ab:2f:ca:2b:5d:e3:b0:bc:04:b6:9e:f2:a6:bb:31:
                    e9:3c:b4:b9:8d:92:66:20:4f:73:23:b0:a0:75:ae:23:
                    43:73:1f:cb:6b:36:64:36:c6:bb:69:ef:f2:4b:42:25:
                    b2:db:fb:4b:c7:56:ad:75:24:82:55:ff:db:91:f8:84:
                    a4:ac:d0:b6:cc:d3:a9:a2:65:00:7f:e7:33:b4:d0:c7:
                    60:3e:f7:7b:30:9d:24:c7:f7:fc:b7:6c:f1:36:8a:21:
                    ab:3e:d0:af:90:62:ec:2e:78:1b:af:83:ae:d7:5e:f9:
                    aa:7e:2f:3c:09:86:ea:5c:36:e7:20:a7:28:b2:55:36:
                    69:b5:b0:a3:1c:74:26:27:99:e8:e0:25:6f:b4:35:4a:
                    6d:a1:a6:94:77:3a:ee:d8:77:8e:86:9c:10:73:51:c1:
                    11:ca:f3:48:70:82:f7:59:f9:dc:7c:d1:18:a7:7a:a6:
                    fe:46:e2:14:5c:7b:5b:a3:9e:0c:68:44:77:4b:03:98:
                    a8:78:0a:11:c4:53:65:50:af:02:8c:54:73:3d:cf:86:
                    53:44:cf:4e:63:be:17:15:cd:3b:11:5d:54:2b:19:25:
                    cb:08:b6:0c:5d:60:66:82:bb:de:a0:85:b6:3b:b4:11:
                    e2:31:1e:20:0a:9d:06:4f:a0:9b:f1:16:e4:9b:c6:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:46:24:74:6c:86:a7:0a:c8:26:5e:57:6b:d1:35:46:
        2c:9d:de:9c:85:c3:9b:a8:43:e0:de:02:1e:cf:c2:51:
        64:d1:b3:d2:73:98:3e:2b:36:27:5b:2c:a2:4f:d2:12:
        66:77:a8:47:db:4f:a9:02:88:8d:f4:59:80:40:a9:5a:
        76:46:7c:ad:be:7b:4e:03:73:44:c9:1b:97:93:a9:6c:
        08:de:3a:ec:c5:af:d6:6a:0d:8a:54:dd:66:07:de:53:
        a8:5e:82:c3:8f:a9:fa:ea:56:eb:52:c3:3e:d1:f4:f3:
        0c:19:59:a4:4a:74:9e:76:a3:cb:f5:aa:ba:d7:11:71:
        5e:58:cc:4b:b8:07:1f:ea:7b:7c:59:08:01:85:a2:00:
        62:7f:58:31:4e:56:f0:44:6e:a0:38:e1:d2:63:cd:b4:
        c1:5a:4c:34:b8:14:87:27:ba:74:9f:12:d7:c5:d9:3d:
        09:a5:42:15:5e:1b:7a:44:b0:09:00:a7:91:e5:42:f2:
        24:28:1d:59:64:41:c7:e4:8b:82:06:00:e6:4a:d1:e3:
        87:08:ef:9a:9d:25:9d:9d:c2:44:27:58:a3:b2:40:0e:
        3a:e1:e5:a9:7c:09:9a:6f:7f:d5:86:0f:d2:0b:5b:96:
        2a:7c:7c:c1:1f:4a:3b:73:93:96:ba:a8:a1:ee:6e:1b
    Fingerprint (SHA-256):
        91:8B:14:87:58:EF:04:AF:6C:62:68:64:D4:10:86:29:77:05:72:0E:46:E2:20:7E:52:CB:C7:05:C4:79:65:50
    Fingerprint (SHA1):
        A4:BF:E7:4B:0D:6F:65:CF:BF:AD:96:EE:0F:1B:3B:D7:77:32:8B:C4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11345: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11346: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121132 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11347: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11348: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11349: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121133 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11350: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11351: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11352: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11353: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510121134 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11354: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11355: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510121135 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11356: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11357: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11358: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11359: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11360: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510121136   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-Bridge-510121033.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11361: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11362: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11363: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11364: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121137   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11365: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11366: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11367: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11368: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510121138   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-BridgeNavy-510121034.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11369: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11370: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11371: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11372: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510121139   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11373: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11374: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11375: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121132 (0x1e67d4ac)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:13:22 2017
            Not After : Tue May 10 12:13:22 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:e6:05:ac:fa:b3:4d:49:43:a0:8a:ee:f3:d0:7d:85:
                    f3:f5:fa:35:4b:35:e3:71:fa:b1:0f:2b:e8:ac:fb:c4:
                    76:fd:13:7b:73:88:5f:d7:47:1e:d4:0b:d2:63:28:fb:
                    a0:98:71:f5:8c:a9:f7:94:5b:b9:f3:46:88:c2:62:29:
                    c8:dc:71:5b:f3:8e:10:e8:db:a5:bb:c8:6a:f8:25:cf:
                    5d:1c:41:49:5b:cd:c4:c4:fd:ad:6e:c7:69:b4:00:10:
                    97:19:79:a5:cf:6b:7a:f6:6e:14:ac:42:fc:f8:e0:0a:
                    49:61:d7:44:c8:b8:1c:c9:91:45:cd:22:ef:ab:07:99:
                    5d:b8:fc:ec:17:2e:1a:ef:08:76:35:74:b3:5c:93:f8:
                    ac:7d:1a:72:4c:58:f6:07:c7:c1:98:24:57:00:9c:eb:
                    c8:d1:4b:01:a9:92:79:d5:f0:e3:08:3d:3c:19:c2:e3:
                    5a:d3:7e:8a:7e:26:d6:9f:77:a3:46:9e:9c:51:c3:02:
                    de:f1:63:b0:d2:44:3a:63:57:60:80:c8:d9:cb:bd:6a:
                    bf:9c:9a:23:2f:02:0c:d5:3a:cb:57:ee:2a:58:9d:f4:
                    05:c1:a9:81:95:0a:2e:b1:0b:c0:11:24:53:c1:24:b9:
                    6f:59:15:f2:f7:4a:d8:04:6b:80:4f:58:e3:09:f5:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:49:79:8e:72:84:40:8a:30:ea:5d:35:5f:ac:24:9e:
        a0:f9:ba:ba:e0:c2:61:6a:06:7c:24:4f:5f:af:6a:3a:
        74:45:04:3e:a2:83:a2:5d:02:79:27:82:f3:d9:a8:d0:
        51:95:43:17:d7:57:d1:fc:25:6b:21:c5:33:d7:a0:48:
        40:c0:22:d9:4a:cf:76:79:7f:37:71:c6:a0:76:05:a1:
        85:70:51:29:a0:97:2b:7d:f5:c0:00:41:1b:22:aa:60:
        ac:67:de:ab:61:6e:98:0d:4d:f4:da:73:d5:b3:64:86:
        1b:cd:2d:90:94:49:72:57:bb:a4:09:d7:d4:9b:70:9a:
        5e:13:ba:ac:2c:9c:a7:41:38:a7:ff:b6:e0:e8:d2:7d:
        7a:46:4c:53:75:28:8c:40:51:62:47:d6:51:cd:e8:36:
        19:b6:51:d5:7b:90:2c:e4:13:b0:4c:38:51:09:7d:25:
        c4:ba:af:a9:3c:a4:10:74:1e:35:57:35:bb:f7:74:f7:
        81:5e:8b:ee:eb:9b:70:42:96:a8:f6:ff:13:49:9b:13:
        a6:cf:7b:5d:3e:95:11:1f:ac:c0:36:5d:eb:e2:20:1a:
        b5:a1:0c:bd:e0:f8:34:e1:f7:7d:bf:f3:a1:38:6d:b3:
        29:5e:29:bf:96:f9:59:e4:d0:25:06:ff:21:99:8e:01
    Fingerprint (SHA-256):
        B3:B0:75:CF:3C:B7:1D:A5:C4:4D:1C:77:3C:78:AE:2E:EC:6E:BA:A0:28:8C:96:12:4E:BD:E1:8F:FE:2F:DA:43
    Fingerprint (SHA1):
        21:7B:94:B1:51:9A:2B:74:B4:E4:A7:D4:27:C7:63:B3:6F:37:ED:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11376: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121133 (0x1e67d4ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:13:23 2017
            Not After : Tue May 10 12:13:23 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:ea:a3:7d:de:e3:13:f5:d4:2d:87:b8:51:f2:f5:cb:
                    f8:3f:30:e2:46:5f:50:1a:9a:a2:c1:67:03:5c:d6:1c:
                    76:4e:cb:72:f2:1e:0d:96:35:82:44:64:fc:43:66:08:
                    98:4b:c1:be:17:6e:dc:96:65:4b:85:e6:75:a6:7d:77:
                    c8:60:4c:55:7d:c4:62:bb:d2:23:d4:52:46:93:ac:ee:
                    ca:36:3b:9e:0a:5a:c4:0c:ce:92:f5:8f:97:ce:8b:24:
                    25:fa:f2:ab:47:50:e2:bd:cc:8a:09:3d:18:e2:2c:2e:
                    a1:69:b6:36:89:90:15:b7:8c:74:14:7d:94:31:35:6d:
                    25:f8:00:30:e2:25:6a:d7:ef:79:c8:18:5d:0e:60:c2:
                    7c:a5:7f:85:1a:6a:c5:55:65:45:6c:7f:f4:30:f1:49:
                    93:3d:0b:9d:b1:aa:f7:72:8a:da:dd:dd:f9:24:b2:72:
                    37:d1:b8:3e:fe:65:07:f8:83:be:d6:45:a0:e8:ed:34:
                    14:12:f0:0c:ed:85:46:95:3c:2b:e0:7f:1f:b8:6c:46:
                    3c:93:66:5d:c0:f4:c2:f7:72:e0:fe:ee:00:30:3c:42:
                    80:2a:52:43:43:10:20:c5:93:7d:87:1e:5a:6c:69:f2:
                    a7:03:7a:db:e0:38:5d:6e:2e:fd:14:7c:46:30:6e:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:a5:c2:ee:ec:9f:0b:90:a1:b3:2b:5b:91:46:18:a0:
        80:09:c3:06:a1:68:1f:f0:c2:2f:75:d6:eb:69:81:7e:
        32:f6:ea:1f:0e:11:1c:12:42:96:5d:26:45:1f:b8:15:
        c0:84:5c:cf:fd:45:74:64:cb:0d:e7:59:f9:2c:b2:bd:
        9a:cf:63:29:b8:88:81:8a:94:fd:fb:af:b8:01:45:f0:
        a4:ff:1d:d8:0a:ee:2b:42:01:0c:97:75:ea:ac:c4:6d:
        19:33:df:52:19:5a:51:89:05:06:4a:5f:c4:4c:87:8d:
        07:68:47:b0:68:9a:a1:26:31:aa:a6:61:56:8e:29:5f:
        85:27:1c:5b:89:f6:84:22:c0:63:84:a5:f8:3d:70:25:
        8a:7a:da:c3:55:fe:c6:6d:ea:bd:84:a3:ed:3f:bd:c7:
        5b:a4:fc:dc:c3:21:62:69:80:a7:e7:eb:97:15:d7:48:
        79:62:d4:65:52:95:ec:93:8e:28:c2:56:86:84:0b:b5:
        58:14:e5:b4:55:f5:e0:a0:0c:fc:96:59:99:d9:5e:fb:
        83:c7:3a:63:88:67:cb:a3:fb:ca:e4:ff:66:35:fb:0f:
        dc:05:60:07:d2:16:a7:a2:e8:cd:cd:ec:3a:a9:05:70:
        d1:ac:0a:58:db:0b:82:9a:f7:fa:46:28:13:22:29:5a
    Fingerprint (SHA-256):
        93:DB:77:CF:0D:67:1B:12:8E:E7:A4:B3:B0:71:C8:5B:0B:33:FB:C4:4D:0A:0E:CB:AD:E5:38:4B:4C:F6:C6:33
    Fingerprint (SHA1):
        4E:9C:34:E7:47:2F:B2:36:95:95:55:BD:73:3E:0A:A2:3C:F4:BC:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11377: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121133 (0x1e67d4ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:13:23 2017
            Not After : Tue May 10 12:13:23 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:ea:a3:7d:de:e3:13:f5:d4:2d:87:b8:51:f2:f5:cb:
                    f8:3f:30:e2:46:5f:50:1a:9a:a2:c1:67:03:5c:d6:1c:
                    76:4e:cb:72:f2:1e:0d:96:35:82:44:64:fc:43:66:08:
                    98:4b:c1:be:17:6e:dc:96:65:4b:85:e6:75:a6:7d:77:
                    c8:60:4c:55:7d:c4:62:bb:d2:23:d4:52:46:93:ac:ee:
                    ca:36:3b:9e:0a:5a:c4:0c:ce:92:f5:8f:97:ce:8b:24:
                    25:fa:f2:ab:47:50:e2:bd:cc:8a:09:3d:18:e2:2c:2e:
                    a1:69:b6:36:89:90:15:b7:8c:74:14:7d:94:31:35:6d:
                    25:f8:00:30:e2:25:6a:d7:ef:79:c8:18:5d:0e:60:c2:
                    7c:a5:7f:85:1a:6a:c5:55:65:45:6c:7f:f4:30:f1:49:
                    93:3d:0b:9d:b1:aa:f7:72:8a:da:dd:dd:f9:24:b2:72:
                    37:d1:b8:3e:fe:65:07:f8:83:be:d6:45:a0:e8:ed:34:
                    14:12:f0:0c:ed:85:46:95:3c:2b:e0:7f:1f:b8:6c:46:
                    3c:93:66:5d:c0:f4:c2:f7:72:e0:fe:ee:00:30:3c:42:
                    80:2a:52:43:43:10:20:c5:93:7d:87:1e:5a:6c:69:f2:
                    a7:03:7a:db:e0:38:5d:6e:2e:fd:14:7c:46:30:6e:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:a5:c2:ee:ec:9f:0b:90:a1:b3:2b:5b:91:46:18:a0:
        80:09:c3:06:a1:68:1f:f0:c2:2f:75:d6:eb:69:81:7e:
        32:f6:ea:1f:0e:11:1c:12:42:96:5d:26:45:1f:b8:15:
        c0:84:5c:cf:fd:45:74:64:cb:0d:e7:59:f9:2c:b2:bd:
        9a:cf:63:29:b8:88:81:8a:94:fd:fb:af:b8:01:45:f0:
        a4:ff:1d:d8:0a:ee:2b:42:01:0c:97:75:ea:ac:c4:6d:
        19:33:df:52:19:5a:51:89:05:06:4a:5f:c4:4c:87:8d:
        07:68:47:b0:68:9a:a1:26:31:aa:a6:61:56:8e:29:5f:
        85:27:1c:5b:89:f6:84:22:c0:63:84:a5:f8:3d:70:25:
        8a:7a:da:c3:55:fe:c6:6d:ea:bd:84:a3:ed:3f:bd:c7:
        5b:a4:fc:dc:c3:21:62:69:80:a7:e7:eb:97:15:d7:48:
        79:62:d4:65:52:95:ec:93:8e:28:c2:56:86:84:0b:b5:
        58:14:e5:b4:55:f5:e0:a0:0c:fc:96:59:99:d9:5e:fb:
        83:c7:3a:63:88:67:cb:a3:fb:ca:e4:ff:66:35:fb:0f:
        dc:05:60:07:d2:16:a7:a2:e8:cd:cd:ec:3a:a9:05:70:
        d1:ac:0a:58:db:0b:82:9a:f7:fa:46:28:13:22:29:5a
    Fingerprint (SHA-256):
        93:DB:77:CF:0D:67:1B:12:8E:E7:A4:B3:B0:71:C8:5B:0B:33:FB:C4:4D:0A:0E:CB:AD:E5:38:4B:4C:F6:C6:33
    Fingerprint (SHA1):
        4E:9C:34:E7:47:2F:B2:36:95:95:55:BD:73:3E:0A:A2:3C:F4:BC:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11378: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #11379: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121132 (0x1e67d4ac)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:13:22 2017
            Not After : Tue May 10 12:13:22 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:e6:05:ac:fa:b3:4d:49:43:a0:8a:ee:f3:d0:7d:85:
                    f3:f5:fa:35:4b:35:e3:71:fa:b1:0f:2b:e8:ac:fb:c4:
                    76:fd:13:7b:73:88:5f:d7:47:1e:d4:0b:d2:63:28:fb:
                    a0:98:71:f5:8c:a9:f7:94:5b:b9:f3:46:88:c2:62:29:
                    c8:dc:71:5b:f3:8e:10:e8:db:a5:bb:c8:6a:f8:25:cf:
                    5d:1c:41:49:5b:cd:c4:c4:fd:ad:6e:c7:69:b4:00:10:
                    97:19:79:a5:cf:6b:7a:f6:6e:14:ac:42:fc:f8:e0:0a:
                    49:61:d7:44:c8:b8:1c:c9:91:45:cd:22:ef:ab:07:99:
                    5d:b8:fc:ec:17:2e:1a:ef:08:76:35:74:b3:5c:93:f8:
                    ac:7d:1a:72:4c:58:f6:07:c7:c1:98:24:57:00:9c:eb:
                    c8:d1:4b:01:a9:92:79:d5:f0:e3:08:3d:3c:19:c2:e3:
                    5a:d3:7e:8a:7e:26:d6:9f:77:a3:46:9e:9c:51:c3:02:
                    de:f1:63:b0:d2:44:3a:63:57:60:80:c8:d9:cb:bd:6a:
                    bf:9c:9a:23:2f:02:0c:d5:3a:cb:57:ee:2a:58:9d:f4:
                    05:c1:a9:81:95:0a:2e:b1:0b:c0:11:24:53:c1:24:b9:
                    6f:59:15:f2:f7:4a:d8:04:6b:80:4f:58:e3:09:f5:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:49:79:8e:72:84:40:8a:30:ea:5d:35:5f:ac:24:9e:
        a0:f9:ba:ba:e0:c2:61:6a:06:7c:24:4f:5f:af:6a:3a:
        74:45:04:3e:a2:83:a2:5d:02:79:27:82:f3:d9:a8:d0:
        51:95:43:17:d7:57:d1:fc:25:6b:21:c5:33:d7:a0:48:
        40:c0:22:d9:4a:cf:76:79:7f:37:71:c6:a0:76:05:a1:
        85:70:51:29:a0:97:2b:7d:f5:c0:00:41:1b:22:aa:60:
        ac:67:de:ab:61:6e:98:0d:4d:f4:da:73:d5:b3:64:86:
        1b:cd:2d:90:94:49:72:57:bb:a4:09:d7:d4:9b:70:9a:
        5e:13:ba:ac:2c:9c:a7:41:38:a7:ff:b6:e0:e8:d2:7d:
        7a:46:4c:53:75:28:8c:40:51:62:47:d6:51:cd:e8:36:
        19:b6:51:d5:7b:90:2c:e4:13:b0:4c:38:51:09:7d:25:
        c4:ba:af:a9:3c:a4:10:74:1e:35:57:35:bb:f7:74:f7:
        81:5e:8b:ee:eb:9b:70:42:96:a8:f6:ff:13:49:9b:13:
        a6:cf:7b:5d:3e:95:11:1f:ac:c0:36:5d:eb:e2:20:1a:
        b5:a1:0c:bd:e0:f8:34:e1:f7:7d:bf:f3:a1:38:6d:b3:
        29:5e:29:bf:96:f9:59:e4:d0:25:06:ff:21:99:8e:01
    Fingerprint (SHA-256):
        B3:B0:75:CF:3C:B7:1D:A5:C4:4D:1C:77:3C:78:AE:2E:EC:6E:BA:A0:28:8C:96:12:4E:BD:E1:8F:FE:2F:DA:43
    Fingerprint (SHA1):
        21:7B:94:B1:51:9A:2B:74:B4:E4:A7:D4:27:C7:63:B3:6F:37:ED:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11380: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121133 (0x1e67d4ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:13:23 2017
            Not After : Tue May 10 12:13:23 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:ea:a3:7d:de:e3:13:f5:d4:2d:87:b8:51:f2:f5:cb:
                    f8:3f:30:e2:46:5f:50:1a:9a:a2:c1:67:03:5c:d6:1c:
                    76:4e:cb:72:f2:1e:0d:96:35:82:44:64:fc:43:66:08:
                    98:4b:c1:be:17:6e:dc:96:65:4b:85:e6:75:a6:7d:77:
                    c8:60:4c:55:7d:c4:62:bb:d2:23:d4:52:46:93:ac:ee:
                    ca:36:3b:9e:0a:5a:c4:0c:ce:92:f5:8f:97:ce:8b:24:
                    25:fa:f2:ab:47:50:e2:bd:cc:8a:09:3d:18:e2:2c:2e:
                    a1:69:b6:36:89:90:15:b7:8c:74:14:7d:94:31:35:6d:
                    25:f8:00:30:e2:25:6a:d7:ef:79:c8:18:5d:0e:60:c2:
                    7c:a5:7f:85:1a:6a:c5:55:65:45:6c:7f:f4:30:f1:49:
                    93:3d:0b:9d:b1:aa:f7:72:8a:da:dd:dd:f9:24:b2:72:
                    37:d1:b8:3e:fe:65:07:f8:83:be:d6:45:a0:e8:ed:34:
                    14:12:f0:0c:ed:85:46:95:3c:2b:e0:7f:1f:b8:6c:46:
                    3c:93:66:5d:c0:f4:c2:f7:72:e0:fe:ee:00:30:3c:42:
                    80:2a:52:43:43:10:20:c5:93:7d:87:1e:5a:6c:69:f2:
                    a7:03:7a:db:e0:38:5d:6e:2e:fd:14:7c:46:30:6e:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:a5:c2:ee:ec:9f:0b:90:a1:b3:2b:5b:91:46:18:a0:
        80:09:c3:06:a1:68:1f:f0:c2:2f:75:d6:eb:69:81:7e:
        32:f6:ea:1f:0e:11:1c:12:42:96:5d:26:45:1f:b8:15:
        c0:84:5c:cf:fd:45:74:64:cb:0d:e7:59:f9:2c:b2:bd:
        9a:cf:63:29:b8:88:81:8a:94:fd:fb:af:b8:01:45:f0:
        a4:ff:1d:d8:0a:ee:2b:42:01:0c:97:75:ea:ac:c4:6d:
        19:33:df:52:19:5a:51:89:05:06:4a:5f:c4:4c:87:8d:
        07:68:47:b0:68:9a:a1:26:31:aa:a6:61:56:8e:29:5f:
        85:27:1c:5b:89:f6:84:22:c0:63:84:a5:f8:3d:70:25:
        8a:7a:da:c3:55:fe:c6:6d:ea:bd:84:a3:ed:3f:bd:c7:
        5b:a4:fc:dc:c3:21:62:69:80:a7:e7:eb:97:15:d7:48:
        79:62:d4:65:52:95:ec:93:8e:28:c2:56:86:84:0b:b5:
        58:14:e5:b4:55:f5:e0:a0:0c:fc:96:59:99:d9:5e:fb:
        83:c7:3a:63:88:67:cb:a3:fb:ca:e4:ff:66:35:fb:0f:
        dc:05:60:07:d2:16:a7:a2:e8:cd:cd:ec:3a:a9:05:70:
        d1:ac:0a:58:db:0b:82:9a:f7:fa:46:28:13:22:29:5a
    Fingerprint (SHA-256):
        93:DB:77:CF:0D:67:1B:12:8E:E7:A4:B3:B0:71:C8:5B:0B:33:FB:C4:4D:0A:0E:CB:AD:E5:38:4B:4C:F6:C6:33
    Fingerprint (SHA1):
        4E:9C:34:E7:47:2F:B2:36:95:95:55:BD:73:3E:0A:A2:3C:F4:BC:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11381: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121133 (0x1e67d4ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:13:23 2017
            Not After : Tue May 10 12:13:23 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:ea:a3:7d:de:e3:13:f5:d4:2d:87:b8:51:f2:f5:cb:
                    f8:3f:30:e2:46:5f:50:1a:9a:a2:c1:67:03:5c:d6:1c:
                    76:4e:cb:72:f2:1e:0d:96:35:82:44:64:fc:43:66:08:
                    98:4b:c1:be:17:6e:dc:96:65:4b:85:e6:75:a6:7d:77:
                    c8:60:4c:55:7d:c4:62:bb:d2:23:d4:52:46:93:ac:ee:
                    ca:36:3b:9e:0a:5a:c4:0c:ce:92:f5:8f:97:ce:8b:24:
                    25:fa:f2:ab:47:50:e2:bd:cc:8a:09:3d:18:e2:2c:2e:
                    a1:69:b6:36:89:90:15:b7:8c:74:14:7d:94:31:35:6d:
                    25:f8:00:30:e2:25:6a:d7:ef:79:c8:18:5d:0e:60:c2:
                    7c:a5:7f:85:1a:6a:c5:55:65:45:6c:7f:f4:30:f1:49:
                    93:3d:0b:9d:b1:aa:f7:72:8a:da:dd:dd:f9:24:b2:72:
                    37:d1:b8:3e:fe:65:07:f8:83:be:d6:45:a0:e8:ed:34:
                    14:12:f0:0c:ed:85:46:95:3c:2b:e0:7f:1f:b8:6c:46:
                    3c:93:66:5d:c0:f4:c2:f7:72:e0:fe:ee:00:30:3c:42:
                    80:2a:52:43:43:10:20:c5:93:7d:87:1e:5a:6c:69:f2:
                    a7:03:7a:db:e0:38:5d:6e:2e:fd:14:7c:46:30:6e:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:a5:c2:ee:ec:9f:0b:90:a1:b3:2b:5b:91:46:18:a0:
        80:09:c3:06:a1:68:1f:f0:c2:2f:75:d6:eb:69:81:7e:
        32:f6:ea:1f:0e:11:1c:12:42:96:5d:26:45:1f:b8:15:
        c0:84:5c:cf:fd:45:74:64:cb:0d:e7:59:f9:2c:b2:bd:
        9a:cf:63:29:b8:88:81:8a:94:fd:fb:af:b8:01:45:f0:
        a4:ff:1d:d8:0a:ee:2b:42:01:0c:97:75:ea:ac:c4:6d:
        19:33:df:52:19:5a:51:89:05:06:4a:5f:c4:4c:87:8d:
        07:68:47:b0:68:9a:a1:26:31:aa:a6:61:56:8e:29:5f:
        85:27:1c:5b:89:f6:84:22:c0:63:84:a5:f8:3d:70:25:
        8a:7a:da:c3:55:fe:c6:6d:ea:bd:84:a3:ed:3f:bd:c7:
        5b:a4:fc:dc:c3:21:62:69:80:a7:e7:eb:97:15:d7:48:
        79:62:d4:65:52:95:ec:93:8e:28:c2:56:86:84:0b:b5:
        58:14:e5:b4:55:f5:e0:a0:0c:fc:96:59:99:d9:5e:fb:
        83:c7:3a:63:88:67:cb:a3:fb:ca:e4:ff:66:35:fb:0f:
        dc:05:60:07:d2:16:a7:a2:e8:cd:cd:ec:3a:a9:05:70:
        d1:ac:0a:58:db:0b:82:9a:f7:fa:46:28:13:22:29:5a
    Fingerprint (SHA-256):
        93:DB:77:CF:0D:67:1B:12:8E:E7:A4:B3:B0:71:C8:5B:0B:33:FB:C4:4D:0A:0E:CB:AD:E5:38:4B:4C:F6:C6:33
    Fingerprint (SHA1):
        4E:9C:34:E7:47:2F:B2:36:95:95:55:BD:73:3E:0A:A2:3C:F4:BC:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11382: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11383: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121140 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11384: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11385: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11386: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121141 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11387: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11388: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #11389: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11390: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 510121142   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11391: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11392: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #11393: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11394: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 510121143   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11395: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11396: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11397: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11398: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 510121144 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11399: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11400: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 510121145 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11401: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11402: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #11403: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11404: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11405: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510121146   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11406: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11407: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11408: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11409: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510121147   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11410: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11411: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11412: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11413: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121148   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11414: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11415: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11416: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11417: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510121149   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11418: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11419: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11420: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121140 (0x1e67d4b4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:13:31 2017
            Not After : Tue May 10 12:13:31 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:c9:d4:9d:75:4a:7f:ee:f9:45:a6:37:57:a3:0c:39:
                    e7:45:1d:8d:84:f8:aa:75:a0:0b:57:4d:01:fb:95:49:
                    0a:e3:af:aa:7d:25:ab:16:96:30:7a:7d:d2:d7:6f:c2:
                    0f:8d:3b:97:74:e0:8d:66:12:52:59:43:b8:ca:ca:63:
                    aa:9b:47:81:1e:dc:c8:6b:8d:59:80:50:b1:7e:29:ed:
                    89:6f:40:37:6b:43:f3:da:b9:e4:7c:88:1f:83:c0:0c:
                    7e:5a:28:57:6a:4e:fd:55:b9:63:eb:6e:b1:10:6a:22:
                    9c:ad:95:b9:b3:ee:40:26:b8:fb:be:01:9c:9f:8d:ce:
                    33:c3:3b:6b:49:66:6a:eb:c5:98:2d:25:96:f5:06:6f:
                    69:53:50:6c:d2:3a:cd:9a:e0:f5:e7:17:fe:6c:4e:c0:
                    6b:37:f4:e1:1a:14:f4:23:2c:af:ed:b3:b4:72:ce:84:
                    f0:d5:57:e6:53:bb:b2:87:ff:b2:3a:42:83:c2:07:67:
                    7a:d8:be:d7:96:ac:d3:ab:c9:ca:f9:36:60:36:7d:69:
                    58:c3:1b:94:1a:33:53:c9:6d:96:a1:6f:2e:ea:9b:11:
                    0f:5b:00:09:80:b4:2d:3e:44:4e:96:2b:8b:45:d9:4f:
                    d7:bb:40:bc:88:3f:7f:d4:a4:ad:40:5d:91:86:86:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:a5:49:59:6e:f1:bd:fa:3e:50:83:ab:fe:22:6b:b8:
        76:d3:13:47:2e:3e:d6:61:ef:89:44:d0:95:51:12:c2:
        ab:80:ea:c4:ae:21:41:9a:dd:1a:f0:67:de:ca:f0:5f:
        da:7b:53:c9:28:29:7a:63:8c:86:27:38:39:57:82:95:
        ca:8a:12:ec:f3:85:57:77:87:d3:15:96:61:c7:fc:3d:
        1f:95:97:9c:70:60:15:e6:78:d1:5b:75:d3:4c:a4:a5:
        5b:1d:ea:73:27:c3:aa:c7:9c:ad:ae:67:9d:04:8c:26:
        ac:3f:29:a1:b0:7f:e4:58:a0:22:b0:75:a0:53:82:f5:
        a3:20:ce:a1:66:9d:85:12:af:dc:ba:4d:bd:6b:a0:7a:
        78:13:f2:ce:bd:ee:49:42:f9:50:70:73:eb:c4:ae:88:
        57:e7:3b:0c:fd:fe:ea:68:77:04:a3:47:17:61:04:51:
        74:f4:f4:fe:ae:bf:76:7b:46:94:90:4d:5f:75:72:ee:
        06:e7:70:13:14:31:20:fe:63:23:cb:47:7f:1a:fb:58:
        4f:43:c9:c4:0c:64:b6:df:43:79:8c:6b:c3:e6:a4:66:
        d1:3e:0a:43:86:a0:88:90:6d:84:86:ba:26:ad:f4:2e:
        e1:61:f3:d0:2f:11:35:ff:83:32:a3:dd:18:04:95:e3
    Fingerprint (SHA-256):
        16:59:31:75:7B:41:A0:0D:61:D4:FE:3D:EC:CB:4D:13:CE:25:19:35:07:43:0E:71:54:7C:9D:14:31:7A:49:45
    Fingerprint (SHA1):
        F1:4B:0D:D5:9B:29:1D:A7:E4:2A:94:B6:77:97:BC:2B:63:38:12:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11421: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11422: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11423: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11424: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11425: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11426: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11427: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11428: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11429: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121141 (0x1e67d4b5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:13:32 2017
            Not After : Tue May 10 12:13:32 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:d0:76:68:c5:7a:86:48:d8:aa:0d:a7:4b:ba:f1:e0:
                    c8:33:85:c8:e0:a6:13:cb:cd:e8:19:12:91:92:b4:39:
                    6f:65:2d:1c:30:2f:ea:52:51:26:4d:2d:bc:02:77:fe:
                    34:85:9c:5e:f9:27:3f:ec:c5:a8:f8:6b:7c:2c:e9:f4:
                    2f:43:35:48:b8:53:14:f5:bf:be:7a:51:27:c6:af:17:
                    d4:87:12:40:44:be:bb:bf:e5:73:11:23:2d:8f:95:83:
                    cd:c9:95:41:17:ca:27:93:6d:ba:1e:1e:f9:cc:14:f5:
                    76:04:2c:b5:58:73:d1:50:e5:68:ab:57:51:d4:7b:3f:
                    08:aa:72:a4:08:50:fe:2a:74:7f:45:00:19:5b:02:ea:
                    e2:e4:e6:ad:3b:14:4b:6b:47:6e:43:d2:15:b7:68:e9:
                    13:46:0f:8d:13:2f:77:2f:8b:55:b0:a7:47:83:18:cb:
                    c0:16:cc:43:0d:c1:c4:4a:e1:51:ba:e0:1d:f8:a8:63:
                    51:25:64:75:7b:ba:60:ad:73:01:83:80:4d:f4:cc:fb:
                    3a:1c:71:45:eb:8d:18:60:71:38:b1:06:af:4e:e4:c8:
                    fc:78:2d:0a:b2:34:11:ec:97:91:33:17:d6:6f:e3:66:
                    35:29:3c:f7:30:cd:8a:aa:9a:b3:fd:30:d8:f7:93:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:bf:22:d9:75:74:3e:1f:2d:9e:48:3d:cf:08:fa:cb:
        3f:8a:d5:48:44:05:a5:6f:df:c6:24:4c:a2:d6:c0:72:
        30:77:86:2f:ca:a3:23:da:0f:d6:66:d4:17:26:43:dc:
        23:2d:5e:25:5d:b1:e9:90:c9:38:ea:8a:fd:cc:a3:a0:
        cd:27:e6:c4:1c:58:9a:30:c7:be:10:1e:0e:01:22:00:
        99:20:b1:1b:ce:92:cc:01:d7:9c:88:c4:72:64:3a:c9:
        fd:1b:60:68:1a:bc:ba:4d:63:e9:7b:92:60:e0:f2:05:
        b8:4d:1c:6c:22:80:5a:ac:f0:f8:d7:07:f4:7d:83:d0:
        95:45:ce:56:48:93:95:3a:c8:08:f1:0a:e2:6d:79:7d:
        8d:57:55:af:58:21:c7:6c:b3:e6:54:61:27:a8:b2:b1:
        70:dc:da:1f:48:0b:2a:08:e7:23:6f:02:7f:99:58:46:
        22:98:16:20:40:e4:89:72:f6:12:f1:5c:70:39:23:62:
        a2:86:5a:c7:19:58:2e:ad:21:bc:1a:08:94:ef:ab:79:
        27:59:ea:50:67:6c:08:6c:db:45:8f:f9:dc:a1:fa:b0:
        2e:5b:59:44:47:68:b2:ad:5f:69:67:4d:06:b7:72:9e:
        3f:3a:49:aa:64:f0:0a:5f:57:74:37:c4:94:aa:3b:98
    Fingerprint (SHA-256):
        A4:A9:9A:19:3C:1C:4A:CB:31:26:37:7C:5E:50:6E:F5:DA:58:CA:73:F6:6C:32:B5:B3:20:63:54:A3:0C:7A:2D
    Fingerprint (SHA1):
        CE:DB:51:54:C1:2C:57:E1:44:7E:B6:B8:1E:37:A6:6E:32:18:88:82
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11430: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11431: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11432: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11433: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11434: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11435: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11436: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #11437: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #11438: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #11439: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #11440: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #11441: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #11442: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #11443: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11444: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11445: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #11446: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #11447: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11448: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121150 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11449: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11450: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11451: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11452: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121151   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11453: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11454: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11455: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11456: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121152   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11457: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11458: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11459: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11460: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 510121153   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11461: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11462: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11463: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11464: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510121154   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11465: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11466: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11467: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11468: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 510121155   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11469: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11470: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11471: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11472: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 510121156   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11473: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11474: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #11475: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11476: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 510121157   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11477: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11478: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11479: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11480: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 510121158   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11481: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11482: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11483: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121150 (0x1e67d4be)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:46 2017
            Not After : Tue May 10 12:13:46 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    40:bb:84:65:05:7d:96:b0:d0:41:43:72:88:4a:da:2c:
                    7c:53:9c:1c:ad:6a:de:5a:85:8e:c5:61:a1:cb:32:0f:
                    0e:4a:1b:1d:19:be:18:53:d0:73:ad:31:dd:4d:9f:01:
                    be:a8:2c:9a:15:7a:08:c9:55:d5:19:dd:d3:cd:da:6f:
                    e7:35:b2:53:c4:03:96:af:38:ca:5e:34:71:55:69:72:
                    05:1d:41:6f:ce:1d:e6:17:40:a3:6d:24:87:27:5f:b2:
                    3c:c5:30:e9:18:e8:70:e8:d4:90:e9:34:b2:cc:bd:2b:
                    66:6a:f8:dc:91:d5:17:a1:d2:b7:93:a4:6c:f3:d4:e0:
                    5f:8a:bd:e6:27:5e:6e:10:00:6b:c5:0d:66:74:55:49:
                    ee:55:99:80:bc:f8:dc:9f:09:cb:92:4c:7e:ce:e3:91:
                    16:a3:74:eb:2f:e0:32:7b:c4:b6:a6:80:69:ad:1c:54:
                    33:30:a3:96:ec:46:22:cd:dc:26:20:f0:ac:4f:9d:35:
                    d4:00:27:26:8e:c3:55:d6:78:96:d7:63:c0:8c:d5:5e:
                    8a:2f:60:28:cd:15:39:95:1e:61:f0:e0:7c:9d:7d:d5:
                    8a:b0:08:cc:62:80:92:b0:7d:8f:5b:92:49:10:19:93:
                    5f:40:d8:3b:3a:ec:a0:9b:50:b2:2b:b9:a2:0c:b9:9e
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:36:52:90:b0:4b:e0:08:bb:38:68:e6:76:
        fc:ba:b1:63:8a:b1:ee:81:68:a5:58:bf:d6:5e:91:d8:
        02:1c:06:a6:f1:79:65:f9:9b:dd:f0:22:a1:aa:5b:8d:
        bb:6b:ad:b8:cc:26:bb:05:9a:ed:c1:29:84:8f
    Fingerprint (SHA-256):
        E9:2D:8A:E0:C7:E1:7B:3B:9A:99:60:86:3F:BB:9E:E3:86:84:61:DB:FB:17:46:5C:04:30:AE:C4:4C:27:D2:56
    Fingerprint (SHA1):
        45:0E:0D:05:07:44:11:3A:AB:CB:F3:E5:2E:35:C4:3F:4D:70:66:B1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11484: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121150 (0x1e67d4be)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:46 2017
            Not After : Tue May 10 12:13:46 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    40:bb:84:65:05:7d:96:b0:d0:41:43:72:88:4a:da:2c:
                    7c:53:9c:1c:ad:6a:de:5a:85:8e:c5:61:a1:cb:32:0f:
                    0e:4a:1b:1d:19:be:18:53:d0:73:ad:31:dd:4d:9f:01:
                    be:a8:2c:9a:15:7a:08:c9:55:d5:19:dd:d3:cd:da:6f:
                    e7:35:b2:53:c4:03:96:af:38:ca:5e:34:71:55:69:72:
                    05:1d:41:6f:ce:1d:e6:17:40:a3:6d:24:87:27:5f:b2:
                    3c:c5:30:e9:18:e8:70:e8:d4:90:e9:34:b2:cc:bd:2b:
                    66:6a:f8:dc:91:d5:17:a1:d2:b7:93:a4:6c:f3:d4:e0:
                    5f:8a:bd:e6:27:5e:6e:10:00:6b:c5:0d:66:74:55:49:
                    ee:55:99:80:bc:f8:dc:9f:09:cb:92:4c:7e:ce:e3:91:
                    16:a3:74:eb:2f:e0:32:7b:c4:b6:a6:80:69:ad:1c:54:
                    33:30:a3:96:ec:46:22:cd:dc:26:20:f0:ac:4f:9d:35:
                    d4:00:27:26:8e:c3:55:d6:78:96:d7:63:c0:8c:d5:5e:
                    8a:2f:60:28:cd:15:39:95:1e:61:f0:e0:7c:9d:7d:d5:
                    8a:b0:08:cc:62:80:92:b0:7d:8f:5b:92:49:10:19:93:
                    5f:40:d8:3b:3a:ec:a0:9b:50:b2:2b:b9:a2:0c:b9:9e
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:36:52:90:b0:4b:e0:08:bb:38:68:e6:76:
        fc:ba:b1:63:8a:b1:ee:81:68:a5:58:bf:d6:5e:91:d8:
        02:1c:06:a6:f1:79:65:f9:9b:dd:f0:22:a1:aa:5b:8d:
        bb:6b:ad:b8:cc:26:bb:05:9a:ed:c1:29:84:8f
    Fingerprint (SHA-256):
        E9:2D:8A:E0:C7:E1:7B:3B:9A:99:60:86:3F:BB:9E:E3:86:84:61:DB:FB:17:46:5C:04:30:AE:C4:4C:27:D2:56
    Fingerprint (SHA1):
        45:0E:0D:05:07:44:11:3A:AB:CB:F3:E5:2E:35:C4:3F:4D:70:66:B1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11485: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121150 (0x1e67d4be)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:46 2017
            Not After : Tue May 10 12:13:46 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    40:bb:84:65:05:7d:96:b0:d0:41:43:72:88:4a:da:2c:
                    7c:53:9c:1c:ad:6a:de:5a:85:8e:c5:61:a1:cb:32:0f:
                    0e:4a:1b:1d:19:be:18:53:d0:73:ad:31:dd:4d:9f:01:
                    be:a8:2c:9a:15:7a:08:c9:55:d5:19:dd:d3:cd:da:6f:
                    e7:35:b2:53:c4:03:96:af:38:ca:5e:34:71:55:69:72:
                    05:1d:41:6f:ce:1d:e6:17:40:a3:6d:24:87:27:5f:b2:
                    3c:c5:30:e9:18:e8:70:e8:d4:90:e9:34:b2:cc:bd:2b:
                    66:6a:f8:dc:91:d5:17:a1:d2:b7:93:a4:6c:f3:d4:e0:
                    5f:8a:bd:e6:27:5e:6e:10:00:6b:c5:0d:66:74:55:49:
                    ee:55:99:80:bc:f8:dc:9f:09:cb:92:4c:7e:ce:e3:91:
                    16:a3:74:eb:2f:e0:32:7b:c4:b6:a6:80:69:ad:1c:54:
                    33:30:a3:96:ec:46:22:cd:dc:26:20:f0:ac:4f:9d:35:
                    d4:00:27:26:8e:c3:55:d6:78:96:d7:63:c0:8c:d5:5e:
                    8a:2f:60:28:cd:15:39:95:1e:61:f0:e0:7c:9d:7d:d5:
                    8a:b0:08:cc:62:80:92:b0:7d:8f:5b:92:49:10:19:93:
                    5f:40:d8:3b:3a:ec:a0:9b:50:b2:2b:b9:a2:0c:b9:9e
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:36:52:90:b0:4b:e0:08:bb:38:68:e6:76:
        fc:ba:b1:63:8a:b1:ee:81:68:a5:58:bf:d6:5e:91:d8:
        02:1c:06:a6:f1:79:65:f9:9b:dd:f0:22:a1:aa:5b:8d:
        bb:6b:ad:b8:cc:26:bb:05:9a:ed:c1:29:84:8f
    Fingerprint (SHA-256):
        E9:2D:8A:E0:C7:E1:7B:3B:9A:99:60:86:3F:BB:9E:E3:86:84:61:DB:FB:17:46:5C:04:30:AE:C4:4C:27:D2:56
    Fingerprint (SHA1):
        45:0E:0D:05:07:44:11:3A:AB:CB:F3:E5:2E:35:C4:3F:4D:70:66:B1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #11486: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121150 (0x1e67d4be)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:46 2017
            Not After : Tue May 10 12:13:46 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    40:bb:84:65:05:7d:96:b0:d0:41:43:72:88:4a:da:2c:
                    7c:53:9c:1c:ad:6a:de:5a:85:8e:c5:61:a1:cb:32:0f:
                    0e:4a:1b:1d:19:be:18:53:d0:73:ad:31:dd:4d:9f:01:
                    be:a8:2c:9a:15:7a:08:c9:55:d5:19:dd:d3:cd:da:6f:
                    e7:35:b2:53:c4:03:96:af:38:ca:5e:34:71:55:69:72:
                    05:1d:41:6f:ce:1d:e6:17:40:a3:6d:24:87:27:5f:b2:
                    3c:c5:30:e9:18:e8:70:e8:d4:90:e9:34:b2:cc:bd:2b:
                    66:6a:f8:dc:91:d5:17:a1:d2:b7:93:a4:6c:f3:d4:e0:
                    5f:8a:bd:e6:27:5e:6e:10:00:6b:c5:0d:66:74:55:49:
                    ee:55:99:80:bc:f8:dc:9f:09:cb:92:4c:7e:ce:e3:91:
                    16:a3:74:eb:2f:e0:32:7b:c4:b6:a6:80:69:ad:1c:54:
                    33:30:a3:96:ec:46:22:cd:dc:26:20:f0:ac:4f:9d:35:
                    d4:00:27:26:8e:c3:55:d6:78:96:d7:63:c0:8c:d5:5e:
                    8a:2f:60:28:cd:15:39:95:1e:61:f0:e0:7c:9d:7d:d5:
                    8a:b0:08:cc:62:80:92:b0:7d:8f:5b:92:49:10:19:93:
                    5f:40:d8:3b:3a:ec:a0:9b:50:b2:2b:b9:a2:0c:b9:9e
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:36:52:90:b0:4b:e0:08:bb:38:68:e6:76:
        fc:ba:b1:63:8a:b1:ee:81:68:a5:58:bf:d6:5e:91:d8:
        02:1c:06:a6:f1:79:65:f9:9b:dd:f0:22:a1:aa:5b:8d:
        bb:6b:ad:b8:cc:26:bb:05:9a:ed:c1:29:84:8f
    Fingerprint (SHA-256):
        E9:2D:8A:E0:C7:E1:7B:3B:9A:99:60:86:3F:BB:9E:E3:86:84:61:DB:FB:17:46:5C:04:30:AE:C4:4C:27:D2:56
    Fingerprint (SHA1):
        45:0E:0D:05:07:44:11:3A:AB:CB:F3:E5:2E:35:C4:3F:4D:70:66:B1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #11487: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11488: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11489: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11490: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #11491: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11492: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11493: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11494: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11495: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11496: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11497: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11498: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #11499: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11500: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11501: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11502: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #11503: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11504: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11505: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11506: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11507: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11508: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11509: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11510: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #11511: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11512: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11513: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11514: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510121406Z
nextupdate=20180510121406Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:14:06 2017
    Next Update: Thu May 10 12:14:06 2018
    CRL Extensions:
chains.sh: #11515: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121406Z
nextupdate=20180510121406Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:14:06 2017
    Next Update: Thu May 10 12:14:06 2018
    CRL Extensions:
chains.sh: #11516: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510121406Z
nextupdate=20180510121406Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:14:06 2017
    Next Update: Thu May 10 12:14:06 2018
    CRL Extensions:
chains.sh: #11517: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510121406Z
nextupdate=20180510121406Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:14:06 2017
    Next Update: Thu May 10 12:14:06 2018
    CRL Extensions:
chains.sh: #11518: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510121407Z
addcert 14 20170510121407Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:14:07 2017
    Next Update: Thu May 10 12:14:06 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed May 10 12:14:07 2017
    CRL Extensions:
chains.sh: #11519: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121408Z
addcert 15 20170510121408Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:14:08 2017
    Next Update: Thu May 10 12:14:06 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed May 10 12:14:08 2017
    CRL Extensions:
chains.sh: #11520: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11521: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11522: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #11523: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #11524: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #11525: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #11526: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #11527: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #11528: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #11529: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:57 2017
            Not After : Tue May 10 12:13:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:d9:6b:53:78:7f:75:17:0a:5e:3b:cb:ca:6c:ff:5a:
                    19:18:95:a5:58:eb:94:e2:31:a5:f8:ef:e7:63:dd:9f:
                    fe:2f:0a:d6:b6:76:07:21:29:0e:81:bf:6a:bd:67:58:
                    1e:55:7f:cf:f3:83:20:d6:cd:ec:03:2e:d2:51:27:5a:
                    39:8d:46:5d:38:fc:bd:38:4a:c3:56:20:50:2a:bc:e2:
                    f1:c4:01:2d:cb:e7:12:e9:46:63:fc:98:3f:27:cd:93:
                    50:6f:b5:8d:64:92:0f:04:97:bf:9d:0b:c5:d2:f9:5f:
                    ce:ca:66:5a:75:0b:55:33:d7:12:b0:31:d3:c3:a5:2e:
                    bd:96:2a:54:4c:d6:d3:76:cc:dc:9a:7a:1e:58:35:0c:
                    a8:11:e6:dd:b4:7b:b1:e8:7b:c0:b9:81:7d:91:63:01:
                    d3:80:f0:a0:1c:6c:2a:92:84:61:7f:76:fd:52:d1:07:
                    80:40:e0:1f:73:4e:46:bf:55:9b:24:e0:5d:bd:75:bd:
                    02:be:14:3c:9c:62:ba:66:4f:4f:d1:9d:b7:ff:49:f7:
                    dc:51:da:74:ea:e7:27:eb:90:8d:bc:fe:6e:f2:55:af:
                    c6:c4:99:f6:90:59:9e:6e:fd:76:de:49:d2:e9:80:3b:
                    9a:42:3a:75:e4:07:ef:33:6a:fe:af:c2:80:b2:02:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a7:bf:72:2c:3f:3d:a2:93:e8:10:d3:97:b5:d5:9c:79:
        06:c3:25:f7:0b:42:a5:30:00:0e:74:f9:7f:54:df:66:
        8c:91:b3:c6:33:26:97:d0:d3:07:c9:3b:d1:c6:75:b4:
        00:6c:07:13:0d:aa:ad:05:f9:8e:f0:d6:a7:fd:e1:6e:
        19:08:f4:9d:73:d8:d9:eb:a7:dc:f7:04:e4:91:26:f5:
        0c:21:a7:cb:97:8b:72:00:b6:2e:90:9e:ae:4e:5f:0f:
        fa:ae:63:f9:1c:99:04:d3:83:13:81:5b:d7:f5:90:49:
        57:86:42:4d:39:de:7c:0f:53:cf:31:17:fa:ba:0d:be:
        78:c3:7d:7d:6e:c8:69:46:74:b8:88:21:1b:8d:e6:49:
        f6:d7:ad:a8:39:2b:47:51:23:8d:eb:ee:a9:5a:fe:c3:
        75:2a:8f:53:3a:9d:4e:11:dd:ef:18:5d:f2:8d:48:07:
        b8:bc:40:9a:80:fc:34:8d:bb:97:f4:d4:da:48:41:82:
        6b:20:e6:c2:da:ed:83:3b:d9:83:65:05:1d:6c:5a:2e:
        b6:55:75:84:37:cb:39:86:38:e1:c4:43:e2:74:4a:15:
        0e:a9:a2:27:01:20:5f:d9:8f:f1:79:24:5d:d7:23:3b:
        57:8f:20:5f:0a:c9:95:43:52:7d:1a:50:9f:d7:d8:0c
    Fingerprint (SHA-256):
        97:4A:5C:0B:B5:B3:A5:3A:14:85:15:2F:FA:DF:9F:1F:CD:C9:3B:C4:62:99:FD:16:E1:84:86:0E:C9:FB:25:77
    Fingerprint (SHA1):
        85:BF:A7:A2:F9:4B:B8:F5:4E:0B:C3:47:F9:CB:F9:C4:06:C5:34:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11530: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11531: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:57 2017
            Not After : Tue May 10 12:13:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:d9:6b:53:78:7f:75:17:0a:5e:3b:cb:ca:6c:ff:5a:
                    19:18:95:a5:58:eb:94:e2:31:a5:f8:ef:e7:63:dd:9f:
                    fe:2f:0a:d6:b6:76:07:21:29:0e:81:bf:6a:bd:67:58:
                    1e:55:7f:cf:f3:83:20:d6:cd:ec:03:2e:d2:51:27:5a:
                    39:8d:46:5d:38:fc:bd:38:4a:c3:56:20:50:2a:bc:e2:
                    f1:c4:01:2d:cb:e7:12:e9:46:63:fc:98:3f:27:cd:93:
                    50:6f:b5:8d:64:92:0f:04:97:bf:9d:0b:c5:d2:f9:5f:
                    ce:ca:66:5a:75:0b:55:33:d7:12:b0:31:d3:c3:a5:2e:
                    bd:96:2a:54:4c:d6:d3:76:cc:dc:9a:7a:1e:58:35:0c:
                    a8:11:e6:dd:b4:7b:b1:e8:7b:c0:b9:81:7d:91:63:01:
                    d3:80:f0:a0:1c:6c:2a:92:84:61:7f:76:fd:52:d1:07:
                    80:40:e0:1f:73:4e:46:bf:55:9b:24:e0:5d:bd:75:bd:
                    02:be:14:3c:9c:62:ba:66:4f:4f:d1:9d:b7:ff:49:f7:
                    dc:51:da:74:ea:e7:27:eb:90:8d:bc:fe:6e:f2:55:af:
                    c6:c4:99:f6:90:59:9e:6e:fd:76:de:49:d2:e9:80:3b:
                    9a:42:3a:75:e4:07:ef:33:6a:fe:af:c2:80:b2:02:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a7:bf:72:2c:3f:3d:a2:93:e8:10:d3:97:b5:d5:9c:79:
        06:c3:25:f7:0b:42:a5:30:00:0e:74:f9:7f:54:df:66:
        8c:91:b3:c6:33:26:97:d0:d3:07:c9:3b:d1:c6:75:b4:
        00:6c:07:13:0d:aa:ad:05:f9:8e:f0:d6:a7:fd:e1:6e:
        19:08:f4:9d:73:d8:d9:eb:a7:dc:f7:04:e4:91:26:f5:
        0c:21:a7:cb:97:8b:72:00:b6:2e:90:9e:ae:4e:5f:0f:
        fa:ae:63:f9:1c:99:04:d3:83:13:81:5b:d7:f5:90:49:
        57:86:42:4d:39:de:7c:0f:53:cf:31:17:fa:ba:0d:be:
        78:c3:7d:7d:6e:c8:69:46:74:b8:88:21:1b:8d:e6:49:
        f6:d7:ad:a8:39:2b:47:51:23:8d:eb:ee:a9:5a:fe:c3:
        75:2a:8f:53:3a:9d:4e:11:dd:ef:18:5d:f2:8d:48:07:
        b8:bc:40:9a:80:fc:34:8d:bb:97:f4:d4:da:48:41:82:
        6b:20:e6:c2:da:ed:83:3b:d9:83:65:05:1d:6c:5a:2e:
        b6:55:75:84:37:cb:39:86:38:e1:c4:43:e2:74:4a:15:
        0e:a9:a2:27:01:20:5f:d9:8f:f1:79:24:5d:d7:23:3b:
        57:8f:20:5f:0a:c9:95:43:52:7d:1a:50:9f:d7:d8:0c
    Fingerprint (SHA-256):
        97:4A:5C:0B:B5:B3:A5:3A:14:85:15:2F:FA:DF:9F:1F:CD:C9:3B:C4:62:99:FD:16:E1:84:86:0E:C9:FB:25:77
    Fingerprint (SHA1):
        85:BF:A7:A2:F9:4B:B8:F5:4E:0B:C3:47:F9:CB:F9:C4:06:C5:34:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11532: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11533: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11534: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121159 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11535: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11536: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #11537: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11538: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 510121160   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11539: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11540: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11541: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510121050.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11542: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510121035.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11543: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11544: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #11545: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510121050.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11546: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 510121161   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11547: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11548: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11549: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510121050.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11550: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510121036.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11551: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11552: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #11553: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11554: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 510121162   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11555: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11556: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11557: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510121050.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11558: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510121037.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11559: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11560: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11561: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510121050.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11562: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510121038.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11563: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11564: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510121422Z
nextupdate=20180510121422Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:14:22 2017
    Next Update: Thu May 10 12:14:22 2018
    CRL Extensions:
chains.sh: #11565: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121422Z
nextupdate=20180510121422Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:14:22 2017
    Next Update: Thu May 10 12:14:22 2018
    CRL Extensions:
chains.sh: #11566: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510121422Z
nextupdate=20180510121422Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:14:22 2017
    Next Update: Thu May 10 12:14:22 2018
    CRL Extensions:
chains.sh: #11567: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510121423Z
nextupdate=20180510121423Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:14:23 2017
    Next Update: Thu May 10 12:14:23 2018
    CRL Extensions:
chains.sh: #11568: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121424Z
addcert 20 20170510121424Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:14:24 2017
    Next Update: Thu May 10 12:14:22 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:14:24 2017
    CRL Extensions:
chains.sh: #11569: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121425Z
addcert 40 20170510121425Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:14:25 2017
    Next Update: Thu May 10 12:14:22 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:14:24 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 12:14:25 2017
    CRL Extensions:
chains.sh: #11570: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11571: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11572: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #11573: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121159 (0x1e67d4c7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:14:11 2017
            Not After : Tue May 10 12:14:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:be:ed:b9:47:c1:6f:5e:fe:97:ef:93:de:91:c3:d3:
                    c5:dd:53:28:c5:be:4c:44:bf:ab:aa:8c:ba:fd:ad:e1:
                    df:a9:5e:30:43:b1:57:84:fd:80:04:3a:1d:1c:fc:3a:
                    c0:a7:08:b8:fa:6b:67:dd:f8:56:1b:8f:2b:74:11:9c:
                    44:51:af:ac:d2:24:f7:62:d5:95:06:f6:ca:54:3e:fe:
                    94:a2:62:17:8b:15:61:91:73:6b:7c:4d:b7:3c:30:9f:
                    82:66:2d:3c:fa:5e:36:a8:11:7e:72:7d:a5:cf:9e:b7:
                    87:03:43:8a:44:8d:ae:ba:c3:08:f4:0c:fd:2a:41:2e:
                    5a:d3:5e:2e:21:c9:71:ca:c5:08:5e:7f:01:42:a7:db:
                    37:7f:31:96:9d:4d:06:b1:84:dc:f4:83:7f:30:cb:a4:
                    94:af:c2:4b:4d:eb:0d:13:ed:63:12:44:fa:a2:30:01:
                    57:15:52:11:e9:cc:c2:0d:2f:ec:36:c1:6e:c9:f2:ea:
                    25:e6:02:f2:e6:33:f8:13:e1:49:70:b6:20:62:ac:66:
                    e5:4f:48:68:cb:4f:bc:69:51:6e:e3:67:f3:ad:7e:de:
                    19:db:a2:17:54:db:ba:de:fc:65:e2:53:4d:03:97:15:
                    1d:bc:53:83:83:cc:a3:87:e0:a2:7c:dc:91:d8:f0:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:28:bb:5a:b7:a0:b2:07:26:57:7c:55:8f:3a:02:be:
        b1:1c:ce:be:62:4e:f3:c3:3d:ca:cd:4b:72:8e:09:2b:
        01:fc:5d:b5:4b:ca:93:b4:0c:5c:ad:f8:ca:fa:f4:48:
        32:7c:41:21:6a:3c:56:5b:28:6c:71:54:c3:78:a7:18:
        6d:a2:1f:00:b4:3f:05:99:20:b1:a6:7e:c8:8b:21:ab:
        cb:45:5b:b3:c2:a8:04:3e:d4:9d:9e:ff:84:32:fe:26:
        52:e0:e0:e8:8e:eb:5f:44:10:97:12:bc:3f:e3:90:8a:
        a2:71:bf:08:17:c1:89:17:20:16:95:c2:9f:dc:f2:6c:
        cb:d6:bc:a0:1a:26:7e:0d:de:54:3c:eb:af:ec:d1:2d:
        46:81:eb:00:ec:26:e3:1e:29:fe:4f:ee:9d:b2:99:99:
        10:de:17:76:88:7c:3b:e3:a2:0f:e3:8e:d0:c8:65:d8:
        7a:fb:f1:49:7a:81:40:90:2f:07:b5:b5:ec:ed:66:42:
        81:6c:b0:c0:68:63:c0:67:fc:4d:2e:f9:55:55:d5:af:
        a1:9c:d5:9d:96:a9:78:17:3f:77:99:fe:60:14:ff:a9:
        3d:f3:72:91:53:aa:56:2c:03:7c:53:eb:e0:25:d4:8d:
        b5:cd:df:3f:7a:cb:12:a7:4f:06:e5:49:31:6e:ab:7b
    Fingerprint (SHA-256):
        A4:40:91:2D:AC:25:F9:FA:EC:5B:A1:4B:11:9A:CF:F6:0C:4B:1A:51:28:3A:9C:84:04:14:17:D3:7C:9A:69:52
    Fingerprint (SHA1):
        A8:A5:C5:A1:0C:5E:58:43:8D:84:CF:EF:9A:9B:B7:26:2E:17:50:69
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11574: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11575: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121159 (0x1e67d4c7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:14:11 2017
            Not After : Tue May 10 12:14:11 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:be:ed:b9:47:c1:6f:5e:fe:97:ef:93:de:91:c3:d3:
                    c5:dd:53:28:c5:be:4c:44:bf:ab:aa:8c:ba:fd:ad:e1:
                    df:a9:5e:30:43:b1:57:84:fd:80:04:3a:1d:1c:fc:3a:
                    c0:a7:08:b8:fa:6b:67:dd:f8:56:1b:8f:2b:74:11:9c:
                    44:51:af:ac:d2:24:f7:62:d5:95:06:f6:ca:54:3e:fe:
                    94:a2:62:17:8b:15:61:91:73:6b:7c:4d:b7:3c:30:9f:
                    82:66:2d:3c:fa:5e:36:a8:11:7e:72:7d:a5:cf:9e:b7:
                    87:03:43:8a:44:8d:ae:ba:c3:08:f4:0c:fd:2a:41:2e:
                    5a:d3:5e:2e:21:c9:71:ca:c5:08:5e:7f:01:42:a7:db:
                    37:7f:31:96:9d:4d:06:b1:84:dc:f4:83:7f:30:cb:a4:
                    94:af:c2:4b:4d:eb:0d:13:ed:63:12:44:fa:a2:30:01:
                    57:15:52:11:e9:cc:c2:0d:2f:ec:36:c1:6e:c9:f2:ea:
                    25:e6:02:f2:e6:33:f8:13:e1:49:70:b6:20:62:ac:66:
                    e5:4f:48:68:cb:4f:bc:69:51:6e:e3:67:f3:ad:7e:de:
                    19:db:a2:17:54:db:ba:de:fc:65:e2:53:4d:03:97:15:
                    1d:bc:53:83:83:cc:a3:87:e0:a2:7c:dc:91:d8:f0:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:28:bb:5a:b7:a0:b2:07:26:57:7c:55:8f:3a:02:be:
        b1:1c:ce:be:62:4e:f3:c3:3d:ca:cd:4b:72:8e:09:2b:
        01:fc:5d:b5:4b:ca:93:b4:0c:5c:ad:f8:ca:fa:f4:48:
        32:7c:41:21:6a:3c:56:5b:28:6c:71:54:c3:78:a7:18:
        6d:a2:1f:00:b4:3f:05:99:20:b1:a6:7e:c8:8b:21:ab:
        cb:45:5b:b3:c2:a8:04:3e:d4:9d:9e:ff:84:32:fe:26:
        52:e0:e0:e8:8e:eb:5f:44:10:97:12:bc:3f:e3:90:8a:
        a2:71:bf:08:17:c1:89:17:20:16:95:c2:9f:dc:f2:6c:
        cb:d6:bc:a0:1a:26:7e:0d:de:54:3c:eb:af:ec:d1:2d:
        46:81:eb:00:ec:26:e3:1e:29:fe:4f:ee:9d:b2:99:99:
        10:de:17:76:88:7c:3b:e3:a2:0f:e3:8e:d0:c8:65:d8:
        7a:fb:f1:49:7a:81:40:90:2f:07:b5:b5:ec:ed:66:42:
        81:6c:b0:c0:68:63:c0:67:fc:4d:2e:f9:55:55:d5:af:
        a1:9c:d5:9d:96:a9:78:17:3f:77:99:fe:60:14:ff:a9:
        3d:f3:72:91:53:aa:56:2c:03:7c:53:eb:e0:25:d4:8d:
        b5:cd:df:3f:7a:cb:12:a7:4f:06:e5:49:31:6e:ab:7b
    Fingerprint (SHA-256):
        A4:40:91:2D:AC:25:F9:FA:EC:5B:A1:4B:11:9A:CF:F6:0C:4B:1A:51:28:3A:9C:84:04:14:17:D3:7C:9A:69:52
    Fingerprint (SHA1):
        A8:A5:C5:A1:0C:5E:58:43:8D:84:CF:EF:9A:9B:B7:26:2E:17:50:69
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11576: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11577: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11578: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121163 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11579: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11580: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11581: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11582: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510121164   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11583: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11584: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11585: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11586: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121165   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11587: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11588: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11589: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11590: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 510121166   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11591: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11592: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #11593: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121167 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11594: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #11595: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #11596: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11597: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 510121168   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11598: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11599: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11600: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11601: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 510121169   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11602: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11603: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #11604: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #11605: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #11606: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121163 (0x1e67d4cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:27 2017
            Not After : Tue May 10 12:14:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:53:c4:8a:62:3a:da:88:22:96:5d:33:8a:a8:70:64:
                    24:0c:1f:ee:0c:5d:28:9a:6e:0f:ef:f7:55:d0:89:97:
                    ff:33:79:93:cf:10:a8:6d:1f:6f:a4:b2:01:d1:30:5c:
                    3b:b3:a2:f1:e6:f5:74:7e:d3:f9:5f:2e:be:50:c5:63:
                    6a:e3:08:60:ed:95:c4:e8:12:a2:9a:91:94:a2:f1:50:
                    7a:9d:e5:f0:14:bd:05:98:c7:ba:7f:cc:6f:33:f1:36:
                    8c:6d:ae:f5:1e:f9:e6:6c:72:8a:11:7e:16:10:81:a9:
                    78:fa:48:a8:f3:c1:1e:3e:33:97:4e:65:a3:74:99:a2:
                    c6:d5:ba:d3:a2:47:f9:d4:35:85:88:d4:71:98:6e:2a:
                    0b:b9:10:b2:0d:5c:27:41:0a:a7:3c:94:2e:a4:9e:c2:
                    7d:83:7b:1d:70:97:93:a2:e1:96:b2:b9:c8:d4:c8:de:
                    7e:1a:9e:d1:8e:61:3e:61:cf:7e:3a:cd:fa:80:76:c5:
                    b3:6c:92:61:38:ad:34:d5:d5:c6:bb:73:73:91:f1:77:
                    84:5d:32:d9:53:91:27:27:3d:05:95:dd:0d:b8:ad:f9:
                    0d:bc:71:3c:50:bb:f5:7a:cb:5c:13:f0:21:15:7d:54:
                    76:ab:61:42:08:d4:ed:cc:14:c6:8c:08:48:f1:b9:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:68:bd:1f:1b:a0:36:aa:27:4e:ba:09:be:22:67:dd:
        e3:b1:98:06:ad:fb:c3:98:c5:15:0f:bc:b8:ae:b0:1d:
        5d:ca:b6:83:57:6b:20:52:07:4f:18:12:bf:5b:c2:db:
        c2:68:cd:91:e1:5b:b2:f0:37:11:d2:32:48:79:a6:8a:
        95:f0:c6:70:7d:96:ac:ba:da:7d:76:86:a1:f3:a3:9f:
        30:0a:89:8a:57:fb:a8:6f:7c:67:f3:c9:5d:64:33:64:
        27:20:f6:4f:86:fb:ed:a9:32:f6:74:45:23:05:df:92:
        46:ea:5b:c3:f7:33:7c:9d:62:1a:8d:6a:d3:c6:2b:65:
        7f:81:6e:61:e3:3c:64:6e:71:aa:2d:99:3c:1b:bf:a1:
        98:57:04:8d:63:cd:2f:25:9b:e7:67:2d:b5:b4:9d:fc:
        d0:74:0f:c3:89:a1:40:35:e5:68:5a:a6:ce:02:61:6e:
        04:85:f2:be:81:77:0a:db:12:42:f7:a0:e3:d9:28:c6:
        50:2b:95:83:98:08:ef:01:c7:10:f2:af:d0:58:aa:f5:
        ea:bd:3a:ea:65:64:c5:0d:b8:e2:a1:4f:a9:7f:2b:1d:
        c8:58:66:49:08:b0:6b:ea:df:5d:5f:9c:03:9f:a2:e4:
        d4:1d:1b:12:50:3c:dc:b9:48:e5:1b:f5:a9:14:6f:9c
    Fingerprint (SHA-256):
        00:27:1F:03:3C:69:82:DE:34:F1:86:E7:5E:9D:0C:38:FC:32:88:55:5F:C9:CA:1A:AA:DB:94:3A:ED:2F:7D:3B
    Fingerprint (SHA1):
        D5:F7:2F:41:70:23:86:EB:F2:FD:3E:6C:B3:29:0C:74:F0:9E:22:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11607: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121165 (0x1e67d4cd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:14:30 2017
            Not After : Tue May 10 12:14:30 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:09:29:ca:7a:bd:e1:7a:58:04:42:4d:0c:00:fa:0a:
                    8a:7f:9e:cc:41:67:67:f3:aa:fe:21:95:a8:7b:47:d5:
                    a3:18:77:b6:94:b7:85:5a:ce:fd:90:b4:5f:96:28:88:
                    50:41:b6:6f:35:7d:b1:94:0a:9d:73:76:3a:69:d6:85:
                    1a:91:de:66:03:38:6a:cf:de:99:0f:33:8a:f5:ca:f1:
                    3f:2a:23:23:84:97:2d:87:82:15:a0:f6:7f:f0:36:55:
                    47:03:82:67:6e:20:73:9e:b6:6e:ea:6a:55:7f:cd:db:
                    12:a8:5b:8d:64:2b:95:33:4e:42:0c:81:45:57:8e:3e:
                    79:f5:b6:c2:9e:bc:36:37:73:4c:7d:97:cf:08:6b:4e:
                    2b:31:a7:85:71:65:f4:ec:a2:3d:f6:7c:60:77:be:b2:
                    07:14:ae:f4:50:e2:ba:f4:fb:e2:07:49:0f:9d:70:d7:
                    99:65:a1:b5:7d:d6:a1:12:17:1c:b1:07:dd:d8:43:4a:
                    69:8c:07:e4:95:b5:62:f3:42:62:1b:fd:d4:7f:af:88:
                    6c:3e:53:38:81:47:ee:4d:eb:19:c9:66:db:39:ae:f5:
                    6e:08:89:43:a5:09:14:6d:2f:90:61:73:14:21:21:96:
                    da:94:5b:a0:22:f9:43:c0:1d:0c:22:95:33:1a:06:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:da:17:1a:84:be:b1:2a:88:49:aa:26:5f:4e:ac:8f:
        8e:56:bc:6c:e7:e2:6e:8b:ba:ca:67:9e:19:98:62:5e:
        10:01:ff:ef:a2:1d:07:e9:8a:02:64:ef:3d:be:cb:af:
        8b:cc:ea:2b:0e:be:90:43:4e:72:5d:a2:bf:50:f2:88:
        ad:a4:75:07:a7:05:41:6b:1c:da:83:6e:e1:69:05:b8:
        85:65:01:b0:39:da:b5:77:cd:88:53:f8:af:b3:16:0c:
        50:23:f8:ff:25:76:c6:da:98:0c:f4:01:65:03:33:1a:
        99:6c:c0:56:b4:7e:51:84:40:a4:ed:8f:c4:a3:9c:c2:
        2c:66:31:a9:92:f3:e2:73:cf:a7:73:91:cf:a2:4a:19:
        7d:8f:59:58:44:99:44:86:bd:21:27:5f:64:35:d3:01:
        45:8c:5d:e4:be:57:3c:83:d8:9b:f0:a7:30:ad:72:b6:
        37:4e:9f:51:8e:1b:00:d4:39:cd:92:33:fa:29:d0:bc:
        a4:10:14:da:94:85:ef:64:e5:b3:5d:38:76:df:2f:8a:
        f0:ec:ac:59:87:20:c4:d2:77:98:d5:77:32:3a:e6:58:
        6f:fb:d1:b0:8e:ff:c7:0a:1d:c0:a8:14:42:fa:5c:26:
        d9:f7:c7:31:58:b9:80:e9:2a:16:3b:a9:80:37:2c:c3
    Fingerprint (SHA-256):
        8F:8E:D7:2F:4E:AB:CB:2B:1C:AF:AD:8C:5C:D1:31:19:ED:00:8C:B2:F3:C8:F5:D1:C6:D7:84:51:F7:72:C0:98
    Fingerprint (SHA1):
        44:F2:30:C9:E5:BB:52:43:81:BF:42:20:9F:BD:0A:91:79:95:77:D3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11608: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121163 (0x1e67d4cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:27 2017
            Not After : Tue May 10 12:14:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:53:c4:8a:62:3a:da:88:22:96:5d:33:8a:a8:70:64:
                    24:0c:1f:ee:0c:5d:28:9a:6e:0f:ef:f7:55:d0:89:97:
                    ff:33:79:93:cf:10:a8:6d:1f:6f:a4:b2:01:d1:30:5c:
                    3b:b3:a2:f1:e6:f5:74:7e:d3:f9:5f:2e:be:50:c5:63:
                    6a:e3:08:60:ed:95:c4:e8:12:a2:9a:91:94:a2:f1:50:
                    7a:9d:e5:f0:14:bd:05:98:c7:ba:7f:cc:6f:33:f1:36:
                    8c:6d:ae:f5:1e:f9:e6:6c:72:8a:11:7e:16:10:81:a9:
                    78:fa:48:a8:f3:c1:1e:3e:33:97:4e:65:a3:74:99:a2:
                    c6:d5:ba:d3:a2:47:f9:d4:35:85:88:d4:71:98:6e:2a:
                    0b:b9:10:b2:0d:5c:27:41:0a:a7:3c:94:2e:a4:9e:c2:
                    7d:83:7b:1d:70:97:93:a2:e1:96:b2:b9:c8:d4:c8:de:
                    7e:1a:9e:d1:8e:61:3e:61:cf:7e:3a:cd:fa:80:76:c5:
                    b3:6c:92:61:38:ad:34:d5:d5:c6:bb:73:73:91:f1:77:
                    84:5d:32:d9:53:91:27:27:3d:05:95:dd:0d:b8:ad:f9:
                    0d:bc:71:3c:50:bb:f5:7a:cb:5c:13:f0:21:15:7d:54:
                    76:ab:61:42:08:d4:ed:cc:14:c6:8c:08:48:f1:b9:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:68:bd:1f:1b:a0:36:aa:27:4e:ba:09:be:22:67:dd:
        e3:b1:98:06:ad:fb:c3:98:c5:15:0f:bc:b8:ae:b0:1d:
        5d:ca:b6:83:57:6b:20:52:07:4f:18:12:bf:5b:c2:db:
        c2:68:cd:91:e1:5b:b2:f0:37:11:d2:32:48:79:a6:8a:
        95:f0:c6:70:7d:96:ac:ba:da:7d:76:86:a1:f3:a3:9f:
        30:0a:89:8a:57:fb:a8:6f:7c:67:f3:c9:5d:64:33:64:
        27:20:f6:4f:86:fb:ed:a9:32:f6:74:45:23:05:df:92:
        46:ea:5b:c3:f7:33:7c:9d:62:1a:8d:6a:d3:c6:2b:65:
        7f:81:6e:61:e3:3c:64:6e:71:aa:2d:99:3c:1b:bf:a1:
        98:57:04:8d:63:cd:2f:25:9b:e7:67:2d:b5:b4:9d:fc:
        d0:74:0f:c3:89:a1:40:35:e5:68:5a:a6:ce:02:61:6e:
        04:85:f2:be:81:77:0a:db:12:42:f7:a0:e3:d9:28:c6:
        50:2b:95:83:98:08:ef:01:c7:10:f2:af:d0:58:aa:f5:
        ea:bd:3a:ea:65:64:c5:0d:b8:e2:a1:4f:a9:7f:2b:1d:
        c8:58:66:49:08:b0:6b:ea:df:5d:5f:9c:03:9f:a2:e4:
        d4:1d:1b:12:50:3c:dc:b9:48:e5:1b:f5:a9:14:6f:9c
    Fingerprint (SHA-256):
        00:27:1F:03:3C:69:82:DE:34:F1:86:E7:5E:9D:0C:38:FC:32:88:55:5F:C9:CA:1A:AA:DB:94:3A:ED:2F:7D:3B
    Fingerprint (SHA1):
        D5:F7:2F:41:70:23:86:EB:F2:FD:3E:6C:B3:29:0C:74:F0:9E:22:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11609: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #11610: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121163 (0x1e67d4cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:27 2017
            Not After : Tue May 10 12:14:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:53:c4:8a:62:3a:da:88:22:96:5d:33:8a:a8:70:64:
                    24:0c:1f:ee:0c:5d:28:9a:6e:0f:ef:f7:55:d0:89:97:
                    ff:33:79:93:cf:10:a8:6d:1f:6f:a4:b2:01:d1:30:5c:
                    3b:b3:a2:f1:e6:f5:74:7e:d3:f9:5f:2e:be:50:c5:63:
                    6a:e3:08:60:ed:95:c4:e8:12:a2:9a:91:94:a2:f1:50:
                    7a:9d:e5:f0:14:bd:05:98:c7:ba:7f:cc:6f:33:f1:36:
                    8c:6d:ae:f5:1e:f9:e6:6c:72:8a:11:7e:16:10:81:a9:
                    78:fa:48:a8:f3:c1:1e:3e:33:97:4e:65:a3:74:99:a2:
                    c6:d5:ba:d3:a2:47:f9:d4:35:85:88:d4:71:98:6e:2a:
                    0b:b9:10:b2:0d:5c:27:41:0a:a7:3c:94:2e:a4:9e:c2:
                    7d:83:7b:1d:70:97:93:a2:e1:96:b2:b9:c8:d4:c8:de:
                    7e:1a:9e:d1:8e:61:3e:61:cf:7e:3a:cd:fa:80:76:c5:
                    b3:6c:92:61:38:ad:34:d5:d5:c6:bb:73:73:91:f1:77:
                    84:5d:32:d9:53:91:27:27:3d:05:95:dd:0d:b8:ad:f9:
                    0d:bc:71:3c:50:bb:f5:7a:cb:5c:13:f0:21:15:7d:54:
                    76:ab:61:42:08:d4:ed:cc:14:c6:8c:08:48:f1:b9:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:68:bd:1f:1b:a0:36:aa:27:4e:ba:09:be:22:67:dd:
        e3:b1:98:06:ad:fb:c3:98:c5:15:0f:bc:b8:ae:b0:1d:
        5d:ca:b6:83:57:6b:20:52:07:4f:18:12:bf:5b:c2:db:
        c2:68:cd:91:e1:5b:b2:f0:37:11:d2:32:48:79:a6:8a:
        95:f0:c6:70:7d:96:ac:ba:da:7d:76:86:a1:f3:a3:9f:
        30:0a:89:8a:57:fb:a8:6f:7c:67:f3:c9:5d:64:33:64:
        27:20:f6:4f:86:fb:ed:a9:32:f6:74:45:23:05:df:92:
        46:ea:5b:c3:f7:33:7c:9d:62:1a:8d:6a:d3:c6:2b:65:
        7f:81:6e:61:e3:3c:64:6e:71:aa:2d:99:3c:1b:bf:a1:
        98:57:04:8d:63:cd:2f:25:9b:e7:67:2d:b5:b4:9d:fc:
        d0:74:0f:c3:89:a1:40:35:e5:68:5a:a6:ce:02:61:6e:
        04:85:f2:be:81:77:0a:db:12:42:f7:a0:e3:d9:28:c6:
        50:2b:95:83:98:08:ef:01:c7:10:f2:af:d0:58:aa:f5:
        ea:bd:3a:ea:65:64:c5:0d:b8:e2:a1:4f:a9:7f:2b:1d:
        c8:58:66:49:08:b0:6b:ea:df:5d:5f:9c:03:9f:a2:e4:
        d4:1d:1b:12:50:3c:dc:b9:48:e5:1b:f5:a9:14:6f:9c
    Fingerprint (SHA-256):
        00:27:1F:03:3C:69:82:DE:34:F1:86:E7:5E:9D:0C:38:FC:32:88:55:5F:C9:CA:1A:AA:DB:94:3A:ED:2F:7D:3B
    Fingerprint (SHA1):
        D5:F7:2F:41:70:23:86:EB:F2:FD:3E:6C:B3:29:0C:74:F0:9E:22:7B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11611: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121165 (0x1e67d4cd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:14:30 2017
            Not After : Tue May 10 12:14:30 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:09:29:ca:7a:bd:e1:7a:58:04:42:4d:0c:00:fa:0a:
                    8a:7f:9e:cc:41:67:67:f3:aa:fe:21:95:a8:7b:47:d5:
                    a3:18:77:b6:94:b7:85:5a:ce:fd:90:b4:5f:96:28:88:
                    50:41:b6:6f:35:7d:b1:94:0a:9d:73:76:3a:69:d6:85:
                    1a:91:de:66:03:38:6a:cf:de:99:0f:33:8a:f5:ca:f1:
                    3f:2a:23:23:84:97:2d:87:82:15:a0:f6:7f:f0:36:55:
                    47:03:82:67:6e:20:73:9e:b6:6e:ea:6a:55:7f:cd:db:
                    12:a8:5b:8d:64:2b:95:33:4e:42:0c:81:45:57:8e:3e:
                    79:f5:b6:c2:9e:bc:36:37:73:4c:7d:97:cf:08:6b:4e:
                    2b:31:a7:85:71:65:f4:ec:a2:3d:f6:7c:60:77:be:b2:
                    07:14:ae:f4:50:e2:ba:f4:fb:e2:07:49:0f:9d:70:d7:
                    99:65:a1:b5:7d:d6:a1:12:17:1c:b1:07:dd:d8:43:4a:
                    69:8c:07:e4:95:b5:62:f3:42:62:1b:fd:d4:7f:af:88:
                    6c:3e:53:38:81:47:ee:4d:eb:19:c9:66:db:39:ae:f5:
                    6e:08:89:43:a5:09:14:6d:2f:90:61:73:14:21:21:96:
                    da:94:5b:a0:22:f9:43:c0:1d:0c:22:95:33:1a:06:b1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:da:17:1a:84:be:b1:2a:88:49:aa:26:5f:4e:ac:8f:
        8e:56:bc:6c:e7:e2:6e:8b:ba:ca:67:9e:19:98:62:5e:
        10:01:ff:ef:a2:1d:07:e9:8a:02:64:ef:3d:be:cb:af:
        8b:cc:ea:2b:0e:be:90:43:4e:72:5d:a2:bf:50:f2:88:
        ad:a4:75:07:a7:05:41:6b:1c:da:83:6e:e1:69:05:b8:
        85:65:01:b0:39:da:b5:77:cd:88:53:f8:af:b3:16:0c:
        50:23:f8:ff:25:76:c6:da:98:0c:f4:01:65:03:33:1a:
        99:6c:c0:56:b4:7e:51:84:40:a4:ed:8f:c4:a3:9c:c2:
        2c:66:31:a9:92:f3:e2:73:cf:a7:73:91:cf:a2:4a:19:
        7d:8f:59:58:44:99:44:86:bd:21:27:5f:64:35:d3:01:
        45:8c:5d:e4:be:57:3c:83:d8:9b:f0:a7:30:ad:72:b6:
        37:4e:9f:51:8e:1b:00:d4:39:cd:92:33:fa:29:d0:bc:
        a4:10:14:da:94:85:ef:64:e5:b3:5d:38:76:df:2f:8a:
        f0:ec:ac:59:87:20:c4:d2:77:98:d5:77:32:3a:e6:58:
        6f:fb:d1:b0:8e:ff:c7:0a:1d:c0:a8:14:42:fa:5c:26:
        d9:f7:c7:31:58:b9:80:e9:2a:16:3b:a9:80:37:2c:c3
    Fingerprint (SHA-256):
        8F:8E:D7:2F:4E:AB:CB:2B:1C:AF:AD:8C:5C:D1:31:19:ED:00:8C:B2:F3:C8:F5:D1:C6:D7:84:51:F7:72:C0:98
    Fingerprint (SHA1):
        44:F2:30:C9:E5:BB:52:43:81:BF:42:20:9F:BD:0A:91:79:95:77:D3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11612: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #11613: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #11614: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #11615: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121163 (0x1e67d4cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:27 2017
            Not After : Tue May 10 12:14:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:53:c4:8a:62:3a:da:88:22:96:5d:33:8a:a8:70:64:
                    24:0c:1f:ee:0c:5d:28:9a:6e:0f:ef:f7:55:d0:89:97:
                    ff:33:79:93:cf:10:a8:6d:1f:6f:a4:b2:01:d1:30:5c:
                    3b:b3:a2:f1:e6:f5:74:7e:d3:f9:5f:2e:be:50:c5:63:
                    6a:e3:08:60:ed:95:c4:e8:12:a2:9a:91:94:a2:f1:50:
                    7a:9d:e5:f0:14:bd:05:98:c7:ba:7f:cc:6f:33:f1:36:
                    8c:6d:ae:f5:1e:f9:e6:6c:72:8a:11:7e:16:10:81:a9:
                    78:fa:48:a8:f3:c1:1e:3e:33:97:4e:65:a3:74:99:a2:
                    c6:d5:ba:d3:a2:47:f9:d4:35:85:88:d4:71:98:6e:2a:
                    0b:b9:10:b2:0d:5c:27:41:0a:a7:3c:94:2e:a4:9e:c2:
                    7d:83:7b:1d:70:97:93:a2:e1:96:b2:b9:c8:d4:c8:de:
                    7e:1a:9e:d1:8e:61:3e:61:cf:7e:3a:cd:fa:80:76:c5:
                    b3:6c:92:61:38:ad:34:d5:d5:c6:bb:73:73:91:f1:77:
                    84:5d:32:d9:53:91:27:27:3d:05:95:dd:0d:b8:ad:f9:
                    0d:bc:71:3c:50:bb:f5:7a:cb:5c:13:f0:21:15:7d:54:
                    76:ab:61:42:08:d4:ed:cc:14:c6:8c:08:48:f1:b9:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:68:bd:1f:1b:a0:36:aa:27:4e:ba:09:be:22:67:dd:
        e3:b1:98:06:ad:fb:c3:98:c5:15:0f:bc:b8:ae:b0:1d:
        5d:ca:b6:83:57:6b:20:52:07:4f:18:12:bf:5b:c2:db:
        c2:68:cd:91:e1:5b:b2:f0:37:11:d2:32:48:79:a6:8a:
        95:f0:c6:70:7d:96:ac:ba:da:7d:76:86:a1:f3:a3:9f:
        30:0a:89:8a:57:fb:a8:6f:7c:67:f3:c9:5d:64:33:64:
        27:20:f6:4f:86:fb:ed:a9:32:f6:74:45:23:05:df:92:
        46:ea:5b:c3:f7:33:7c:9d:62:1a:8d:6a:d3:c6:2b:65:
        7f:81:6e:61:e3:3c:64:6e:71:aa:2d:99:3c:1b:bf:a1:
        98:57:04:8d:63:cd:2f:25:9b:e7:67:2d:b5:b4:9d:fc:
        d0:74:0f:c3:89:a1:40:35:e5:68:5a:a6:ce:02:61:6e:
        04:85:f2:be:81:77:0a:db:12:42:f7:a0:e3:d9:28:c6:
        50:2b:95:83:98:08:ef:01:c7:10:f2:af:d0:58:aa:f5:
        ea:bd:3a:ea:65:64:c5:0d:b8:e2:a1:4f:a9:7f:2b:1d:
        c8:58:66:49:08:b0:6b:ea:df:5d:5f:9c:03:9f:a2:e4:
        d4:1d:1b:12:50:3c:dc:b9:48:e5:1b:f5:a9:14:6f:9c
    Fingerprint (SHA-256):
        00:27:1F:03:3C:69:82:DE:34:F1:86:E7:5E:9D:0C:38:FC:32:88:55:5F:C9:CA:1A:AA:DB:94:3A:ED:2F:7D:3B
    Fingerprint (SHA1):
        D5:F7:2F:41:70:23:86:EB:F2:FD:3E:6C:B3:29:0C:74:F0:9E:22:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11616: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121167 (0x1e67d4cf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:14:32 2017
            Not After : Tue May 10 12:14:32 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:f3:98:e2:cc:78:d8:45:1f:fb:96:a6:36:7b:30:64:
                    b4:a0:09:e7:50:99:7e:b5:56:05:81:43:a1:52:28:ee:
                    11:49:f2:14:96:1f:5a:d8:fd:dc:62:20:1e:cf:ee:3f:
                    fe:7e:1f:45:6b:0a:54:bb:cc:24:01:dd:e7:24:61:d0:
                    1f:66:fd:ab:eb:66:17:a8:35:33:00:e4:4d:a1:e4:4a:
                    45:e6:28:18:55:2f:00:14:64:42:12:b2:33:ca:bd:55:
                    5b:78:04:10:f0:11:b6:dd:70:32:13:dc:f4:29:9d:55:
                    f7:af:c4:a7:cc:2a:93:88:66:bf:0b:b7:2d:71:35:a6:
                    70:a6:68:c1:7d:02:7f:e2:07:28:55:32:66:4e:04:e7:
                    af:50:8a:92:cd:54:9e:c7:78:fc:8d:22:14:53:0e:17:
                    f7:c8:c3:27:f6:95:71:2a:b2:56:7d:0f:17:38:1f:2c:
                    7b:29:55:2a:17:b8:04:6a:4e:06:9d:6e:6a:97:39:b3:
                    41:c5:d6:99:8c:7f:49:9b:56:66:9d:ba:43:70:48:1c:
                    85:5c:5b:0f:c1:55:0e:30:17:64:49:37:25:c6:a0:99:
                    03:26:9e:dd:36:2c:33:62:a5:57:67:f4:e3:4a:22:39:
                    8e:d4:a9:96:f7:c4:88:83:cd:31:af:f7:70:5b:fa:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0d:d0:ea:be:d4:cd:cb:32:ab:39:a7:ba:b2:1f:e1:1f:
        46:7b:4a:87:81:d5:5e:97:db:e5:5c:75:b4:ff:ae:b5:
        be:6b:a3:19:50:98:8b:d2:10:e7:a1:d3:4d:ff:7b:13:
        98:63:3d:9e:23:98:b3:77:61:44:1b:7f:1d:6e:3f:72:
        9d:db:f0:22:e9:60:82:2c:d5:07:fd:95:1a:4d:8f:7b:
        ac:e6:be:b2:49:b6:46:11:78:ac:20:33:87:69:bb:18:
        4c:e5:db:6c:c6:c1:9e:6b:d2:b0:e4:5f:80:ad:ac:77:
        f5:38:32:03:6e:f2:4c:68:14:fc:e7:cc:8d:81:b1:85:
        23:46:92:2f:c2:86:6d:db:ac:14:7c:be:0c:8d:0f:0d:
        9f:b3:68:c8:6a:50:ef:fd:7a:29:7f:36:92:2e:3b:d3:
        f0:db:a7:cc:e5:24:bc:e8:e5:6b:d1:47:6e:48:ef:68:
        ed:e7:24:c1:a7:b0:e1:69:d4:87:c7:4f:d2:63:1b:24:
        61:69:46:a8:8a:60:1b:a0:ab:64:57:31:7c:d9:d6:87:
        46:54:f6:21:5e:c2:70:d7:5b:16:51:5d:a2:2f:19:eb:
        fc:c9:e1:3e:31:e8:93:1f:d8:fb:66:f9:b3:48:f7:50:
        7c:8e:ac:30:46:f4:61:c8:39:ae:7e:d5:7a:fa:0d:d1
    Fingerprint (SHA-256):
        C3:6B:C6:6E:54:64:06:98:99:D8:AA:D6:C5:BE:E7:DB:41:49:32:23:54:45:C7:63:4B:87:86:72:9B:00:92:B1
    Fingerprint (SHA1):
        3B:90:8E:88:46:6A:70:0F:68:51:C5:02:6C:78:49:2B:3D:CA:B1:E4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #11617: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121163 (0x1e67d4cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:27 2017
            Not After : Tue May 10 12:14:27 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:53:c4:8a:62:3a:da:88:22:96:5d:33:8a:a8:70:64:
                    24:0c:1f:ee:0c:5d:28:9a:6e:0f:ef:f7:55:d0:89:97:
                    ff:33:79:93:cf:10:a8:6d:1f:6f:a4:b2:01:d1:30:5c:
                    3b:b3:a2:f1:e6:f5:74:7e:d3:f9:5f:2e:be:50:c5:63:
                    6a:e3:08:60:ed:95:c4:e8:12:a2:9a:91:94:a2:f1:50:
                    7a:9d:e5:f0:14:bd:05:98:c7:ba:7f:cc:6f:33:f1:36:
                    8c:6d:ae:f5:1e:f9:e6:6c:72:8a:11:7e:16:10:81:a9:
                    78:fa:48:a8:f3:c1:1e:3e:33:97:4e:65:a3:74:99:a2:
                    c6:d5:ba:d3:a2:47:f9:d4:35:85:88:d4:71:98:6e:2a:
                    0b:b9:10:b2:0d:5c:27:41:0a:a7:3c:94:2e:a4:9e:c2:
                    7d:83:7b:1d:70:97:93:a2:e1:96:b2:b9:c8:d4:c8:de:
                    7e:1a:9e:d1:8e:61:3e:61:cf:7e:3a:cd:fa:80:76:c5:
                    b3:6c:92:61:38:ad:34:d5:d5:c6:bb:73:73:91:f1:77:
                    84:5d:32:d9:53:91:27:27:3d:05:95:dd:0d:b8:ad:f9:
                    0d:bc:71:3c:50:bb:f5:7a:cb:5c:13:f0:21:15:7d:54:
                    76:ab:61:42:08:d4:ed:cc:14:c6:8c:08:48:f1:b9:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:68:bd:1f:1b:a0:36:aa:27:4e:ba:09:be:22:67:dd:
        e3:b1:98:06:ad:fb:c3:98:c5:15:0f:bc:b8:ae:b0:1d:
        5d:ca:b6:83:57:6b:20:52:07:4f:18:12:bf:5b:c2:db:
        c2:68:cd:91:e1:5b:b2:f0:37:11:d2:32:48:79:a6:8a:
        95:f0:c6:70:7d:96:ac:ba:da:7d:76:86:a1:f3:a3:9f:
        30:0a:89:8a:57:fb:a8:6f:7c:67:f3:c9:5d:64:33:64:
        27:20:f6:4f:86:fb:ed:a9:32:f6:74:45:23:05:df:92:
        46:ea:5b:c3:f7:33:7c:9d:62:1a:8d:6a:d3:c6:2b:65:
        7f:81:6e:61:e3:3c:64:6e:71:aa:2d:99:3c:1b:bf:a1:
        98:57:04:8d:63:cd:2f:25:9b:e7:67:2d:b5:b4:9d:fc:
        d0:74:0f:c3:89:a1:40:35:e5:68:5a:a6:ce:02:61:6e:
        04:85:f2:be:81:77:0a:db:12:42:f7:a0:e3:d9:28:c6:
        50:2b:95:83:98:08:ef:01:c7:10:f2:af:d0:58:aa:f5:
        ea:bd:3a:ea:65:64:c5:0d:b8:e2:a1:4f:a9:7f:2b:1d:
        c8:58:66:49:08:b0:6b:ea:df:5d:5f:9c:03:9f:a2:e4:
        d4:1d:1b:12:50:3c:dc:b9:48:e5:1b:f5:a9:14:6f:9c
    Fingerprint (SHA-256):
        00:27:1F:03:3C:69:82:DE:34:F1:86:E7:5E:9D:0C:38:FC:32:88:55:5F:C9:CA:1A:AA:DB:94:3A:ED:2F:7D:3B
    Fingerprint (SHA1):
        D5:F7:2F:41:70:23:86:EB:F2:FD:3E:6C:B3:29:0C:74:F0:9E:22:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11618: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #11619: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #11620: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #11621: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #11622: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #11623: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121168 (0x1e67d4d0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:14:34 2017
            Not After : Tue May 10 12:14:34 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:93:42:26:a6:cc:c2:57:d0:38:e3:9e:89:17:d4:7e:
                    88:50:63:f7:72:87:f8:61:20:79:fd:b3:2e:5a:7a:69:
                    4a:a8:2a:c7:be:74:e6:38:f0:17:9f:a8:3d:31:52:27:
                    80:45:ea:a8:4f:62:2f:09:36:db:d5:72:14:06:25:77:
                    f3:9b:01:99:26:d4:56:5d:aa:c2:6c:17:33:72:68:38:
                    21:48:ee:0d:52:07:1c:ba:00:69:9d:9c:5d:b0:42:70:
                    be:4a:ed:48:a9:c3:2b:7b:42:77:42:2e:4b:d9:b0:8b:
                    95:7c:46:15:83:0c:de:33:ac:fd:f7:b4:0f:50:2b:49:
                    36:1f:81:73:ca:d4:12:5e:e0:45:2e:85:5e:12:1d:88:
                    8d:86:f3:79:ee:d3:eb:65:e4:87:e3:b1:1f:f0:bf:9b:
                    db:0f:4a:6c:69:bf:5b:f5:b2:b2:51:22:b9:6b:a9:f1:
                    3d:48:e2:9a:de:11:5b:2a:2a:55:1a:5c:88:87:48:8e:
                    66:f7:b2:1a:02:d1:84:22:20:00:1b:a7:09:9f:c9:c6:
                    76:35:30:8d:ed:92:4c:47:70:4c:21:b8:88:97:a5:bc:
                    25:2b:96:d0:ed:a7:03:02:d1:59:19:7e:29:f8:1e:c6:
                    00:f0:12:10:d3:de:7c:aa:69:a4:86:75:cd:4a:5a:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:6a:d3:b1:fd:93:2a:ef:fd:3e:80:b0:0b:67:8f:1c:
        5b:b2:67:90:f1:a7:9d:31:bf:17:75:0b:03:5e:41:19:
        d5:c6:65:73:80:80:4d:75:13:4a:63:16:86:f6:db:fd:
        7d:a9:39:a1:85:55:25:cf:1e:8c:44:2e:af:ef:ab:ed:
        94:02:63:6b:51:36:6f:01:14:f7:47:49:65:44:c2:fb:
        df:b0:74:f7:37:6f:67:8b:af:5c:9b:23:c9:c1:78:cc:
        0a:e3:c6:94:ef:9b:19:bd:54:d1:ba:e5:2d:56:ce:c2:
        a4:0a:10:4c:47:10:b3:a5:f4:19:1c:de:1b:03:0f:fb:
        d2:f1:8d:2c:8a:4d:04:db:78:1f:9f:f9:b7:20:9e:a6:
        dc:13:16:64:c9:b5:38:bb:47:f8:e5:9d:be:f2:cf:63:
        81:8e:f1:0c:a1:f3:7c:9f:84:20:e3:45:fc:c7:8e:a9:
        17:90:45:2f:68:e3:a1:72:1f:8e:d0:47:94:7f:50:1d:
        ba:31:e5:fd:ef:41:57:bc:13:24:6f:de:b9:2b:78:a0:
        8f:50:7e:27:3e:dc:a9:e8:0d:a5:bc:c2:b7:42:28:ae:
        15:78:9e:c0:c5:df:d0:16:9f:a6:6f:67:3e:1f:7d:3a:
        05:81:33:09:85:6f:9a:70:cd:65:45:5a:a5:fa:66:34
    Fingerprint (SHA-256):
        87:92:FB:07:B3:18:A9:62:36:9E:0C:66:95:A3:AA:4B:F5:9A:0F:99:5A:8B:45:46:B3:0B:26:7C:26:D1:82:BA
    Fingerprint (SHA1):
        1B:3B:2F:87:48:19:78:D8:A0:B1:61:B1:03:CB:7A:AF:84:0F:50:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11624: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #11625: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #11626: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #11627: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #11628: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11629: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11630: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11631: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11632: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11633: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11634: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11635: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11636: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11637: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11638: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11639: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11640: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11641: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11642: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11643: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11644: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11645: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11646: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11647: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 25545 at Wed May 10 12:14:42 UTC 2017
kill -USR1 25545
httpserv: normal termination
httpserv -b -p 9333 2>/dev/null;
httpserv with PID 25545 killed at Wed May 10 12:14:42 UTC 2017
httpserv starting at Wed May 10 12:14:42 UTC 2017
httpserv -D -p 9333  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.24947  &
trying to connect to httpserv at Wed May 10 12:14:42 UTC 2017
tstclnt -p 9333 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9333 (address=::1)
tstclnt: exiting with return code 0
kill -0 8569 >/dev/null 2>/dev/null
httpserv with PID 8569 found at Wed May 10 12:14:42 UTC 2017
httpserv with PID 8569 started at Wed May 10 12:14:42 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11648: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121170 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11649: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11650: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11651: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121171 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11652: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11653: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11654: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11655: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510121172 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11656: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11657: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510121173 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11658: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11659: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11660: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11661: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11662: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 510121174   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11663: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11664: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11665: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #11666: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #11667: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121171 (0x1e67d4d3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:14:45 2017
            Not After : Tue May 10 12:14:45 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:09:5f:f4:7b:dd:ae:8b:6c:09:c5:e1:a2:38:89:80:
                    d6:de:9f:df:e2:dc:db:f4:af:f0:12:22:98:5d:04:aa:
                    7f:60:6e:e3:0b:0b:40:f4:82:fe:e1:1d:cd:9b:9b:3e:
                    3f:be:0e:2e:53:8a:16:c0:08:38:f3:e7:7c:34:f1:ff:
                    c1:1f:0b:69:44:cb:eb:50:e3:43:57:e6:0a:6f:cb:d0:
                    3f:0f:60:97:91:3a:8e:b0:2e:9c:ef:3c:02:cd:bd:5b:
                    c3:6a:cf:b5:10:65:aa:fa:be:e8:0d:0e:1d:db:03:aa:
                    f7:8d:01:4b:85:c3:15:35:d4:7c:59:21:b2:23:1f:b8:
                    02:1e:2e:37:1e:1e:31:3a:98:97:24:4a:19:56:99:58:
                    84:02:57:54:0e:18:f8:a5:13:ab:8c:27:30:84:2d:87:
                    b4:33:42:ed:59:44:58:92:13:6d:a6:0e:eb:66:35:8a:
                    f3:5e:bb:c8:7f:ae:66:46:e6:d4:5b:e7:2f:95:a7:6d:
                    17:2b:ed:c6:63:03:70:37:c5:a5:02:51:7f:e7:6c:90:
                    7a:9c:34:57:f7:c3:d4:e8:7d:61:dc:24:be:cf:7c:ce:
                    b6:28:fd:cb:b7:3a:40:9d:4c:60:4b:a4:c6:d9:e6:5c:
                    a9:2c:6c:8a:db:e6:0c:c1:19:c5:40:32:e9:54:98:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:2d:52:3b:7e:27:96:c8:b5:99:58:8e:84:3d:67:40:
        8c:d4:38:4e:b6:df:7a:2c:ba:43:12:38:db:83:5d:0e:
        66:16:2f:da:36:d0:ec:44:52:ff:24:28:f2:e1:ce:c8:
        9f:36:9b:d5:a6:32:8f:18:6a:01:e2:6c:34:cb:e0:b8:
        de:d7:81:0b:51:e5:b2:96:87:a1:87:ca:09:16:57:7b:
        44:1d:ef:11:4c:c5:6e:03:28:9d:97:43:0b:3f:83:4f:
        9c:2d:08:c6:58:77:7b:e3:d4:b8:03:41:b8:8c:6b:38:
        35:66:67:aa:41:9a:97:11:54:7a:23:59:b3:90:78:ea:
        18:99:b1:f5:94:23:8c:40:63:78:19:17:51:9c:19:3c:
        d5:b3:12:f1:5e:e8:7b:2e:a1:d2:5c:5c:81:b5:58:35:
        3f:50:61:9e:67:b5:9d:80:16:f6:a1:9e:a5:59:aa:fa:
        b0:ad:35:81:2b:eb:f4:13:b3:df:38:26:45:79:a0:61:
        e6:5a:46:40:88:70:f0:87:c5:6a:db:19:6e:c6:f2:fc:
        bd:5a:20:19:64:59:be:c1:e5:08:a1:5e:25:5c:7c:c9:
        ad:89:e9:bc:6f:74:a4:4d:14:df:07:fa:8d:f0:c0:26:
        a4:5e:0e:95:40:91:08:de:03:42:78:12:88:8d:a5:d7
    Fingerprint (SHA-256):
        1A:CE:8F:DB:80:69:E1:8A:33:44:C1:C3:39:6B:F3:B4:D0:97:E2:A0:CE:C3:FF:8A:06:C2:E0:EE:C6:89:B7:7A
    Fingerprint (SHA1):
        50:9A:8F:59:33:2F:B0:67:78:7B:75:E5:B5:25:06:54:A8:38:5B:95
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11668: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121170 (0x1e67d4d2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:14:44 2017
            Not After : Tue May 10 12:14:44 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:41:6f:e8:de:45:53:2b:62:d9:2e:da:d6:3b:9e:aa:
                    ba:34:0d:d2:7e:d8:f5:63:bc:90:71:71:c1:dd:b1:27:
                    5c:c6:77:3e:03:52:66:7e:1e:16:1f:37:dc:80:a4:3d:
                    b6:de:17:ee:ab:09:10:cb:ad:40:35:86:55:39:b5:47:
                    e8:39:86:75:d4:d8:3e:3d:35:b3:9e:9b:6b:6e:a1:ef:
                    9a:0b:8c:20:c4:61:d2:f5:fe:05:a9:25:b9:c0:38:ce:
                    53:1d:2b:c3:57:27:58:79:4a:75:f5:05:e1:aa:e6:0a:
                    bd:62:b3:96:c1:30:1c:df:af:f9:d9:65:67:b8:d4:ca:
                    ba:b9:48:05:c6:76:7e:3e:15:89:d1:4d:27:63:5d:71:
                    6d:18:fc:48:9e:87:41:9d:ad:33:d9:b4:1a:b5:dd:5e:
                    35:6c:9a:dc:12:ca:88:7b:fa:f7:6d:65:08:e5:d3:eb:
                    54:6b:fa:bb:57:5d:3b:8b:b9:2e:b6:27:75:3d:92:dd:
                    c4:95:65:98:96:97:a9:0d:c7:3e:73:3b:7c:cf:f3:8f:
                    6e:2c:5b:22:43:c3:85:56:89:7b:20:85:05:81:34:e3:
                    99:71:28:4e:86:e4:13:23:1e:87:40:fe:88:83:c6:3d:
                    bb:86:d7:e2:c9:6d:bc:da:f4:3d:3d:90:fe:70:6e:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8a:d4:d4:6d:90:4d:be:ff:1a:d8:89:2a:dd:a4:69:68:
        a3:77:77:cc:11:43:51:25:c7:0d:e1:73:20:61:cb:f8:
        38:f1:d1:81:87:24:4f:e9:a3:36:6e:ba:82:2a:a1:08:
        e9:ad:d9:83:2b:41:22:4b:c3:fd:a0:d6:cd:c4:3d:26:
        28:ce:f6:e4:74:e5:a9:9a:b5:2a:23:6d:1f:34:bf:9c:
        df:6f:d3:3f:fc:49:25:ef:ed:20:3b:e5:be:5d:64:6b:
        8f:fa:6c:d6:41:dc:82:5d:bb:a9:fe:7e:df:36:2c:cd:
        59:a0:f6:98:79:b0:51:bb:9b:4e:e3:ab:ad:22:9b:da:
        67:21:51:a5:f8:8d:f4:87:4d:e2:da:5c:76:52:ea:33:
        3b:65:f5:ca:4a:a2:f1:39:1d:99:1b:be:17:c5:b1:72:
        8c:e6:b4:4d:6c:72:fa:16:68:c2:7d:f0:c6:c1:6a:ae:
        4f:81:8a:e1:6e:fc:0f:8d:93:15:ae:11:fd:d6:1f:37:
        8d:27:1b:1b:92:27:e1:4d:6e:82:d9:b2:cc:d5:22:dc:
        f4:8b:57:d7:9b:d6:eb:20:d7:bb:f4:2b:1e:25:f4:27:
        f5:72:b6:6c:74:ce:c1:42:0d:d2:ab:fa:44:3a:69:2f:
        0b:4d:99:82:68:2b:71:09:78:67:9f:fb:02:45:e7:be
    Fingerprint (SHA-256):
        66:1F:6F:6A:9F:64:E0:A0:4D:0C:92:96:EF:85:E7:4E:DD:E5:3D:EE:9A:F3:1D:FF:D9:F1:41:71:7B:E4:51:AB
    Fingerprint (SHA1):
        CE:57:5F:36:58:74:C3:D0:BA:33:A9:CD:30:CA:EC:E1:CD:58:9D:42
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11669: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11670: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #11671: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #11672: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121170 (0x1e67d4d2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:14:44 2017
            Not After : Tue May 10 12:14:44 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:41:6f:e8:de:45:53:2b:62:d9:2e:da:d6:3b:9e:aa:
                    ba:34:0d:d2:7e:d8:f5:63:bc:90:71:71:c1:dd:b1:27:
                    5c:c6:77:3e:03:52:66:7e:1e:16:1f:37:dc:80:a4:3d:
                    b6:de:17:ee:ab:09:10:cb:ad:40:35:86:55:39:b5:47:
                    e8:39:86:75:d4:d8:3e:3d:35:b3:9e:9b:6b:6e:a1:ef:
                    9a:0b:8c:20:c4:61:d2:f5:fe:05:a9:25:b9:c0:38:ce:
                    53:1d:2b:c3:57:27:58:79:4a:75:f5:05:e1:aa:e6:0a:
                    bd:62:b3:96:c1:30:1c:df:af:f9:d9:65:67:b8:d4:ca:
                    ba:b9:48:05:c6:76:7e:3e:15:89:d1:4d:27:63:5d:71:
                    6d:18:fc:48:9e:87:41:9d:ad:33:d9:b4:1a:b5:dd:5e:
                    35:6c:9a:dc:12:ca:88:7b:fa:f7:6d:65:08:e5:d3:eb:
                    54:6b:fa:bb:57:5d:3b:8b:b9:2e:b6:27:75:3d:92:dd:
                    c4:95:65:98:96:97:a9:0d:c7:3e:73:3b:7c:cf:f3:8f:
                    6e:2c:5b:22:43:c3:85:56:89:7b:20:85:05:81:34:e3:
                    99:71:28:4e:86:e4:13:23:1e:87:40:fe:88:83:c6:3d:
                    bb:86:d7:e2:c9:6d:bc:da:f4:3d:3d:90:fe:70:6e:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8a:d4:d4:6d:90:4d:be:ff:1a:d8:89:2a:dd:a4:69:68:
        a3:77:77:cc:11:43:51:25:c7:0d:e1:73:20:61:cb:f8:
        38:f1:d1:81:87:24:4f:e9:a3:36:6e:ba:82:2a:a1:08:
        e9:ad:d9:83:2b:41:22:4b:c3:fd:a0:d6:cd:c4:3d:26:
        28:ce:f6:e4:74:e5:a9:9a:b5:2a:23:6d:1f:34:bf:9c:
        df:6f:d3:3f:fc:49:25:ef:ed:20:3b:e5:be:5d:64:6b:
        8f:fa:6c:d6:41:dc:82:5d:bb:a9:fe:7e:df:36:2c:cd:
        59:a0:f6:98:79:b0:51:bb:9b:4e:e3:ab:ad:22:9b:da:
        67:21:51:a5:f8:8d:f4:87:4d:e2:da:5c:76:52:ea:33:
        3b:65:f5:ca:4a:a2:f1:39:1d:99:1b:be:17:c5:b1:72:
        8c:e6:b4:4d:6c:72:fa:16:68:c2:7d:f0:c6:c1:6a:ae:
        4f:81:8a:e1:6e:fc:0f:8d:93:15:ae:11:fd:d6:1f:37:
        8d:27:1b:1b:92:27:e1:4d:6e:82:d9:b2:cc:d5:22:dc:
        f4:8b:57:d7:9b:d6:eb:20:d7:bb:f4:2b:1e:25:f4:27:
        f5:72:b6:6c:74:ce:c1:42:0d:d2:ab:fa:44:3a:69:2f:
        0b:4d:99:82:68:2b:71:09:78:67:9f:fb:02:45:e7:be
    Fingerprint (SHA-256):
        66:1F:6F:6A:9F:64:E0:A0:4D:0C:92:96:EF:85:E7:4E:DD:E5:3D:EE:9A:F3:1D:FF:D9:F1:41:71:7B:E4:51:AB
    Fingerprint (SHA1):
        CE:57:5F:36:58:74:C3:D0:BA:33:A9:CD:30:CA:EC:E1:CD:58:9D:42
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11673: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121171 (0x1e67d4d3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:14:45 2017
            Not After : Tue May 10 12:14:45 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:09:5f:f4:7b:dd:ae:8b:6c:09:c5:e1:a2:38:89:80:
                    d6:de:9f:df:e2:dc:db:f4:af:f0:12:22:98:5d:04:aa:
                    7f:60:6e:e3:0b:0b:40:f4:82:fe:e1:1d:cd:9b:9b:3e:
                    3f:be:0e:2e:53:8a:16:c0:08:38:f3:e7:7c:34:f1:ff:
                    c1:1f:0b:69:44:cb:eb:50:e3:43:57:e6:0a:6f:cb:d0:
                    3f:0f:60:97:91:3a:8e:b0:2e:9c:ef:3c:02:cd:bd:5b:
                    c3:6a:cf:b5:10:65:aa:fa:be:e8:0d:0e:1d:db:03:aa:
                    f7:8d:01:4b:85:c3:15:35:d4:7c:59:21:b2:23:1f:b8:
                    02:1e:2e:37:1e:1e:31:3a:98:97:24:4a:19:56:99:58:
                    84:02:57:54:0e:18:f8:a5:13:ab:8c:27:30:84:2d:87:
                    b4:33:42:ed:59:44:58:92:13:6d:a6:0e:eb:66:35:8a:
                    f3:5e:bb:c8:7f:ae:66:46:e6:d4:5b:e7:2f:95:a7:6d:
                    17:2b:ed:c6:63:03:70:37:c5:a5:02:51:7f:e7:6c:90:
                    7a:9c:34:57:f7:c3:d4:e8:7d:61:dc:24:be:cf:7c:ce:
                    b6:28:fd:cb:b7:3a:40:9d:4c:60:4b:a4:c6:d9:e6:5c:
                    a9:2c:6c:8a:db:e6:0c:c1:19:c5:40:32:e9:54:98:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:2d:52:3b:7e:27:96:c8:b5:99:58:8e:84:3d:67:40:
        8c:d4:38:4e:b6:df:7a:2c:ba:43:12:38:db:83:5d:0e:
        66:16:2f:da:36:d0:ec:44:52:ff:24:28:f2:e1:ce:c8:
        9f:36:9b:d5:a6:32:8f:18:6a:01:e2:6c:34:cb:e0:b8:
        de:d7:81:0b:51:e5:b2:96:87:a1:87:ca:09:16:57:7b:
        44:1d:ef:11:4c:c5:6e:03:28:9d:97:43:0b:3f:83:4f:
        9c:2d:08:c6:58:77:7b:e3:d4:b8:03:41:b8:8c:6b:38:
        35:66:67:aa:41:9a:97:11:54:7a:23:59:b3:90:78:ea:
        18:99:b1:f5:94:23:8c:40:63:78:19:17:51:9c:19:3c:
        d5:b3:12:f1:5e:e8:7b:2e:a1:d2:5c:5c:81:b5:58:35:
        3f:50:61:9e:67:b5:9d:80:16:f6:a1:9e:a5:59:aa:fa:
        b0:ad:35:81:2b:eb:f4:13:b3:df:38:26:45:79:a0:61:
        e6:5a:46:40:88:70:f0:87:c5:6a:db:19:6e:c6:f2:fc:
        bd:5a:20:19:64:59:be:c1:e5:08:a1:5e:25:5c:7c:c9:
        ad:89:e9:bc:6f:74:a4:4d:14:df:07:fa:8d:f0:c0:26:
        a4:5e:0e:95:40:91:08:de:03:42:78:12:88:8d:a5:d7
    Fingerprint (SHA-256):
        1A:CE:8F:DB:80:69:E1:8A:33:44:C1:C3:39:6B:F3:B4:D0:97:E2:A0:CE:C3:FF:8A:06:C2:E0:EE:C6:89:B7:7A
    Fingerprint (SHA1):
        50:9A:8F:59:33:2F:B0:67:78:7B:75:E5:B5:25:06:54:A8:38:5B:95
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11674: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #11675: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #11676: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11677: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11678: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11679: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121171 (0x1e67d4d3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:14:45 2017
            Not After : Tue May 10 12:14:45 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:09:5f:f4:7b:dd:ae:8b:6c:09:c5:e1:a2:38:89:80:
                    d6:de:9f:df:e2:dc:db:f4:af:f0:12:22:98:5d:04:aa:
                    7f:60:6e:e3:0b:0b:40:f4:82:fe:e1:1d:cd:9b:9b:3e:
                    3f:be:0e:2e:53:8a:16:c0:08:38:f3:e7:7c:34:f1:ff:
                    c1:1f:0b:69:44:cb:eb:50:e3:43:57:e6:0a:6f:cb:d0:
                    3f:0f:60:97:91:3a:8e:b0:2e:9c:ef:3c:02:cd:bd:5b:
                    c3:6a:cf:b5:10:65:aa:fa:be:e8:0d:0e:1d:db:03:aa:
                    f7:8d:01:4b:85:c3:15:35:d4:7c:59:21:b2:23:1f:b8:
                    02:1e:2e:37:1e:1e:31:3a:98:97:24:4a:19:56:99:58:
                    84:02:57:54:0e:18:f8:a5:13:ab:8c:27:30:84:2d:87:
                    b4:33:42:ed:59:44:58:92:13:6d:a6:0e:eb:66:35:8a:
                    f3:5e:bb:c8:7f:ae:66:46:e6:d4:5b:e7:2f:95:a7:6d:
                    17:2b:ed:c6:63:03:70:37:c5:a5:02:51:7f:e7:6c:90:
                    7a:9c:34:57:f7:c3:d4:e8:7d:61:dc:24:be:cf:7c:ce:
                    b6:28:fd:cb:b7:3a:40:9d:4c:60:4b:a4:c6:d9:e6:5c:
                    a9:2c:6c:8a:db:e6:0c:c1:19:c5:40:32:e9:54:98:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:2d:52:3b:7e:27:96:c8:b5:99:58:8e:84:3d:67:40:
        8c:d4:38:4e:b6:df:7a:2c:ba:43:12:38:db:83:5d:0e:
        66:16:2f:da:36:d0:ec:44:52:ff:24:28:f2:e1:ce:c8:
        9f:36:9b:d5:a6:32:8f:18:6a:01:e2:6c:34:cb:e0:b8:
        de:d7:81:0b:51:e5:b2:96:87:a1:87:ca:09:16:57:7b:
        44:1d:ef:11:4c:c5:6e:03:28:9d:97:43:0b:3f:83:4f:
        9c:2d:08:c6:58:77:7b:e3:d4:b8:03:41:b8:8c:6b:38:
        35:66:67:aa:41:9a:97:11:54:7a:23:59:b3:90:78:ea:
        18:99:b1:f5:94:23:8c:40:63:78:19:17:51:9c:19:3c:
        d5:b3:12:f1:5e:e8:7b:2e:a1:d2:5c:5c:81:b5:58:35:
        3f:50:61:9e:67:b5:9d:80:16:f6:a1:9e:a5:59:aa:fa:
        b0:ad:35:81:2b:eb:f4:13:b3:df:38:26:45:79:a0:61:
        e6:5a:46:40:88:70:f0:87:c5:6a:db:19:6e:c6:f2:fc:
        bd:5a:20:19:64:59:be:c1:e5:08:a1:5e:25:5c:7c:c9:
        ad:89:e9:bc:6f:74:a4:4d:14:df:07:fa:8d:f0:c0:26:
        a4:5e:0e:95:40:91:08:de:03:42:78:12:88:8d:a5:d7
    Fingerprint (SHA-256):
        1A:CE:8F:DB:80:69:E1:8A:33:44:C1:C3:39:6B:F3:B4:D0:97:E2:A0:CE:C3:FF:8A:06:C2:E0:EE:C6:89:B7:7A
    Fingerprint (SHA1):
        50:9A:8F:59:33:2F:B0:67:78:7B:75:E5:B5:25:06:54:A8:38:5B:95
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11680: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121171 (0x1e67d4d3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:14:45 2017
            Not After : Tue May 10 12:14:45 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:09:5f:f4:7b:dd:ae:8b:6c:09:c5:e1:a2:38:89:80:
                    d6:de:9f:df:e2:dc:db:f4:af:f0:12:22:98:5d:04:aa:
                    7f:60:6e:e3:0b:0b:40:f4:82:fe:e1:1d:cd:9b:9b:3e:
                    3f:be:0e:2e:53:8a:16:c0:08:38:f3:e7:7c:34:f1:ff:
                    c1:1f:0b:69:44:cb:eb:50:e3:43:57:e6:0a:6f:cb:d0:
                    3f:0f:60:97:91:3a:8e:b0:2e:9c:ef:3c:02:cd:bd:5b:
                    c3:6a:cf:b5:10:65:aa:fa:be:e8:0d:0e:1d:db:03:aa:
                    f7:8d:01:4b:85:c3:15:35:d4:7c:59:21:b2:23:1f:b8:
                    02:1e:2e:37:1e:1e:31:3a:98:97:24:4a:19:56:99:58:
                    84:02:57:54:0e:18:f8:a5:13:ab:8c:27:30:84:2d:87:
                    b4:33:42:ed:59:44:58:92:13:6d:a6:0e:eb:66:35:8a:
                    f3:5e:bb:c8:7f:ae:66:46:e6:d4:5b:e7:2f:95:a7:6d:
                    17:2b:ed:c6:63:03:70:37:c5:a5:02:51:7f:e7:6c:90:
                    7a:9c:34:57:f7:c3:d4:e8:7d:61:dc:24:be:cf:7c:ce:
                    b6:28:fd:cb:b7:3a:40:9d:4c:60:4b:a4:c6:d9:e6:5c:
                    a9:2c:6c:8a:db:e6:0c:c1:19:c5:40:32:e9:54:98:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:2d:52:3b:7e:27:96:c8:b5:99:58:8e:84:3d:67:40:
        8c:d4:38:4e:b6:df:7a:2c:ba:43:12:38:db:83:5d:0e:
        66:16:2f:da:36:d0:ec:44:52:ff:24:28:f2:e1:ce:c8:
        9f:36:9b:d5:a6:32:8f:18:6a:01:e2:6c:34:cb:e0:b8:
        de:d7:81:0b:51:e5:b2:96:87:a1:87:ca:09:16:57:7b:
        44:1d:ef:11:4c:c5:6e:03:28:9d:97:43:0b:3f:83:4f:
        9c:2d:08:c6:58:77:7b:e3:d4:b8:03:41:b8:8c:6b:38:
        35:66:67:aa:41:9a:97:11:54:7a:23:59:b3:90:78:ea:
        18:99:b1:f5:94:23:8c:40:63:78:19:17:51:9c:19:3c:
        d5:b3:12:f1:5e:e8:7b:2e:a1:d2:5c:5c:81:b5:58:35:
        3f:50:61:9e:67:b5:9d:80:16:f6:a1:9e:a5:59:aa:fa:
        b0:ad:35:81:2b:eb:f4:13:b3:df:38:26:45:79:a0:61:
        e6:5a:46:40:88:70:f0:87:c5:6a:db:19:6e:c6:f2:fc:
        bd:5a:20:19:64:59:be:c1:e5:08:a1:5e:25:5c:7c:c9:
        ad:89:e9:bc:6f:74:a4:4d:14:df:07:fa:8d:f0:c0:26:
        a4:5e:0e:95:40:91:08:de:03:42:78:12:88:8d:a5:d7
    Fingerprint (SHA-256):
        1A:CE:8F:DB:80:69:E1:8A:33:44:C1:C3:39:6B:F3:B4:D0:97:E2:A0:CE:C3:FF:8A:06:C2:E0:EE:C6:89:B7:7A
    Fingerprint (SHA1):
        50:9A:8F:59:33:2F:B0:67:78:7B:75:E5:B5:25:06:54:A8:38:5B:95
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11681: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #11682: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #11683: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11684: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #11685: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #11686: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121170 (0x1e67d4d2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:14:44 2017
            Not After : Tue May 10 12:14:44 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:41:6f:e8:de:45:53:2b:62:d9:2e:da:d6:3b:9e:aa:
                    ba:34:0d:d2:7e:d8:f5:63:bc:90:71:71:c1:dd:b1:27:
                    5c:c6:77:3e:03:52:66:7e:1e:16:1f:37:dc:80:a4:3d:
                    b6:de:17:ee:ab:09:10:cb:ad:40:35:86:55:39:b5:47:
                    e8:39:86:75:d4:d8:3e:3d:35:b3:9e:9b:6b:6e:a1:ef:
                    9a:0b:8c:20:c4:61:d2:f5:fe:05:a9:25:b9:c0:38:ce:
                    53:1d:2b:c3:57:27:58:79:4a:75:f5:05:e1:aa:e6:0a:
                    bd:62:b3:96:c1:30:1c:df:af:f9:d9:65:67:b8:d4:ca:
                    ba:b9:48:05:c6:76:7e:3e:15:89:d1:4d:27:63:5d:71:
                    6d:18:fc:48:9e:87:41:9d:ad:33:d9:b4:1a:b5:dd:5e:
                    35:6c:9a:dc:12:ca:88:7b:fa:f7:6d:65:08:e5:d3:eb:
                    54:6b:fa:bb:57:5d:3b:8b:b9:2e:b6:27:75:3d:92:dd:
                    c4:95:65:98:96:97:a9:0d:c7:3e:73:3b:7c:cf:f3:8f:
                    6e:2c:5b:22:43:c3:85:56:89:7b:20:85:05:81:34:e3:
                    99:71:28:4e:86:e4:13:23:1e:87:40:fe:88:83:c6:3d:
                    bb:86:d7:e2:c9:6d:bc:da:f4:3d:3d:90:fe:70:6e:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8a:d4:d4:6d:90:4d:be:ff:1a:d8:89:2a:dd:a4:69:68:
        a3:77:77:cc:11:43:51:25:c7:0d:e1:73:20:61:cb:f8:
        38:f1:d1:81:87:24:4f:e9:a3:36:6e:ba:82:2a:a1:08:
        e9:ad:d9:83:2b:41:22:4b:c3:fd:a0:d6:cd:c4:3d:26:
        28:ce:f6:e4:74:e5:a9:9a:b5:2a:23:6d:1f:34:bf:9c:
        df:6f:d3:3f:fc:49:25:ef:ed:20:3b:e5:be:5d:64:6b:
        8f:fa:6c:d6:41:dc:82:5d:bb:a9:fe:7e:df:36:2c:cd:
        59:a0:f6:98:79:b0:51:bb:9b:4e:e3:ab:ad:22:9b:da:
        67:21:51:a5:f8:8d:f4:87:4d:e2:da:5c:76:52:ea:33:
        3b:65:f5:ca:4a:a2:f1:39:1d:99:1b:be:17:c5:b1:72:
        8c:e6:b4:4d:6c:72:fa:16:68:c2:7d:f0:c6:c1:6a:ae:
        4f:81:8a:e1:6e:fc:0f:8d:93:15:ae:11:fd:d6:1f:37:
        8d:27:1b:1b:92:27:e1:4d:6e:82:d9:b2:cc:d5:22:dc:
        f4:8b:57:d7:9b:d6:eb:20:d7:bb:f4:2b:1e:25:f4:27:
        f5:72:b6:6c:74:ce:c1:42:0d:d2:ab:fa:44:3a:69:2f:
        0b:4d:99:82:68:2b:71:09:78:67:9f:fb:02:45:e7:be
    Fingerprint (SHA-256):
        66:1F:6F:6A:9F:64:E0:A0:4D:0C:92:96:EF:85:E7:4E:DD:E5:3D:EE:9A:F3:1D:FF:D9:F1:41:71:7B:E4:51:AB
    Fingerprint (SHA1):
        CE:57:5F:36:58:74:C3:D0:BA:33:A9:CD:30:CA:EC:E1:CD:58:9D:42
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11687: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121170 (0x1e67d4d2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:14:44 2017
            Not After : Tue May 10 12:14:44 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:41:6f:e8:de:45:53:2b:62:d9:2e:da:d6:3b:9e:aa:
                    ba:34:0d:d2:7e:d8:f5:63:bc:90:71:71:c1:dd:b1:27:
                    5c:c6:77:3e:03:52:66:7e:1e:16:1f:37:dc:80:a4:3d:
                    b6:de:17:ee:ab:09:10:cb:ad:40:35:86:55:39:b5:47:
                    e8:39:86:75:d4:d8:3e:3d:35:b3:9e:9b:6b:6e:a1:ef:
                    9a:0b:8c:20:c4:61:d2:f5:fe:05:a9:25:b9:c0:38:ce:
                    53:1d:2b:c3:57:27:58:79:4a:75:f5:05:e1:aa:e6:0a:
                    bd:62:b3:96:c1:30:1c:df:af:f9:d9:65:67:b8:d4:ca:
                    ba:b9:48:05:c6:76:7e:3e:15:89:d1:4d:27:63:5d:71:
                    6d:18:fc:48:9e:87:41:9d:ad:33:d9:b4:1a:b5:dd:5e:
                    35:6c:9a:dc:12:ca:88:7b:fa:f7:6d:65:08:e5:d3:eb:
                    54:6b:fa:bb:57:5d:3b:8b:b9:2e:b6:27:75:3d:92:dd:
                    c4:95:65:98:96:97:a9:0d:c7:3e:73:3b:7c:cf:f3:8f:
                    6e:2c:5b:22:43:c3:85:56:89:7b:20:85:05:81:34:e3:
                    99:71:28:4e:86:e4:13:23:1e:87:40:fe:88:83:c6:3d:
                    bb:86:d7:e2:c9:6d:bc:da:f4:3d:3d:90:fe:70:6e:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8a:d4:d4:6d:90:4d:be:ff:1a:d8:89:2a:dd:a4:69:68:
        a3:77:77:cc:11:43:51:25:c7:0d:e1:73:20:61:cb:f8:
        38:f1:d1:81:87:24:4f:e9:a3:36:6e:ba:82:2a:a1:08:
        e9:ad:d9:83:2b:41:22:4b:c3:fd:a0:d6:cd:c4:3d:26:
        28:ce:f6:e4:74:e5:a9:9a:b5:2a:23:6d:1f:34:bf:9c:
        df:6f:d3:3f:fc:49:25:ef:ed:20:3b:e5:be:5d:64:6b:
        8f:fa:6c:d6:41:dc:82:5d:bb:a9:fe:7e:df:36:2c:cd:
        59:a0:f6:98:79:b0:51:bb:9b:4e:e3:ab:ad:22:9b:da:
        67:21:51:a5:f8:8d:f4:87:4d:e2:da:5c:76:52:ea:33:
        3b:65:f5:ca:4a:a2:f1:39:1d:99:1b:be:17:c5:b1:72:
        8c:e6:b4:4d:6c:72:fa:16:68:c2:7d:f0:c6:c1:6a:ae:
        4f:81:8a:e1:6e:fc:0f:8d:93:15:ae:11:fd:d6:1f:37:
        8d:27:1b:1b:92:27:e1:4d:6e:82:d9:b2:cc:d5:22:dc:
        f4:8b:57:d7:9b:d6:eb:20:d7:bb:f4:2b:1e:25:f4:27:
        f5:72:b6:6c:74:ce:c1:42:0d:d2:ab:fa:44:3a:69:2f:
        0b:4d:99:82:68:2b:71:09:78:67:9f:fb:02:45:e7:be
    Fingerprint (SHA-256):
        66:1F:6F:6A:9F:64:E0:A0:4D:0C:92:96:EF:85:E7:4E:DD:E5:3D:EE:9A:F3:1D:FF:D9:F1:41:71:7B:E4:51:AB
    Fingerprint (SHA1):
        CE:57:5F:36:58:74:C3:D0:BA:33:A9:CD:30:CA:EC:E1:CD:58:9D:42
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11688: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #11689: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121175 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11690: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #11691: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #11692: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121176 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11693: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #11694: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #11695: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121177 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11696: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #11697: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #11698: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121178 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11699: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #11700: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #11701: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121179 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11702: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #11703: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #11704: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121180 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11705: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #11706: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #11707: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121181 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11708: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #11709: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #11710: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121182 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11711: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #11712: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #11713: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121183 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11714: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #11715: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #11716: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11717: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 510121184 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11718: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11719: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 510121185 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11720: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11721: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 510121186 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11722: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11723: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #11724: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #11725: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11726: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 510121187 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11727: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11728: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 510121188 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11729: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11730: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 510121189 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11731: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11732: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #11733: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #11734: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11735: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 510121190 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11736: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11737: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 510121191 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11738: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11739: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 510121192 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11740: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11741: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #11742: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #11743: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11744: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 510121193 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11745: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11746: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 510121194 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11747: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11748: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 510121195 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11749: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11750: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #11751: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11752: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11753: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 510121196   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11754: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11755: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11756: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11757: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121197   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11758: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11759: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121175 (0x1e67d4d7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed May 10 12:14:54 2017
            Not After : Tue May 10 12:14:54 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:bd:42:f0:68:a1:1d:76:44:3d:d8:76:dc:78:b9:e8:
                    d7:f8:30:5c:e8:53:88:29:88:5c:66:97:ed:cc:6f:6b:
                    fc:9f:b4:22:32:80:eb:00:5f:0e:b2:55:28:61:a1:0b:
                    7d:9a:23:23:a9:a5:69:34:57:fe:06:6c:1d:db:27:b3:
                    77:dd:b2:bb:af:04:24:5f:ed:ed:5d:bd:0f:2e:8a:39:
                    23:c8:c2:54:e9:69:e8:2f:20:9f:d3:ab:b3:3d:fb:89:
                    67:50:ef:fb:53:8d:38:28:98:4a:d1:c2:50:00:bd:dc:
                    d9:eb:09:6f:6a:69:0e:32:87:ad:7b:6f:69:9b:47:e9:
                    67:9e:bf:a2:45:e7:17:3e:c3:7c:f8:f6:50:4c:a9:4c:
                    ea:0d:bb:e8:08:4c:c0:2c:da:78:9a:2e:81:f7:c1:04:
                    81:0e:09:55:01:55:fa:10:86:2f:b5:0f:d3:15:76:99:
                    f8:73:c8:ba:b6:c6:0c:9a:44:16:a0:60:f4:94:1b:66:
                    41:75:91:88:7a:65:c9:29:5c:82:68:a4:18:a8:d0:47:
                    9b:40:a8:9f:96:4c:0b:db:a1:7e:58:21:27:cb:63:16:
                    12:4b:94:85:c1:e3:4b:a5:0d:c2:9e:67:98:ff:93:2e:
                    84:19:a1:fe:75:2c:e9:68:59:6b:54:32:2f:4b:ee:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:1c:f0:8c:72:15:ce:6f:4a:8e:f5:4a:f6:be:9b:d2:
        a5:34:91:59:24:80:cb:ce:f2:b6:9f:e8:31:bb:7b:50:
        16:a2:a4:c5:59:c4:b6:19:b8:cb:ee:18:d5:96:8b:a1:
        9f:98:ed:a9:f3:05:e4:9a:02:f0:0c:81:de:7b:21:f4:
        18:09:71:d4:e1:43:12:24:1d:ba:2a:9d:04:3b:2b:cb:
        0b:53:d6:e1:ce:0a:4b:59:9d:18:ff:a3:23:b2:01:49:
        a0:4f:15:01:0d:72:84:3d:83:ac:ed:1d:74:bf:e7:c8:
        b4:6d:d0:a1:fb:9b:46:03:bf:f7:3a:4a:5d:2b:70:32:
        89:15:5b:7d:0b:a3:5d:32:60:fe:50:ec:f3:3d:29:a9:
        17:b8:91:cf:a1:1a:34:61:c5:a8:0d:f8:bc:f7:d4:82:
        34:62:9a:0c:8c:e8:be:de:ed:13:3f:b1:e1:a0:6f:9a:
        b1:4f:27:aa:97:b0:37:d9:83:e0:31:f8:9f:8d:6b:37:
        16:43:34:70:a7:d1:6e:bd:b3:bd:e7:6e:69:94:6c:07:
        a5:da:d6:ed:83:f2:51:ac:ff:8a:b6:fd:f6:e1:6a:d8:
        e4:13:8f:2d:9f:8d:da:e6:6d:34:53:b4:39:a8:3b:57:
        a3:37:0c:33:b3:6f:62:d4:e8:9f:f0:ed:50:5e:39:40
    Fingerprint (SHA-256):
        CF:C0:A8:17:43:78:CE:84:4E:E7:54:9D:11:70:B1:06:0E:C3:4D:68:09:41:EC:B6:B1:D4:C3:79:66:7C:00:FC
    Fingerprint (SHA1):
        2B:2F:36:A5:04:19:92:28:C5:44:C0:D3:73:96:6E:78:42:BC:DC:FE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11760: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121176 (0x1e67d4d8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed May 10 12:14:56 2017
            Not After : Tue May 10 12:14:56 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:02:d8:32:62:d6:9d:d3:c9:c1:8c:74:6b:82:a0:19:
                    d3:6d:21:36:3d:33:1e:53:44:ec:4b:c0:ef:01:b1:e5:
                    f3:90:ec:f8:1b:f4:7a:5d:67:46:66:19:ae:f7:a6:8e:
                    5d:1b:bf:fc:50:b9:67:9b:6c:2f:0b:35:ac:c1:60:7b:
                    bf:b1:d5:d5:39:73:e6:39:7a:02:c5:03:5c:df:52:01:
                    8c:2c:f0:6e:a7:2d:b1:d9:68:46:a7:43:d0:7e:8f:76:
                    d1:38:eb:09:1d:e5:c2:ca:11:8b:5e:5d:66:68:dc:3b:
                    af:c2:67:03:2c:1c:7c:4f:95:e8:63:a7:9e:1b:da:1b:
                    43:44:1b:e9:40:04:c1:d6:47:04:36:30:e0:b6:8f:27:
                    6d:14:50:19:23:1b:0d:54:d0:e3:db:6d:86:53:5f:5e:
                    8c:6b:ec:39:4e:1a:cc:17:5b:57:2c:98:bd:2f:ee:f5:
                    10:83:ce:c8:ab:e2:23:90:c8:ef:0a:3c:fb:3b:54:c1:
                    3b:b6:f5:24:aa:0b:5d:29:8f:9c:3d:03:71:bf:fd:0d:
                    3b:55:a4:c3:b6:ed:d3:1f:ba:81:ef:b6:9e:2e:d0:83:
                    39:5c:b9:cb:86:69:a6:56:0f:b8:bd:ec:68:12:d8:31:
                    85:fc:0a:da:5b:15:d0:87:55:37:01:f5:76:3e:cc:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:cc:ac:d6:89:3b:0f:e1:c1:53:c5:ba:87:3a:29:2f:
        93:0c:cd:ba:f8:c3:b5:17:4d:6c:0f:74:77:50:02:a4:
        19:80:6b:60:5d:13:71:8c:1f:78:ff:c3:69:4d:0c:b1:
        2e:e5:b5:a8:d5:3b:59:77:85:c3:3f:f2:ba:a7:ed:6f:
        49:a9:5d:21:a3:c1:0b:bf:73:0d:53:f1:ad:5d:56:0f:
        43:ff:8a:84:ba:43:9c:71:0a:a8:f0:0e:cc:57:b5:58:
        7c:54:4e:52:7d:d2:71:bd:d2:b8:18:a7:f5:72:3a:2d:
        ae:06:11:df:3b:d7:9f:5f:b6:10:8d:9a:2b:d7:22:7f:
        3b:20:51:06:b1:2c:a7:33:78:f8:f9:49:0b:68:d9:e0:
        7a:38:1d:94:70:67:79:56:a5:2f:71:e0:d0:51:e4:a8:
        ff:50:31:f9:17:b3:82:b2:d6:4c:e5:f5:9b:4c:c9:c2:
        bd:d0:0d:1f:2a:81:1b:81:b9:17:18:00:0d:09:6a:b3:
        f2:24:96:c5:cc:cd:54:27:af:ac:bc:9c:df:f4:99:85:
        1b:02:f0:47:75:14:7d:04:be:30:af:10:f7:b9:78:fc:
        8c:67:18:0f:9d:49:09:06:74:0c:6f:c8:c9:f3:10:6d:
        cc:6c:2b:9d:b2:ea:44:57:a7:52:4b:b5:7c:4b:39:72
    Fingerprint (SHA-256):
        BA:F5:64:A6:2A:7D:38:FA:BA:AB:4E:3A:6A:5A:83:E7:BD:73:39:CA:BB:2C:79:71:8C:DE:AC:E3:56:6C:48:B5
    Fingerprint (SHA1):
        18:D8:E6:00:F1:E7:93:D4:AA:A3:29:D8:89:F0:98:5E:6B:C1:91:91
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11761: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121177 (0x1e67d4d9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed May 10 12:14:56 2017
            Not After : Tue May 10 12:14:56 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:c3:73:66:67:c4:91:ee:7f:c9:e3:ed:a5:a0:fc:2c:
                    2b:e0:e9:19:c1:69:1c:24:7f:43:e0:ba:4f:39:da:04:
                    79:6d:b8:a7:54:a9:aa:9f:3d:ef:eb:b7:73:e3:d6:54:
                    dc:20:ac:fc:bc:22:a1:ff:e5:51:68:64:eb:fc:70:c9:
                    99:fd:1e:a3:08:d3:a9:f5:03:ef:82:ee:17:b7:69:5f:
                    7f:ca:7e:39:84:3d:27:ab:22:4a:d6:84:0b:f5:11:eb:
                    65:56:e9:c9:a0:b1:f9:15:a9:7c:00:fa:39:ff:48:76:
                    79:7e:e8:1c:0b:94:17:30:ac:40:ec:a7:92:6a:cd:e3:
                    22:af:1a:f9:cf:7f:12:d5:51:ae:8a:f3:b1:82:a2:8c:
                    d5:7a:1f:7f:9b:1a:02:80:3a:8f:2b:a0:0d:c2:88:13:
                    7c:aa:85:57:fe:96:ec:8c:19:fe:66:91:21:95:83:86:
                    1f:c9:ff:ed:07:8b:df:cd:55:d3:69:81:54:45:99:da:
                    3f:f8:67:3b:39:11:cb:a2:4d:e8:30:ef:32:6b:03:b4:
                    96:47:65:8e:80:bd:04:ca:56:95:29:67:25:e8:40:65:
                    29:bc:80:84:7e:33:cb:34:cf:b5:08:de:1f:e8:e2:38:
                    ba:a9:15:1a:32:89:08:32:a5:97:1e:e1:9d:23:13:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:75:ab:b7:fc:66:b3:65:bf:2b:5e:df:89:a3:60:fd:
        b4:10:8d:d1:7d:4e:cb:cd:44:ec:41:94:c5:d4:f6:9a:
        69:46:f3:43:4f:a8:77:b3:c4:80:d5:35:27:84:bc:c6:
        b6:c3:90:be:b4:8e:04:77:0e:5c:b0:7a:ab:d7:8c:f1:
        c9:c7:64:f4:99:90:6c:2f:a5:cd:6f:00:15:05:44:f2:
        93:bd:5b:4d:fa:84:db:87:0d:af:25:2d:cc:d7:b7:ab:
        89:4d:14:04:50:c1:47:55:e7:85:2a:a3:b8:0e:15:59:
        da:6b:62:e2:66:09:84:a2:3b:ca:f1:6d:65:0d:e7:57:
        87:f1:78:00:9a:b7:f6:7d:47:f7:bc:e2:03:b1:05:cc:
        9b:87:7e:9a:71:f2:c1:c5:5d:7c:0d:44:a6:7c:c8:06:
        48:db:de:3b:a5:cd:be:fe:1c:2f:46:14:7d:5b:d1:a1:
        a5:b1:52:cb:fc:eb:25:97:0d:78:ba:7f:f6:6a:ae:d6:
        10:a2:1b:c5:f2:6b:ee:f1:90:07:c8:49:c9:f9:ca:d6:
        ef:12:d5:41:c8:d5:8c:de:37:45:5e:e5:b1:65:c9:32:
        b7:38:0e:8c:8c:27:08:01:51:fd:fb:a7:28:92:7f:df:
        7e:99:b8:6a:cd:7e:e1:f6:8c:50:88:62:54:73:4d:0e
    Fingerprint (SHA-256):
        16:53:24:74:72:34:B8:34:2E:44:C5:6C:F0:A6:5B:3F:32:CF:0E:84:C5:59:6F:A3:89:A0:21:8B:53:50:4E:A7
    Fingerprint (SHA1):
        0A:97:FE:EE:36:97:08:25:CC:55:45:BE:05:12:C5:B5:DB:B2:95:61
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11762: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121178 (0x1e67d4da)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed May 10 12:14:58 2017
            Not After : Tue May 10 12:14:58 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:74:69:e9:9f:cb:d4:4d:75:4d:03:49:f1:8e:91:e1:
                    6c:76:d1:e1:f8:b9:c9:bf:1d:c0:42:10:0e:1d:f9:42:
                    be:81:6a:b7:b1:30:1a:52:c3:79:91:fa:87:a0:63:e0:
                    0e:ce:73:21:69:8f:01:c2:e6:dd:9b:e1:76:0c:4d:d5:
                    c1:44:c6:27:6f:51:4c:9f:c9:83:da:7d:7a:e5:76:2e:
                    2c:5b:c6:bd:98:9d:d0:5d:49:20:3b:32:8c:48:8b:bd:
                    15:6e:78:2b:80:36:35:44:22:7e:e1:18:0c:17:6d:02:
                    b6:a3:6e:1e:79:88:18:7b:0e:78:86:39:2d:68:b4:45:
                    68:1e:b6:14:cc:fa:29:9e:88:28:06:92:e0:6e:d2:02:
                    72:70:fc:7c:3d:f6:09:8b:f5:e2:92:d8:74:70:25:1f:
                    44:df:40:c4:da:21:5d:b3:f7:06:4d:6e:86:2d:e3:54:
                    6e:a5:47:17:0d:2d:b0:02:8d:c3:85:2a:d0:56:b8:d9:
                    0f:ad:ea:ae:77:58:65:f7:be:9b:4e:61:28:5e:36:d5:
                    fa:03:16:02:12:9b:d8:b1:41:11:98:dd:bd:d2:72:83:
                    4c:f9:9b:01:ad:c7:8c:48:3e:fd:05:8f:65:04:dd:3f:
                    6e:a9:ed:ad:c3:97:dd:21:38:08:e3:cd:7c:d1:a3:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c6:3e:af:57:60:71:28:9c:2f:c9:2c:2d:a0:8b:ad:a3:
        f5:03:94:3e:ea:89:b2:a8:10:22:63:6a:3c:e1:ef:3c:
        69:f2:47:06:0d:87:31:9a:b4:af:42:d1:e1:71:a3:ba:
        9e:b7:53:e1:5e:11:8f:97:dc:b1:84:fb:ee:7a:51:c9:
        60:bc:e9:d9:54:8f:74:34:11:e2:c6:0b:89:8b:d2:67:
        7e:1e:10:51:c7:3e:4b:c1:98:09:ec:e4:7a:ea:11:af:
        67:b2:1c:0e:63:a9:44:bc:47:62:fa:95:8c:ff:ea:9f:
        16:a9:3c:8a:e6:55:9c:3a:6b:23:d4:0b:40:65:cf:cc:
        fe:3f:d6:59:b8:0e:42:4d:a0:f7:a4:7d:00:c7:61:bb:
        7a:87:bd:f4:2d:65:f3:0d:7c:94:85:f0:aa:ac:25:2e:
        d8:bf:5b:61:82:7d:10:fc:6e:bb:66:57:15:88:cb:0d:
        8c:38:46:31:aa:51:29:fd:f9:2f:83:a0:68:51:05:16:
        c2:3c:cd:5c:35:f4:a5:54:59:f7:b2:03:5c:64:71:eb:
        3f:11:b8:93:a2:4b:bf:62:ee:6c:ce:3f:8f:9f:70:14:
        27:d9:06:ba:99:29:93:b6:fe:30:c4:fe:d8:2e:e9:97:
        c0:c0:b7:90:40:95:26:83:55:dd:a7:c2:48:15:09:4d
    Fingerprint (SHA-256):
        6A:BC:F9:9D:38:FF:7E:F4:15:73:11:44:DC:15:93:32:82:8F:DC:48:F6:65:31:2A:58:AE:13:F4:13:33:CC:F9
    Fingerprint (SHA1):
        F8:34:76:92:D1:1C:3F:C3:99:AD:11:1A:C7:78:B0:B8:BC:6C:9A:89
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11763: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121179 (0x1e67d4db)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed May 10 12:15:00 2017
            Not After : Tue May 10 12:15:00 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:3f:fc:59:4c:6c:1e:7d:3f:51:86:56:73:0f:91:39:
                    3c:82:c0:9b:d1:de:c1:1c:d3:d5:61:64:54:df:8a:d9:
                    78:42:93:14:3c:2b:e0:60:9c:00:ec:72:4d:f2:57:86:
                    4b:26:99:15:48:7b:34:b7:18:03:cb:d3:e7:41:a1:11:
                    8d:78:13:9e:05:70:87:3a:a3:35:10:88:c2:18:fb:d6:
                    c1:e6:e9:09:7b:b6:2e:71:c6:dc:e1:e5:cb:3c:95:c8:
                    19:45:0a:73:83:76:ec:11:46:72:f7:1a:36:43:3b:38:
                    3a:06:46:01:ca:5a:20:c0:58:c7:e7:56:58:bd:b5:54:
                    67:1e:be:47:db:eb:ab:d6:fd:3a:99:40:92:c8:26:66:
                    92:c5:13:5d:37:44:fb:8a:f4:7d:16:33:a1:55:5a:1f:
                    55:7d:6b:f1:61:a8:85:63:ac:12:45:c5:08:16:31:f5:
                    c3:79:51:61:ba:19:71:53:dc:3f:d9:bf:13:ae:98:02:
                    8f:b7:09:26:cf:8c:10:1d:4c:e3:0d:e1:ca:97:44:f9:
                    c4:eb:cf:57:25:d3:78:18:9e:4e:b3:70:29:23:a3:f7:
                    e4:9d:21:6a:ff:cc:7f:1b:7a:9e:55:82:be:5b:3f:2b:
                    05:22:2f:97:9b:4e:8b:b5:9e:df:f4:0f:71:42:d2:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:b2:52:ae:db:5e:c3:7b:f2:1f:c2:46:66:86:14:35:
        4b:b4:b7:be:aa:af:01:d8:47:01:d2:cc:33:da:d6:be:
        be:6d:76:59:16:e0:98:a4:21:2b:41:b6:ef:d5:88:22:
        85:bd:4c:b8:20:64:23:73:f6:10:6d:12:ef:53:6e:0e:
        47:6a:5f:0f:2f:17:df:6d:27:2c:eb:39:9c:3a:84:bf:
        15:88:6c:6b:06:b8:25:66:f2:1f:88:e0:69:d6:11:f0:
        ce:7e:2d:f7:80:27:e3:8f:f8:80:c8:68:4d:cc:6d:a0:
        24:bb:91:a7:3c:d3:90:c5:71:71:d1:39:32:e2:cf:52:
        61:dc:91:6d:7e:48:7d:ae:da:88:20:a5:aa:5a:94:a1:
        3e:9d:84:73:f4:65:ca:cb:1d:0e:b3:9d:fc:df:31:f8:
        4e:8a:a4:ca:5e:60:b7:35:eb:5b:46:38:0d:0a:88:f6:
        39:ce:0f:e0:fb:9d:3f:c7:3d:1b:a7:4b:f3:e2:23:fd:
        8d:24:0d:55:63:22:a1:12:b5:31:02:1a:0e:e2:45:59:
        c5:5c:42:b3:4b:bc:48:b8:e5:c7:c2:aa:ee:06:e4:95:
        a6:bf:43:0d:52:aa:a9:0d:81:66:80:05:d0:81:49:b5:
        13:5b:1b:92:8e:28:b0:79:e8:a9:be:97:21:f3:78:ff
    Fingerprint (SHA-256):
        EB:41:36:54:9A:67:5C:B8:26:0A:DF:19:EE:E1:30:BD:18:A0:92:06:8C:98:0D:56:2C:74:C8:B5:C4:05:6B:70
    Fingerprint (SHA1):
        E4:5A:30:F2:BE:10:F6:81:5B:EF:CE:95:58:5C:59:13:25:E1:8B:3E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11764: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121180 (0x1e67d4dc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed May 10 12:15:01 2017
            Not After : Tue May 10 12:15:01 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:d6:50:ba:33:ba:26:5a:29:af:7d:a6:5e:b9:bc:47:
                    59:63:8f:ad:ec:ce:21:e9:49:40:aa:a0:2c:c8:45:59:
                    3e:ff:29:1f:a1:98:75:2b:ec:fe:ab:bf:d2:e6:7d:f4:
                    2e:be:a5:bc:a4:ba:db:01:e6:04:91:c8:f0:1b:1a:5f:
                    d0:bd:a3:77:37:ee:ed:dd:96:e0:44:29:85:d1:0e:fd:
                    8e:ff:29:4c:ac:34:b3:48:fc:55:f4:31:86:79:ad:13:
                    72:bf:a1:e4:2f:72:ec:b3:2b:91:c9:0a:3d:06:c4:3f:
                    73:c2:4b:e7:9b:e7:e0:4a:e1:18:c8:9e:68:26:79:f3:
                    b2:48:26:48:d6:94:db:73:0c:ac:29:83:cf:ef:3d:c5:
                    20:a2:a4:cb:65:94:ae:a8:c9:bb:d8:dd:db:2d:3e:7c:
                    bb:e5:4d:3d:d4:a4:4e:87:f6:41:3a:1d:ed:5d:5b:7b:
                    8c:40:d3:f6:85:b2:18:e2:0d:1e:76:9f:bd:ee:63:8f:
                    cb:b9:23:79:eb:98:c6:c3:e9:85:f5:09:84:e6:6f:c3:
                    0a:a0:33:f3:c0:db:fb:6f:91:29:6d:21:e6:76:fc:49:
                    73:bf:27:f2:2a:8c:f1:a8:0e:90:47:12:04:87:49:48:
                    a7:04:51:0f:7a:20:ce:10:6a:c7:96:4f:08:fd:00:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:fb:44:ae:16:65:fc:31:45:b6:d9:5c:2b:8d:3e:4b:
        39:74:ea:87:92:bd:06:90:bb:a5:f1:c4:5e:82:7e:45:
        da:b1:e3:d8:b5:27:0e:b5:0d:e3:92:dc:ba:ff:30:6c:
        de:92:c1:7a:6a:f6:6b:0c:ba:63:50:c2:8c:ec:0d:92:
        51:1e:46:d5:58:f9:8e:4c:af:2e:f3:87:de:72:1a:6b:
        54:ce:6e:51:c3:4b:d1:e3:3c:89:4d:6c:f2:a6:c5:f0:
        0b:6a:ef:ae:89:2c:66:36:f2:9d:8b:79:87:4a:88:a4:
        66:9a:c6:97:61:83:df:94:44:d6:8f:ed:46:b5:7c:0f:
        13:e7:69:88:96:41:55:fa:fb:72:d5:5f:7a:30:03:09:
        83:f7:58:f2:44:d1:3a:88:5e:cf:be:ee:b8:63:84:f4:
        f0:47:f5:b6:a2:f0:f1:26:41:af:5f:01:a8:d8:b1:54:
        94:45:59:65:86:06:94:a4:0f:a1:c5:3d:a7:cd:9c:2e:
        7f:c7:09:1a:d3:5a:01:33:f9:39:d1:28:de:2a:14:56:
        2d:b3:0b:42:c2:9e:95:ef:d5:de:2d:87:53:7d:72:40:
        c0:7c:23:1c:0d:ee:ef:98:46:b4:d0:49:48:a3:3e:bf:
        d3:50:0e:68:5d:8a:74:7f:f5:3b:28:a1:7d:66:2e:91
    Fingerprint (SHA-256):
        D1:FE:91:27:BC:8C:AB:D8:E6:22:59:AC:31:3B:F3:6B:B5:63:58:54:37:6B:5B:89:EF:FB:44:6A:1B:32:1B:EB
    Fingerprint (SHA1):
        C7:14:4A:DD:21:73:D9:9A:88:89:24:B9:8E:1E:EE:ED:A2:EC:8D:EC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11765: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121181 (0x1e67d4dd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed May 10 12:15:03 2017
            Not After : Tue May 10 12:15:03 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:b6:a5:f4:98:36:7b:7f:f5:75:f8:91:a5:74:68:b0:
                    8d:18:7a:33:a1:93:7b:40:ea:a7:52:13:4c:b7:de:cf:
                    fa:c9:ea:dc:b7:ff:9b:14:51:78:81:c5:ae:c2:65:81:
                    64:c6:e6:30:1d:e0:6c:02:07:2e:b7:6e:b8:61:3a:ed:
                    00:40:c5:10:b6:a9:ad:1c:69:aa:8b:1f:63:52:47:1d:
                    04:9b:17:33:f8:a3:57:56:a6:0b:43:8e:a3:1a:79:10:
                    70:e1:79:55:5c:81:80:6f:69:88:d8:3f:fc:df:77:26:
                    7d:a4:e6:64:53:be:f1:e7:5a:4e:03:8d:87:52:1a:92:
                    27:36:47:c9:ee:4b:b4:33:16:84:1c:fc:8f:b8:52:dd:
                    9c:23:ed:3f:06:92:7c:8a:df:a9:89:05:9a:d3:15:c3:
                    45:2f:e0:78:5f:df:41:07:ba:c1:a9:6c:38:e4:71:04:
                    94:af:e6:fb:af:cc:60:e7:a9:ac:cd:15:82:59:20:ef:
                    47:56:27:1e:f7:4d:66:53:fb:f5:7a:0f:eb:1a:d8:5d:
                    de:2c:be:63:91:d7:9a:1d:ec:7b:e7:cc:e9:b2:ee:34:
                    a0:15:f6:c2:ea:09:c9:04:16:c2:41:dd:e2:a8:43:2e:
                    27:be:85:eb:39:ca:7d:8c:2c:dc:a5:2c:a4:6d:29:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:8c:1b:d0:1b:b4:0b:62:f9:ba:8c:b7:7e:cc:fa:c6:
        b3:58:51:52:12:99:a6:76:6b:54:f2:2e:35:b9:81:67:
        4b:6b:51:16:b3:b1:d3:80:28:ac:b5:3c:6c:34:f6:92:
        aa:12:14:79:03:0e:b5:87:15:80:e2:f1:6b:8a:c2:82:
        65:73:17:1a:cd:9c:6d:39:23:a5:2d:89:74:5b:3c:c3:
        33:9e:6d:3d:6f:51:1a:b7:06:8e:b6:0b:83:87:c7:3d:
        69:96:3a:99:4c:d4:b9:2a:86:0b:0d:a0:7d:e3:05:c5:
        15:48:29:ab:87:fd:b7:19:c0:01:3b:14:b1:f6:16:64:
        dd:83:e1:9b:d4:78:ca:e9:66:f9:51:fc:24:6d:5c:27:
        8d:d8:1f:a7:40:4e:d6:fb:c6:f1:c5:95:09:cd:3f:7a:
        92:4d:61:b6:79:e9:26:b5:56:19:09:06:45:6c:6c:ff:
        dd:ff:c4:a2:18:8d:7f:31:b9:f2:3c:55:68:3f:c8:4e:
        52:7f:57:ae:4e:00:4b:aa:6f:83:11:1a:e2:1b:c1:da:
        a1:e7:c6:c6:4f:35:fa:a8:bb:76:c5:98:89:bc:6a:10:
        cc:b8:43:b0:58:bb:12:3b:a4:9d:2e:f5:20:e2:91:ec:
        5d:c3:6d:17:a5:ed:64:3d:27:df:20:dd:ec:0f:a7:dc
    Fingerprint (SHA-256):
        BF:C8:CC:94:FE:53:05:B6:3D:21:EC:D8:28:31:D0:91:5A:D4:B8:32:65:73:1E:0A:7E:0F:26:6B:71:03:0E:6E
    Fingerprint (SHA1):
        5F:1A:9F:9F:49:1F:84:7B:60:E7:8C:F9:53:79:5C:52:8D:21:9D:F2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11766: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121182 (0x1e67d4de)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed May 10 12:15:05 2017
            Not After : Tue May 10 12:15:05 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:a9:4e:1b:ad:d5:1a:5b:94:20:fc:37:57:86:83:0f:
                    d0:d1:7e:e9:87:c9:fb:bf:25:34:31:e9:46:29:fa:ba:
                    a8:99:5f:77:02:8f:1e:bb:e3:83:b4:91:5a:83:de:0e:
                    a1:b4:9a:a7:48:15:ea:d5:c7:d3:f9:5c:95:c4:f4:12:
                    fa:fb:6f:93:a6:8e:cf:7a:26:dd:7d:8e:80:52:da:d7:
                    84:15:89:db:cc:e5:d3:3c:44:f2:5f:6c:cd:ca:bc:77:
                    03:9d:fb:96:36:0d:b0:35:83:cd:e4:02:ba:c3:fd:71:
                    9c:93:fa:bc:f9:8c:26:0d:bc:c0:4e:3f:27:2d:96:c0:
                    bc:5a:ce:b4:ad:17:38:e7:08:fa:2b:d0:69:5f:d4:ea:
                    d4:aa:b4:06:e9:b2:31:06:14:76:6c:f6:ec:8c:ed:db:
                    a9:87:45:99:2b:af:37:96:04:2b:2c:6e:1f:95:22:49:
                    99:b0:a3:67:cf:86:0e:5b:a0:bd:77:50:61:5d:ac:b3:
                    0a:76:74:b3:27:47:97:2a:d9:3f:c2:87:a8:b0:4b:0b:
                    2a:e4:9b:f7:fe:9d:25:fa:da:03:b1:ab:12:80:77:2d:
                    30:cd:cd:02:4f:04:9e:b2:24:b5:d4:5e:39:a1:b7:aa:
                    ea:df:8f:5e:43:06:89:61:e4:4e:e7:d7:a8:f9:78:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:1c:8e:e7:b4:1e:77:d7:28:d0:65:62:9b:4f:b4:0b:
        f9:40:2d:de:86:e6:f5:c2:f3:16:ad:41:b7:d4:33:0c:
        0d:7d:56:0a:d1:a4:f1:c8:8d:fc:dd:6a:4d:c2:2d:8f:
        19:dd:8a:62:6b:67:c1:8d:68:de:be:4b:c7:92:b7:02:
        3d:31:40:1f:59:64:39:a9:48:23:31:dd:56:c6:18:9b:
        b6:9f:92:0d:85:ee:ab:dc:02:df:f0:00:74:ec:8f:58:
        23:d7:50:c2:fa:1e:69:8c:4e:76:b1:9d:f9:82:08:e7:
        e0:e1:ce:74:5a:9d:b7:23:d7:51:5c:05:cc:a6:7a:d9:
        09:44:c6:f1:df:47:a5:6b:39:31:1e:57:14:89:c1:4f:
        8a:1e:8b:b6:fd:a0:33:af:8c:af:fb:08:a5:e0:21:15:
        b5:d6:95:35:ed:a2:76:b0:c4:ae:a0:9c:fd:74:c3:2c:
        a3:a8:d3:41:89:4c:e7:ec:d4:8d:11:71:fd:e5:cf:c3:
        ae:3b:00:f9:ca:54:a3:01:c3:d7:bf:31:db:66:4a:47:
        da:be:95:80:fd:88:8b:2e:6e:49:3c:a5:37:15:2e:5e:
        f7:2c:a3:e5:91:f3:d0:97:ba:84:95:8f:de:3a:4b:26:
        e8:78:55:cf:0b:b4:4d:f1:50:b7:d7:97:18:47:df:4b
    Fingerprint (SHA-256):
        8A:25:54:8D:56:A8:7D:5D:AA:F0:CB:44:82:2C:BA:C4:C7:8E:86:09:06:F5:53:AE:B9:DE:45:D9:BF:A7:2E:C6
    Fingerprint (SHA1):
        2B:BB:5D:78:75:9A:97:E2:1C:48:87:FD:69:EB:EA:48:92:38:E9:8A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11767: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121183 (0x1e67d4df)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed May 10 12:15:07 2017
            Not After : Tue May 10 12:15:07 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:7f:33:5c:ae:64:b7:9f:20:77:ee:5d:12:5d:04:5a:
                    44:9b:c1:a4:76:4d:8c:80:bb:83:a3:f4:ab:64:67:9a:
                    a3:1c:7a:23:25:39:04:24:96:32:bb:e7:25:02:e2:06:
                    8a:14:4f:80:de:96:33:9f:93:b4:4d:bb:7a:14:5c:c1:
                    c1:56:5b:c7:9b:29:04:9f:d7:32:27:3a:74:7b:14:ee:
                    9a:65:b5:8e:ce:4a:d0:e2:71:38:b7:0f:37:98:4c:6d:
                    9b:1f:f6:1a:17:44:5a:32:8b:ae:86:86:32:c9:cb:66:
                    a3:ab:56:4f:31:72:45:66:be:11:b9:28:79:db:e1:21:
                    47:64:6e:fc:88:d8:f9:7c:af:40:ee:e5:2c:ef:37:58:
                    d4:58:f8:1b:8b:b2:1f:ec:5b:4c:83:be:40:96:03:e1:
                    dd:33:4b:49:cd:cd:bc:aa:2c:44:93:3f:3e:a2:21:ed:
                    f5:ad:ca:3f:39:21:db:c3:b9:89:2c:df:92:d7:06:b1:
                    08:a3:52:67:4e:ea:33:84:77:88:2c:d0:85:36:9c:4d:
                    23:cd:c8:51:34:df:81:71:c4:0a:32:41:58:c9:b5:b8:
                    55:8e:56:fe:73:6e:cd:df:30:cd:80:03:47:d3:ca:dd:
                    28:d4:c6:17:fe:1d:b3:fe:fd:7d:9a:7a:21:09:b6:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:7e:88:81:39:8e:5c:51:96:39:6f:20:55:9c:d4:0c:
        91:d4:04:b8:5b:68:60:fc:58:16:78:e2:f3:56:08:3d:
        15:04:75:f3:f5:c8:cd:77:2d:47:18:28:1b:1f:a0:0b:
        97:84:85:8f:8e:0f:c8:ee:16:5d:8d:70:1f:0c:5b:da:
        73:f0:55:25:4f:9b:53:76:77:43:2f:ac:60:9a:7e:6a:
        d6:11:5a:bb:6f:3d:f0:07:32:c5:00:de:79:73:17:e4:
        71:f2:47:41:b2:a3:4c:34:4f:68:07:36:ca:51:96:07:
        d4:15:bb:db:ae:50:c7:52:0e:55:a9:dc:d4:50:c5:6e:
        1f:87:45:63:ef:82:68:76:db:62:b9:98:16:e0:92:52:
        bd:61:87:bc:6d:f5:e3:a4:90:75:cf:bc:c3:42:ca:6a:
        32:41:0e:28:5f:f3:4f:4c:4a:63:11:ae:82:84:73:10:
        46:95:09:10:2c:14:68:2a:dd:c9:4a:cb:e9:49:b6:6a:
        dc:cf:f5:cf:a9:40:f3:5e:de:52:aa:06:3c:44:5f:37:
        87:b1:d5:39:dc:33:e6:4b:df:38:60:49:7d:2c:da:69:
        f5:1d:a6:9d:ad:65:1a:29:64:c0:fc:e5:33:f5:80:c2:
        64:64:0b:ff:48:49:9a:42:91:78:44:1f:b7:8e:18:2b
    Fingerprint (SHA-256):
        54:95:D5:52:93:E0:28:C4:FC:0B:A3:B8:07:89:E7:83:23:6D:BD:63:0C:4A:FA:34:44:16:17:44:CD:E2:EC:A0
    Fingerprint (SHA1):
        03:5B:21:58:49:E9:B7:29:E1:57:42:3C:8A:D2:82:36:B5:A4:0E:2A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11768: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11769: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121198 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11770: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11771: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11772: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11773: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121199   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11774: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11775: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11776: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11777: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121200   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11778: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11779: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11780: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11781: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510121201   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11782: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11783: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11784: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121198 (0x1e67d4ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:20 2017
            Not After : Tue May 10 12:15:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:08:20:58:f3:da:92:47:72:66:2f:6d:8c:2e:c4:ca:
                    4a:71:2d:11:0c:cf:7c:a5:b4:4d:f9:7d:84:a2:5f:e8:
                    9d:7c:3b:92:4c:6b:79:90:43:c9:25:1b:4d:06:6a:76:
                    ed:96:6a:cc:28:d8:2f:15:4a:56:c6:9b:96:64:2a:79:
                    11:a6:ff:c0:0b:aa:56:f9:8d:11:79:a7:39:98:9b:1c:
                    11:64:b8:75:90:e3:af:ed:c9:bb:b3:93:65:39:9b:62:
                    e8:8d:10:0c:b4:95:57:6c:99:d9:80:21:df:47:ee:d9:
                    44:35:f2:7a:af:90:56:95:8a:b2:5a:9b:c3:3e:ae:57:
                    6a:a2:20:3d:03:40:ab:23:e6:6a:c8:af:7a:e0:70:45:
                    de:ee:3b:d0:b3:bc:e9:ff:c8:06:56:3f:d9:6b:1f:e2:
                    79:d3:52:db:d6:74:bf:7d:2f:85:30:2c:7f:d8:4a:dd:
                    14:9a:0b:64:65:f5:5e:60:03:8b:fc:b4:c1:e8:21:08:
                    31:7d:9d:10:3d:70:ef:6d:15:cc:eb:d8:87:ba:c3:6b:
                    b8:8b:42:dd:36:56:2a:0f:2d:fd:1a:7c:84:73:3c:bc:
                    1c:3f:1e:d2:d7:2e:26:3b:3c:3e:e8:9d:f3:ac:47:15:
                    fc:f3:c1:c5:f3:11:3c:cc:fa:0f:25:7a:4d:c0:d9:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:1a:06:b6:d4:60:0f:ac:35:95:cb:43:1f:fa:5c:dc:
        82:90:9b:32:f0:05:36:b2:76:e7:71:ad:fd:97:c2:c9:
        6f:83:51:80:7f:63:f0:1c:21:29:d5:c2:4a:05:b9:54:
        c5:56:c0:e0:88:77:48:f9:fe:8f:85:61:85:c7:da:0c:
        4a:df:0f:e5:2e:c0:e1:c8:51:cd:56:1c:b2:23:75:94:
        56:f1:bf:a6:f8:31:ea:b4:8e:98:8d:2f:06:a4:71:24:
        51:84:8f:d0:e2:75:6b:02:65:d2:02:ae:71:92:40:66:
        82:48:5d:1e:9a:90:fb:87:cf:44:37:7d:5b:33:2b:fc:
        2a:83:e5:62:89:11:31:b6:00:58:ae:48:55:f9:a1:da:
        6c:f6:c6:11:85:74:01:81:7f:bc:c8:e0:65:0c:53:b4:
        dc:f0:37:ba:cf:0d:bc:1c:aa:40:e5:09:8d:ae:71:ff:
        80:d7:43:3c:aa:6c:00:2b:cf:bc:b4:9d:cb:7c:ab:d7:
        d0:ff:5b:74:c1:af:e1:6d:e2:e1:6a:c6:bd:d5:3a:bf:
        54:27:56:3e:a3:1c:23:90:ea:48:dd:58:50:79:7e:21:
        4d:ac:3d:c9:a7:b4:5d:8b:f6:7d:02:75:f2:36:c9:6b:
        6b:09:09:f8:c2:5d:2d:03:e9:2b:eb:e7:d3:44:7d:81
    Fingerprint (SHA-256):
        1C:67:74:FC:DE:32:F9:38:E1:88:D2:67:6F:C2:D5:64:F8:5F:E6:45:3E:88:94:F6:C2:5E:CE:8A:7C:3E:25:6C
    Fingerprint (SHA1):
        BD:06:E8:7C:DF:A2:E3:57:DE:38:41:B6:16:6D:8C:2A:11:22:F4:B2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11785: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11786: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121199 (0x1e67d4ef)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:22 2017
            Not After : Tue May 10 12:15:22 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:5e:1d:d1:25:1c:f7:71:f4:ba:38:06:b0:f1:03:df:
                    00:4f:98:e8:9d:87:ca:02:cd:2c:33:b9:6e:e7:c2:e1:
                    db:b1:01:bc:14:1e:26:c6:8d:b0:07:51:59:06:d9:2f:
                    58:61:ce:c4:73:f7:98:22:ec:e9:ef:33:ea:c0:2f:bd:
                    c2:f3:7e:05:52:f7:a9:71:7b:9f:7a:dc:1f:e6:85:90:
                    1a:28:ae:d8:38:b4:4d:9b:09:5c:23:5a:0c:0b:7c:34:
                    71:7a:46:78:51:fa:b7:2f:2d:0e:5e:68:20:80:87:dc:
                    00:80:13:a1:47:fa:fb:9d:1f:4a:96:58:e4:a3:96:8c:
                    4e:02:b7:88:3c:de:4b:87:4e:ce:51:43:50:7c:f6:3e:
                    f9:e6:8d:f4:94:87:08:d9:c3:1a:fd:e6:49:54:07:e6:
                    46:2f:65:6a:f5:54:db:c1:2b:7b:3e:62:f5:10:0c:27:
                    be:e5:a1:37:59:a7:ee:27:8f:34:15:68:25:ef:77:15:
                    9b:46:cf:ce:ff:52:d2:25:56:d9:4f:8a:32:c2:65:28:
                    65:a5:2c:7d:9f:79:f9:04:57:5e:6d:da:3f:47:d6:53:
                    38:67:c2:ff:d7:20:80:a8:f7:5b:61:76:11:4c:25:37:
                    fd:07:2a:85:55:a8:29:b0:e1:78:6d:e9:65:d2:f3:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:cd:ce:f7:1d:5a:b4:4c:85:58:da:3b:0a:d3:dc:af:
        29:50:23:9a:ef:c0:76:37:46:52:c8:09:2e:bd:a4:ff:
        bf:3a:27:07:f2:8d:de:2f:c3:87:44:93:f9:e0:f2:0b:
        16:1d:73:a0:13:8e:ea:16:98:82:8c:62:8d:8f:95:c6:
        d6:22:55:d2:35:e0:7d:48:76:2e:a1:2e:35:41:b4:c0:
        2b:2e:22:90:d0:0b:d0:98:05:bb:8b:f7:ae:87:be:d1:
        34:33:0e:0b:88:d9:a4:09:fe:87:56:d6:bb:8b:f7:b5:
        0b:64:29:18:68:3a:fa:d6:59:55:0b:f4:a4:7a:a5:0d:
        90:05:2e:2d:f6:02:a6:2e:47:31:df:f9:a3:bf:d3:c1:
        ac:b8:c1:da:69:76:a2:85:af:fa:b1:fa:77:0d:12:25:
        90:13:26:7b:b8:15:53:96:ee:3e:10:8c:cd:7c:02:72:
        5d:f0:8a:19:c6:cf:ae:8e:96:c0:b9:48:3b:c5:a6:38:
        02:95:94:6a:90:92:ca:ca:2a:1b:58:dd:8c:48:38:be:
        1e:c1:00:b7:73:0a:aa:eb:95:b4:06:76:bc:a1:f0:30:
        88:73:b6:ed:d7:dd:3d:63:6b:87:d4:dd:af:61:b5:43:
        77:fa:5f:a6:72:81:b4:d8:b0:0c:37:dd:15:ef:64:e6
    Fingerprint (SHA-256):
        54:76:BE:3D:C8:8E:6F:7B:12:CD:8E:55:AF:A6:8C:F3:96:F6:B6:16:E5:CF:43:53:A8:54:47:9E:AA:42:7B:FB
    Fingerprint (SHA1):
        DB:B3:A2:61:8D:FC:DC:2D:94:D4:DB:12:8A:43:8A:6A:92:47:B5:AF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11787: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11788: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121200 (0x1e67d4f0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:15:24 2017
            Not After : Tue May 10 12:15:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:4e:b2:33:3b:3b:df:ca:98:0e:29:7f:13:a3:ce:d3:
                    6a:94:44:b9:47:cf:09:45:30:7e:56:69:8f:cb:49:18:
                    58:e2:0b:6f:c8:b9:fa:04:28:51:15:5f:81:3a:52:16:
                    96:27:49:15:f9:da:21:3f:7d:76:51:5e:3d:13:e0:7d:
                    d9:39:14:a6:9e:03:11:21:b1:9b:97:6e:33:df:0e:00:
                    ab:16:1c:9a:f8:ed:52:21:e0:30:8f:90:7c:30:95:53:
                    b6:9d:d0:3a:14:c7:51:1c:25:12:46:4f:b6:2b:5a:36:
                    a0:6a:41:91:36:b6:79:51:4b:41:8d:bc:31:e9:14:64:
                    70:56:24:e9:a6:ac:b3:9d:b5:f7:30:81:50:fd:91:6f:
                    80:d2:6e:b7:d8:f8:87:e3:f1:9f:07:14:85:7e:d8:4a:
                    6c:6c:ee:bc:b4:29:27:55:e2:cf:6e:d9:dd:5c:67:42:
                    ff:34:33:21:c6:cc:46:6d:d7:9b:ea:3a:ef:e6:3b:2c:
                    b6:37:26:87:a5:df:22:17:f3:83:73:0f:da:1b:5b:6c:
                    45:07:3f:00:fe:04:a6:6d:96:0e:01:da:23:f0:20:96:
                    21:d1:60:c4:25:c7:f2:29:c1:83:81:f2:81:39:82:e9:
                    02:c8:c0:1d:63:41:db:73:0b:62:c3:41:79:9f:72:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:5c:2d:9a:f6:96:f9:30:8b:58:cb:e9:cb:a0:e6:a8:
        ef:5a:58:fb:22:b7:b4:89:4e:d4:cb:8a:65:7b:6e:aa:
        3a:b8:a2:cd:f6:dc:6f:c3:1b:96:4e:b5:6e:55:4b:33:
        5f:e4:86:88:6e:c5:69:7e:9d:da:b4:ae:21:00:ea:1c:
        7e:a5:4a:33:5a:93:16:94:51:74:ce:b3:01:4b:35:5a:
        d0:3e:33:5e:53:5d:77:cc:e0:97:7f:72:a0:83:88:41:
        6a:92:4b:3a:a8:85:71:bd:7a:43:a8:41:8a:cd:94:e5:
        4c:b8:cf:a9:44:ba:23:5d:1d:1b:fd:0f:b7:fd:12:7b:
        9d:92:a3:d9:9c:9d:ab:30:7b:c8:31:2b:fe:3f:f1:86:
        85:0f:1c:36:8a:86:5a:3d:ac:3c:97:70:07:03:a9:5b:
        d9:63:6c:ee:00:a3:7f:ad:44:f0:be:a9:f8:6b:3e:38:
        a7:96:da:14:fc:e7:1a:af:33:a4:3c:2b:3a:7a:0c:b7:
        ef:36:10:30:b9:d1:5c:ce:9d:92:15:f1:9f:a6:02:6e:
        e0:a0:ca:03:fe:92:ce:73:03:7c:11:7b:46:9b:75:ac:
        01:ac:42:97:79:62:92:f5:21:19:f1:1c:9e:5c:fb:0e:
        5b:9c:cc:3d:75:85:4b:58:f9:1e:7b:30:f9:e8:7d:8d
    Fingerprint (SHA-256):
        AF:09:22:1A:D9:59:0E:7A:56:F8:43:01:1B:26:8E:97:50:AE:4A:69:A7:13:A0:A6:04:48:FC:FF:EC:3C:3A:F3
    Fingerprint (SHA1):
        60:96:98:C0:35:38:40:E0:CA:05:92:55:03:99:35:00:19:F4:16:F5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11789: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11790: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11791: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11792: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11793: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121198 (0x1e67d4ee)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:20 2017
            Not After : Tue May 10 12:15:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:08:20:58:f3:da:92:47:72:66:2f:6d:8c:2e:c4:ca:
                    4a:71:2d:11:0c:cf:7c:a5:b4:4d:f9:7d:84:a2:5f:e8:
                    9d:7c:3b:92:4c:6b:79:90:43:c9:25:1b:4d:06:6a:76:
                    ed:96:6a:cc:28:d8:2f:15:4a:56:c6:9b:96:64:2a:79:
                    11:a6:ff:c0:0b:aa:56:f9:8d:11:79:a7:39:98:9b:1c:
                    11:64:b8:75:90:e3:af:ed:c9:bb:b3:93:65:39:9b:62:
                    e8:8d:10:0c:b4:95:57:6c:99:d9:80:21:df:47:ee:d9:
                    44:35:f2:7a:af:90:56:95:8a:b2:5a:9b:c3:3e:ae:57:
                    6a:a2:20:3d:03:40:ab:23:e6:6a:c8:af:7a:e0:70:45:
                    de:ee:3b:d0:b3:bc:e9:ff:c8:06:56:3f:d9:6b:1f:e2:
                    79:d3:52:db:d6:74:bf:7d:2f:85:30:2c:7f:d8:4a:dd:
                    14:9a:0b:64:65:f5:5e:60:03:8b:fc:b4:c1:e8:21:08:
                    31:7d:9d:10:3d:70:ef:6d:15:cc:eb:d8:87:ba:c3:6b:
                    b8:8b:42:dd:36:56:2a:0f:2d:fd:1a:7c:84:73:3c:bc:
                    1c:3f:1e:d2:d7:2e:26:3b:3c:3e:e8:9d:f3:ac:47:15:
                    fc:f3:c1:c5:f3:11:3c:cc:fa:0f:25:7a:4d:c0:d9:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:1a:06:b6:d4:60:0f:ac:35:95:cb:43:1f:fa:5c:dc:
        82:90:9b:32:f0:05:36:b2:76:e7:71:ad:fd:97:c2:c9:
        6f:83:51:80:7f:63:f0:1c:21:29:d5:c2:4a:05:b9:54:
        c5:56:c0:e0:88:77:48:f9:fe:8f:85:61:85:c7:da:0c:
        4a:df:0f:e5:2e:c0:e1:c8:51:cd:56:1c:b2:23:75:94:
        56:f1:bf:a6:f8:31:ea:b4:8e:98:8d:2f:06:a4:71:24:
        51:84:8f:d0:e2:75:6b:02:65:d2:02:ae:71:92:40:66:
        82:48:5d:1e:9a:90:fb:87:cf:44:37:7d:5b:33:2b:fc:
        2a:83:e5:62:89:11:31:b6:00:58:ae:48:55:f9:a1:da:
        6c:f6:c6:11:85:74:01:81:7f:bc:c8:e0:65:0c:53:b4:
        dc:f0:37:ba:cf:0d:bc:1c:aa:40:e5:09:8d:ae:71:ff:
        80:d7:43:3c:aa:6c:00:2b:cf:bc:b4:9d:cb:7c:ab:d7:
        d0:ff:5b:74:c1:af:e1:6d:e2:e1:6a:c6:bd:d5:3a:bf:
        54:27:56:3e:a3:1c:23:90:ea:48:dd:58:50:79:7e:21:
        4d:ac:3d:c9:a7:b4:5d:8b:f6:7d:02:75:f2:36:c9:6b:
        6b:09:09:f8:c2:5d:2d:03:e9:2b:eb:e7:d3:44:7d:81
    Fingerprint (SHA-256):
        1C:67:74:FC:DE:32:F9:38:E1:88:D2:67:6F:C2:D5:64:F8:5F:E6:45:3E:88:94:F6:C2:5E:CE:8A:7C:3E:25:6C
    Fingerprint (SHA1):
        BD:06:E8:7C:DF:A2:E3:57:DE:38:41:B6:16:6D:8C:2A:11:22:F4:B2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11794: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11795: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121199 (0x1e67d4ef)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:22 2017
            Not After : Tue May 10 12:15:22 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:5e:1d:d1:25:1c:f7:71:f4:ba:38:06:b0:f1:03:df:
                    00:4f:98:e8:9d:87:ca:02:cd:2c:33:b9:6e:e7:c2:e1:
                    db:b1:01:bc:14:1e:26:c6:8d:b0:07:51:59:06:d9:2f:
                    58:61:ce:c4:73:f7:98:22:ec:e9:ef:33:ea:c0:2f:bd:
                    c2:f3:7e:05:52:f7:a9:71:7b:9f:7a:dc:1f:e6:85:90:
                    1a:28:ae:d8:38:b4:4d:9b:09:5c:23:5a:0c:0b:7c:34:
                    71:7a:46:78:51:fa:b7:2f:2d:0e:5e:68:20:80:87:dc:
                    00:80:13:a1:47:fa:fb:9d:1f:4a:96:58:e4:a3:96:8c:
                    4e:02:b7:88:3c:de:4b:87:4e:ce:51:43:50:7c:f6:3e:
                    f9:e6:8d:f4:94:87:08:d9:c3:1a:fd:e6:49:54:07:e6:
                    46:2f:65:6a:f5:54:db:c1:2b:7b:3e:62:f5:10:0c:27:
                    be:e5:a1:37:59:a7:ee:27:8f:34:15:68:25:ef:77:15:
                    9b:46:cf:ce:ff:52:d2:25:56:d9:4f:8a:32:c2:65:28:
                    65:a5:2c:7d:9f:79:f9:04:57:5e:6d:da:3f:47:d6:53:
                    38:67:c2:ff:d7:20:80:a8:f7:5b:61:76:11:4c:25:37:
                    fd:07:2a:85:55:a8:29:b0:e1:78:6d:e9:65:d2:f3:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:cd:ce:f7:1d:5a:b4:4c:85:58:da:3b:0a:d3:dc:af:
        29:50:23:9a:ef:c0:76:37:46:52:c8:09:2e:bd:a4:ff:
        bf:3a:27:07:f2:8d:de:2f:c3:87:44:93:f9:e0:f2:0b:
        16:1d:73:a0:13:8e:ea:16:98:82:8c:62:8d:8f:95:c6:
        d6:22:55:d2:35:e0:7d:48:76:2e:a1:2e:35:41:b4:c0:
        2b:2e:22:90:d0:0b:d0:98:05:bb:8b:f7:ae:87:be:d1:
        34:33:0e:0b:88:d9:a4:09:fe:87:56:d6:bb:8b:f7:b5:
        0b:64:29:18:68:3a:fa:d6:59:55:0b:f4:a4:7a:a5:0d:
        90:05:2e:2d:f6:02:a6:2e:47:31:df:f9:a3:bf:d3:c1:
        ac:b8:c1:da:69:76:a2:85:af:fa:b1:fa:77:0d:12:25:
        90:13:26:7b:b8:15:53:96:ee:3e:10:8c:cd:7c:02:72:
        5d:f0:8a:19:c6:cf:ae:8e:96:c0:b9:48:3b:c5:a6:38:
        02:95:94:6a:90:92:ca:ca:2a:1b:58:dd:8c:48:38:be:
        1e:c1:00:b7:73:0a:aa:eb:95:b4:06:76:bc:a1:f0:30:
        88:73:b6:ed:d7:dd:3d:63:6b:87:d4:dd:af:61:b5:43:
        77:fa:5f:a6:72:81:b4:d8:b0:0c:37:dd:15:ef:64:e6
    Fingerprint (SHA-256):
        54:76:BE:3D:C8:8E:6F:7B:12:CD:8E:55:AF:A6:8C:F3:96:F6:B6:16:E5:CF:43:53:A8:54:47:9E:AA:42:7B:FB
    Fingerprint (SHA1):
        DB:B3:A2:61:8D:FC:DC:2D:94:D4:DB:12:8A:43:8A:6A:92:47:B5:AF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11796: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11797: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121200 (0x1e67d4f0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:15:24 2017
            Not After : Tue May 10 12:15:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:4e:b2:33:3b:3b:df:ca:98:0e:29:7f:13:a3:ce:d3:
                    6a:94:44:b9:47:cf:09:45:30:7e:56:69:8f:cb:49:18:
                    58:e2:0b:6f:c8:b9:fa:04:28:51:15:5f:81:3a:52:16:
                    96:27:49:15:f9:da:21:3f:7d:76:51:5e:3d:13:e0:7d:
                    d9:39:14:a6:9e:03:11:21:b1:9b:97:6e:33:df:0e:00:
                    ab:16:1c:9a:f8:ed:52:21:e0:30:8f:90:7c:30:95:53:
                    b6:9d:d0:3a:14:c7:51:1c:25:12:46:4f:b6:2b:5a:36:
                    a0:6a:41:91:36:b6:79:51:4b:41:8d:bc:31:e9:14:64:
                    70:56:24:e9:a6:ac:b3:9d:b5:f7:30:81:50:fd:91:6f:
                    80:d2:6e:b7:d8:f8:87:e3:f1:9f:07:14:85:7e:d8:4a:
                    6c:6c:ee:bc:b4:29:27:55:e2:cf:6e:d9:dd:5c:67:42:
                    ff:34:33:21:c6:cc:46:6d:d7:9b:ea:3a:ef:e6:3b:2c:
                    b6:37:26:87:a5:df:22:17:f3:83:73:0f:da:1b:5b:6c:
                    45:07:3f:00:fe:04:a6:6d:96:0e:01:da:23:f0:20:96:
                    21:d1:60:c4:25:c7:f2:29:c1:83:81:f2:81:39:82:e9:
                    02:c8:c0:1d:63:41:db:73:0b:62:c3:41:79:9f:72:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:5c:2d:9a:f6:96:f9:30:8b:58:cb:e9:cb:a0:e6:a8:
        ef:5a:58:fb:22:b7:b4:89:4e:d4:cb:8a:65:7b:6e:aa:
        3a:b8:a2:cd:f6:dc:6f:c3:1b:96:4e:b5:6e:55:4b:33:
        5f:e4:86:88:6e:c5:69:7e:9d:da:b4:ae:21:00:ea:1c:
        7e:a5:4a:33:5a:93:16:94:51:74:ce:b3:01:4b:35:5a:
        d0:3e:33:5e:53:5d:77:cc:e0:97:7f:72:a0:83:88:41:
        6a:92:4b:3a:a8:85:71:bd:7a:43:a8:41:8a:cd:94:e5:
        4c:b8:cf:a9:44:ba:23:5d:1d:1b:fd:0f:b7:fd:12:7b:
        9d:92:a3:d9:9c:9d:ab:30:7b:c8:31:2b:fe:3f:f1:86:
        85:0f:1c:36:8a:86:5a:3d:ac:3c:97:70:07:03:a9:5b:
        d9:63:6c:ee:00:a3:7f:ad:44:f0:be:a9:f8:6b:3e:38:
        a7:96:da:14:fc:e7:1a:af:33:a4:3c:2b:3a:7a:0c:b7:
        ef:36:10:30:b9:d1:5c:ce:9d:92:15:f1:9f:a6:02:6e:
        e0:a0:ca:03:fe:92:ce:73:03:7c:11:7b:46:9b:75:ac:
        01:ac:42:97:79:62:92:f5:21:19:f1:1c:9e:5c:fb:0e:
        5b:9c:cc:3d:75:85:4b:58:f9:1e:7b:30:f9:e8:7d:8d
    Fingerprint (SHA-256):
        AF:09:22:1A:D9:59:0E:7A:56:F8:43:01:1B:26:8E:97:50:AE:4A:69:A7:13:A0:A6:04:48:FC:FF:EC:3C:3A:F3
    Fingerprint (SHA1):
        60:96:98:C0:35:38:40:E0:CA:05:92:55:03:99:35:00:19:F4:16:F5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11798: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11799: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11800: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121202 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11801: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11802: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11803: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11804: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121203   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11805: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11806: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11807: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11808: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121204   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11809: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11810: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #11811: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11812: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510121205   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11813: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11814: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #11815: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11816: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510121206   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11817: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11818: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11819: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121202 (0x1e67d4f2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:29 2017
            Not After : Tue May 10 12:15:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:a4:dc:1a:11:f3:38:fb:33:61:d4:6c:c1:1b:c0:88:
                    67:2c:d6:e9:f3:7c:6c:7d:3f:80:59:9e:ee:7e:ae:f6:
                    55:69:ac:83:9b:53:08:32:be:6f:1a:2b:a7:43:b8:92:
                    8c:3e:ca:ed:a3:0d:53:99:04:25:d3:6a:ab:f6:6f:c1:
                    ec:8e:d0:0f:c4:2b:9b:11:97:fa:d5:a2:c9:f6:bc:75:
                    b1:a7:c0:dc:c5:32:88:c9:25:46:dd:cd:ec:4b:22:2b:
                    75:a6:3d:48:ff:ce:a1:e4:20:df:b4:a0:a2:ce:94:a8:
                    27:44:4b:66:67:2a:ca:c6:be:6c:5c:bc:de:50:77:96:
                    9f:46:38:9e:96:e3:98:d0:10:7e:64:1d:cf:5d:71:43:
                    8c:89:ae:bb:91:46:ea:1c:e9:96:76:c4:85:30:86:e2:
                    0d:b5:40:de:0a:58:a5:c7:88:1c:56:b0:04:f6:bc:12:
                    e2:7f:da:4b:12:f1:c1:90:42:ac:5a:a6:91:8c:cf:f8:
                    2c:b0:d5:2c:c8:cf:c7:78:50:42:68:12:e5:40:a7:b1:
                    5f:56:a5:8b:92:41:96:c3:10:74:86:ae:14:ff:e7:35:
                    23:48:fa:57:bb:f8:c6:75:58:01:02:f5:70:fe:da:d9:
                    5f:92:3f:34:cd:30:ea:a8:0d:90:f1:61:4f:23:78:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:05:91:a5:2c:ec:8d:1e:6a:07:6c:9c:82:2f:44:38:
        dd:69:ea:79:8a:81:8e:1f:bb:f6:ac:ab:be:8a:02:67:
        6c:75:5b:55:17:fd:81:8a:bc:2c:8b:65:df:48:74:e6:
        ac:27:be:40:5d:9c:de:1c:88:c8:da:f7:16:d4:db:36:
        c0:76:af:be:1e:b6:93:1f:ea:36:45:a2:bd:ff:e5:7a:
        6a:10:03:8b:ed:24:66:ae:fc:60:76:e7:5f:e3:31:91:
        1a:c5:30:d1:08:22:e8:4a:bc:fa:9b:de:5a:6a:30:50:
        a0:d1:0e:33:61:57:fb:08:1e:76:2a:3f:d0:1d:2a:10:
        5d:da:29:10:9b:5e:a9:55:61:9b:1d:a4:c8:b4:38:aa:
        ea:df:9c:37:6a:16:be:2c:e1:2e:0a:1f:26:7a:4a:87:
        7e:83:b5:65:c2:0f:08:a5:e7:5b:ef:46:a6:80:7b:f2:
        b1:54:71:76:b3:8b:d4:c1:db:52:9f:9d:4a:33:f2:d0:
        ce:23:5f:f6:df:0e:90:13:dc:fc:5b:34:f0:89:33:b2:
        d8:df:25:07:3c:37:e6:0f:e2:2f:e5:0c:32:b7:44:3d:
        59:8d:72:f1:4a:3d:69:48:94:61:0d:b4:8f:b0:fc:79:
        57:4a:5c:ac:55:c6:5a:3b:e2:93:fe:3f:ee:ec:48:c2
    Fingerprint (SHA-256):
        E8:1B:05:74:65:1D:D0:DA:BF:0D:3A:4A:68:80:55:E5:7F:2C:D3:5F:95:6C:EE:D4:FA:E4:FF:63:33:3B:7D:71
    Fingerprint (SHA1):
        5A:17:DF:38:0A:5A:B3:0D:4D:24:C5:E8:8F:6D:6D:97:36:D6:D2:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11820: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11821: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121203 (0x1e67d4f3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:30 2017
            Not After : Tue May 10 12:15:30 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:ed:ef:a3:f4:fc:ea:c9:e0:4e:63:3e:37:5e:c3:38:
                    cd:ab:e3:99:a1:18:12:22:2b:76:1a:1d:40:8d:c7:69:
                    e1:e2:a3:5b:8f:d0:90:2f:14:0b:f3:09:e5:72:54:1d:
                    14:be:99:c4:96:4c:9b:7b:6e:fc:8c:d4:b9:70:15:c6:
                    b9:08:5a:06:aa:5b:e2:c4:0d:03:8a:06:80:ae:91:00:
                    28:d2:f2:34:91:ce:78:a5:0b:ca:e9:a9:d5:9e:30:33:
                    02:7b:c2:46:47:17:1a:0b:4c:93:16:21:99:05:c3:85:
                    fd:b0:2a:53:64:41:94:85:c1:c0:c4:e5:24:75:73:f8:
                    10:c2:aa:cc:dd:73:d2:fe:d1:64:fb:a4:93:55:31:0b:
                    eb:b1:89:0c:15:ad:6d:77:cd:b1:21:eb:5c:c8:f6:95:
                    9f:76:56:d1:a8:d1:32:6f:ce:bf:dc:16:11:19:cb:34:
                    fb:d4:00:b6:38:2d:cc:f3:cf:8a:1e:be:f1:f3:11:ef:
                    10:12:1d:75:40:30:35:78:2c:6c:a1:9c:ab:8a:ad:8d:
                    da:be:c7:dd:2b:ee:4c:6a:6c:1c:53:c5:52:e2:40:dd:
                    84:3d:14:c5:92:08:49:74:60:0b:80:74:58:2b:48:b9:
                    c8:d5:6a:d7:5e:2a:6f:a9:52:64:5e:e7:d3:0a:b2:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:30:09:6e:b9:a1:39:ca:a6:cb:2e:ba:59:e3:a2:14:
        cc:92:13:22:0d:0e:74:ea:96:41:10:8a:44:ac:a0:42:
        99:90:88:ca:b3:67:11:73:47:52:1d:56:47:ab:1f:c1:
        40:be:5d:db:da:86:e4:e4:8a:e7:f3:c6:6e:66:32:70:
        fc:9b:a4:74:4e:ef:f2:4d:11:ab:ee:1f:c3:a3:90:9b:
        ca:63:31:5b:c1:75:7d:d7:56:41:ba:e2:b8:82:65:f5:
        0c:aa:9c:49:4c:58:cc:32:b3:4f:a6:31:d2:d0:84:6d:
        1b:72:17:3c:4f:16:a3:fd:f5:16:7b:a4:1a:26:d2:0f:
        88:a6:84:ee:9b:1a:41:16:79:5c:5d:f8:e2:9a:01:78:
        2f:cc:ae:be:85:9b:f8:37:30:71:c8:db:41:f4:be:cd:
        ab:07:72:17:a1:9f:12:b1:a2:ef:49:ea:2a:ee:b7:70:
        e2:52:c0:c7:cb:c4:fc:86:c0:b4:5e:54:9c:a8:65:ba:
        8b:07:ab:5f:7c:58:44:22:d1:92:d4:31:4e:70:39:0f:
        cc:5a:00:fd:40:a4:30:f5:9d:60:a3:2e:e8:ef:bd:cc:
        69:19:f5:c7:ab:f0:37:e8:f4:cc:48:8f:f5:f1:9e:52:
        05:e4:d8:e3:cd:81:5f:34:d0:ca:8d:64:a4:3c:d4:d1
    Fingerprint (SHA-256):
        FF:7D:95:1D:8C:6E:E7:17:AF:B9:C3:31:BC:5E:E1:AA:E2:6B:E5:25:C2:78:1A:F6:45:32:67:F3:1C:19:64:F3
    Fingerprint (SHA1):
        C6:C8:21:AB:B5:69:0B:68:70:95:1D:11:AA:72:24:25:69:2A:D4:08
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11822: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11823: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121204 (0x1e67d4f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:15:31 2017
            Not After : Tue May 10 12:15:31 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:2e:2d:8c:31:bf:1c:8a:e2:2d:5f:f7:30:78:fb:6c:
                    57:a0:7f:1f:d1:2c:07:ee:7b:25:9e:01:fe:88:00:e3:
                    54:40:2c:00:a2:4f:7b:40:37:12:74:ba:26:5b:3b:0c:
                    17:22:c8:9f:cf:a8:e7:e0:88:5d:1f:5f:9f:8a:ca:c8:
                    8d:61:69:ce:d4:24:2e:bd:24:a1:58:e6:dc:b9:26:cb:
                    a7:3e:1d:e4:50:3c:ba:0d:24:8d:70:20:b2:9c:79:54:
                    21:12:49:f2:c3:a2:94:c3:c9:78:64:5a:d6:b8:52:e9:
                    8e:eb:15:6c:7a:24:30:ac:8d:13:44:5b:e5:f6:c2:b8:
                    64:eb:39:9c:85:70:44:ee:49:b1:48:02:e0:96:15:9f:
                    e3:d4:81:71:cc:95:aa:52:99:73:3c:18:48:70:04:bc:
                    eb:5a:b5:1d:fe:c2:5b:bf:7f:9c:c3:3e:48:81:7a:af:
                    a2:06:d0:c3:92:28:94:95:60:fa:8a:f3:0d:14:df:45:
                    59:02:e1:63:20:40:72:a2:b5:d8:e1:10:f5:8d:82:fa:
                    6e:bc:5c:d8:84:37:25:9f:1a:71:09:97:1c:e6:c3:6e:
                    60:e7:39:be:7f:a7:6c:fb:8f:4e:34:84:35:b6:ef:69:
                    98:da:e8:13:c3:66:6a:9f:52:a0:25:8d:0f:ec:5e:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:52:e9:c4:5c:7a:8c:7e:96:a4:ce:35:61:53:5f:80:
        40:02:75:c2:a8:18:a1:22:48:0d:ce:be:06:b1:b9:de:
        f4:a4:71:0b:ba:14:4e:ac:7c:a9:da:09:ae:b1:6e:2c:
        c1:fe:6c:e2:9e:00:59:db:8e:c0:7a:6c:61:35:01:59:
        33:6d:01:9b:9b:27:4a:ef:b9:f1:8c:db:7f:4a:1b:ec:
        d7:7d:ed:32:3d:b7:db:35:de:2c:67:5c:69:c4:52:c9:
        74:90:2b:df:da:8f:5d:ad:69:0a:c6:b4:3e:a4:4e:70:
        95:12:4f:12:a8:61:b6:ea:42:15:e6:82:77:a2:f5:30:
        1d:cf:8c:58:cf:d6:b1:7e:16:0d:81:ee:58:60:19:d7:
        64:d9:13:e6:f8:fc:6e:04:de:fb:f7:b1:c5:81:05:15:
        86:bd:44:3e:10:e5:83:31:bb:07:36:8a:2d:34:e6:6a:
        12:03:c9:9b:fd:20:67:34:56:db:e0:b6:d6:48:78:7f:
        b6:b2:8a:45:35:b5:5d:33:df:82:25:f7:a3:05:eb:87:
        10:18:59:fb:da:99:c5:6e:75:84:66:a4:be:24:b7:b0:
        4f:ee:27:55:77:d6:a7:83:ab:e8:d3:2c:ca:cd:36:77:
        57:9b:3a:9e:43:8f:75:0a:f3:69:ff:9c:2c:5c:23:70
    Fingerprint (SHA-256):
        D5:A5:AF:24:9D:09:56:96:C8:27:C9:AA:8D:3E:98:C5:2F:79:B8:F1:46:EA:63:92:CB:AB:16:D6:B8:72:65:B1
    Fingerprint (SHA1):
        CB:39:0E:48:07:C2:81:28:7E:2A:D4:CD:1A:8E:36:12:41:C3:6A:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11824: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11825: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11826: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11827: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11828: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121202 (0x1e67d4f2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:29 2017
            Not After : Tue May 10 12:15:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:a4:dc:1a:11:f3:38:fb:33:61:d4:6c:c1:1b:c0:88:
                    67:2c:d6:e9:f3:7c:6c:7d:3f:80:59:9e:ee:7e:ae:f6:
                    55:69:ac:83:9b:53:08:32:be:6f:1a:2b:a7:43:b8:92:
                    8c:3e:ca:ed:a3:0d:53:99:04:25:d3:6a:ab:f6:6f:c1:
                    ec:8e:d0:0f:c4:2b:9b:11:97:fa:d5:a2:c9:f6:bc:75:
                    b1:a7:c0:dc:c5:32:88:c9:25:46:dd:cd:ec:4b:22:2b:
                    75:a6:3d:48:ff:ce:a1:e4:20:df:b4:a0:a2:ce:94:a8:
                    27:44:4b:66:67:2a:ca:c6:be:6c:5c:bc:de:50:77:96:
                    9f:46:38:9e:96:e3:98:d0:10:7e:64:1d:cf:5d:71:43:
                    8c:89:ae:bb:91:46:ea:1c:e9:96:76:c4:85:30:86:e2:
                    0d:b5:40:de:0a:58:a5:c7:88:1c:56:b0:04:f6:bc:12:
                    e2:7f:da:4b:12:f1:c1:90:42:ac:5a:a6:91:8c:cf:f8:
                    2c:b0:d5:2c:c8:cf:c7:78:50:42:68:12:e5:40:a7:b1:
                    5f:56:a5:8b:92:41:96:c3:10:74:86:ae:14:ff:e7:35:
                    23:48:fa:57:bb:f8:c6:75:58:01:02:f5:70:fe:da:d9:
                    5f:92:3f:34:cd:30:ea:a8:0d:90:f1:61:4f:23:78:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:05:91:a5:2c:ec:8d:1e:6a:07:6c:9c:82:2f:44:38:
        dd:69:ea:79:8a:81:8e:1f:bb:f6:ac:ab:be:8a:02:67:
        6c:75:5b:55:17:fd:81:8a:bc:2c:8b:65:df:48:74:e6:
        ac:27:be:40:5d:9c:de:1c:88:c8:da:f7:16:d4:db:36:
        c0:76:af:be:1e:b6:93:1f:ea:36:45:a2:bd:ff:e5:7a:
        6a:10:03:8b:ed:24:66:ae:fc:60:76:e7:5f:e3:31:91:
        1a:c5:30:d1:08:22:e8:4a:bc:fa:9b:de:5a:6a:30:50:
        a0:d1:0e:33:61:57:fb:08:1e:76:2a:3f:d0:1d:2a:10:
        5d:da:29:10:9b:5e:a9:55:61:9b:1d:a4:c8:b4:38:aa:
        ea:df:9c:37:6a:16:be:2c:e1:2e:0a:1f:26:7a:4a:87:
        7e:83:b5:65:c2:0f:08:a5:e7:5b:ef:46:a6:80:7b:f2:
        b1:54:71:76:b3:8b:d4:c1:db:52:9f:9d:4a:33:f2:d0:
        ce:23:5f:f6:df:0e:90:13:dc:fc:5b:34:f0:89:33:b2:
        d8:df:25:07:3c:37:e6:0f:e2:2f:e5:0c:32:b7:44:3d:
        59:8d:72:f1:4a:3d:69:48:94:61:0d:b4:8f:b0:fc:79:
        57:4a:5c:ac:55:c6:5a:3b:e2:93:fe:3f:ee:ec:48:c2
    Fingerprint (SHA-256):
        E8:1B:05:74:65:1D:D0:DA:BF:0D:3A:4A:68:80:55:E5:7F:2C:D3:5F:95:6C:EE:D4:FA:E4:FF:63:33:3B:7D:71
    Fingerprint (SHA1):
        5A:17:DF:38:0A:5A:B3:0D:4D:24:C5:E8:8F:6D:6D:97:36:D6:D2:B7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11829: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11830: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121203 (0x1e67d4f3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:30 2017
            Not After : Tue May 10 12:15:30 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:ed:ef:a3:f4:fc:ea:c9:e0:4e:63:3e:37:5e:c3:38:
                    cd:ab:e3:99:a1:18:12:22:2b:76:1a:1d:40:8d:c7:69:
                    e1:e2:a3:5b:8f:d0:90:2f:14:0b:f3:09:e5:72:54:1d:
                    14:be:99:c4:96:4c:9b:7b:6e:fc:8c:d4:b9:70:15:c6:
                    b9:08:5a:06:aa:5b:e2:c4:0d:03:8a:06:80:ae:91:00:
                    28:d2:f2:34:91:ce:78:a5:0b:ca:e9:a9:d5:9e:30:33:
                    02:7b:c2:46:47:17:1a:0b:4c:93:16:21:99:05:c3:85:
                    fd:b0:2a:53:64:41:94:85:c1:c0:c4:e5:24:75:73:f8:
                    10:c2:aa:cc:dd:73:d2:fe:d1:64:fb:a4:93:55:31:0b:
                    eb:b1:89:0c:15:ad:6d:77:cd:b1:21:eb:5c:c8:f6:95:
                    9f:76:56:d1:a8:d1:32:6f:ce:bf:dc:16:11:19:cb:34:
                    fb:d4:00:b6:38:2d:cc:f3:cf:8a:1e:be:f1:f3:11:ef:
                    10:12:1d:75:40:30:35:78:2c:6c:a1:9c:ab:8a:ad:8d:
                    da:be:c7:dd:2b:ee:4c:6a:6c:1c:53:c5:52:e2:40:dd:
                    84:3d:14:c5:92:08:49:74:60:0b:80:74:58:2b:48:b9:
                    c8:d5:6a:d7:5e:2a:6f:a9:52:64:5e:e7:d3:0a:b2:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:30:09:6e:b9:a1:39:ca:a6:cb:2e:ba:59:e3:a2:14:
        cc:92:13:22:0d:0e:74:ea:96:41:10:8a:44:ac:a0:42:
        99:90:88:ca:b3:67:11:73:47:52:1d:56:47:ab:1f:c1:
        40:be:5d:db:da:86:e4:e4:8a:e7:f3:c6:6e:66:32:70:
        fc:9b:a4:74:4e:ef:f2:4d:11:ab:ee:1f:c3:a3:90:9b:
        ca:63:31:5b:c1:75:7d:d7:56:41:ba:e2:b8:82:65:f5:
        0c:aa:9c:49:4c:58:cc:32:b3:4f:a6:31:d2:d0:84:6d:
        1b:72:17:3c:4f:16:a3:fd:f5:16:7b:a4:1a:26:d2:0f:
        88:a6:84:ee:9b:1a:41:16:79:5c:5d:f8:e2:9a:01:78:
        2f:cc:ae:be:85:9b:f8:37:30:71:c8:db:41:f4:be:cd:
        ab:07:72:17:a1:9f:12:b1:a2:ef:49:ea:2a:ee:b7:70:
        e2:52:c0:c7:cb:c4:fc:86:c0:b4:5e:54:9c:a8:65:ba:
        8b:07:ab:5f:7c:58:44:22:d1:92:d4:31:4e:70:39:0f:
        cc:5a:00:fd:40:a4:30:f5:9d:60:a3:2e:e8:ef:bd:cc:
        69:19:f5:c7:ab:f0:37:e8:f4:cc:48:8f:f5:f1:9e:52:
        05:e4:d8:e3:cd:81:5f:34:d0:ca:8d:64:a4:3c:d4:d1
    Fingerprint (SHA-256):
        FF:7D:95:1D:8C:6E:E7:17:AF:B9:C3:31:BC:5E:E1:AA:E2:6B:E5:25:C2:78:1A:F6:45:32:67:F3:1C:19:64:F3
    Fingerprint (SHA1):
        C6:C8:21:AB:B5:69:0B:68:70:95:1D:11:AA:72:24:25:69:2A:D4:08
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11831: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11832: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121204 (0x1e67d4f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:15:31 2017
            Not After : Tue May 10 12:15:31 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:2e:2d:8c:31:bf:1c:8a:e2:2d:5f:f7:30:78:fb:6c:
                    57:a0:7f:1f:d1:2c:07:ee:7b:25:9e:01:fe:88:00:e3:
                    54:40:2c:00:a2:4f:7b:40:37:12:74:ba:26:5b:3b:0c:
                    17:22:c8:9f:cf:a8:e7:e0:88:5d:1f:5f:9f:8a:ca:c8:
                    8d:61:69:ce:d4:24:2e:bd:24:a1:58:e6:dc:b9:26:cb:
                    a7:3e:1d:e4:50:3c:ba:0d:24:8d:70:20:b2:9c:79:54:
                    21:12:49:f2:c3:a2:94:c3:c9:78:64:5a:d6:b8:52:e9:
                    8e:eb:15:6c:7a:24:30:ac:8d:13:44:5b:e5:f6:c2:b8:
                    64:eb:39:9c:85:70:44:ee:49:b1:48:02:e0:96:15:9f:
                    e3:d4:81:71:cc:95:aa:52:99:73:3c:18:48:70:04:bc:
                    eb:5a:b5:1d:fe:c2:5b:bf:7f:9c:c3:3e:48:81:7a:af:
                    a2:06:d0:c3:92:28:94:95:60:fa:8a:f3:0d:14:df:45:
                    59:02:e1:63:20:40:72:a2:b5:d8:e1:10:f5:8d:82:fa:
                    6e:bc:5c:d8:84:37:25:9f:1a:71:09:97:1c:e6:c3:6e:
                    60:e7:39:be:7f:a7:6c:fb:8f:4e:34:84:35:b6:ef:69:
                    98:da:e8:13:c3:66:6a:9f:52:a0:25:8d:0f:ec:5e:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:52:e9:c4:5c:7a:8c:7e:96:a4:ce:35:61:53:5f:80:
        40:02:75:c2:a8:18:a1:22:48:0d:ce:be:06:b1:b9:de:
        f4:a4:71:0b:ba:14:4e:ac:7c:a9:da:09:ae:b1:6e:2c:
        c1:fe:6c:e2:9e:00:59:db:8e:c0:7a:6c:61:35:01:59:
        33:6d:01:9b:9b:27:4a:ef:b9:f1:8c:db:7f:4a:1b:ec:
        d7:7d:ed:32:3d:b7:db:35:de:2c:67:5c:69:c4:52:c9:
        74:90:2b:df:da:8f:5d:ad:69:0a:c6:b4:3e:a4:4e:70:
        95:12:4f:12:a8:61:b6:ea:42:15:e6:82:77:a2:f5:30:
        1d:cf:8c:58:cf:d6:b1:7e:16:0d:81:ee:58:60:19:d7:
        64:d9:13:e6:f8:fc:6e:04:de:fb:f7:b1:c5:81:05:15:
        86:bd:44:3e:10:e5:83:31:bb:07:36:8a:2d:34:e6:6a:
        12:03:c9:9b:fd:20:67:34:56:db:e0:b6:d6:48:78:7f:
        b6:b2:8a:45:35:b5:5d:33:df:82:25:f7:a3:05:eb:87:
        10:18:59:fb:da:99:c5:6e:75:84:66:a4:be:24:b7:b0:
        4f:ee:27:55:77:d6:a7:83:ab:e8:d3:2c:ca:cd:36:77:
        57:9b:3a:9e:43:8f:75:0a:f3:69:ff:9c:2c:5c:23:70
    Fingerprint (SHA-256):
        D5:A5:AF:24:9D:09:56:96:C8:27:C9:AA:8D:3E:98:C5:2F:79:B8:F1:46:EA:63:92:CB:AB:16:D6:B8:72:65:B1
    Fingerprint (SHA1):
        CB:39:0E:48:07:C2:81:28:7E:2A:D4:CD:1A:8E:36:12:41:C3:6A:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11833: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11834: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121202 (0x1e67d4f2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:29 2017
            Not After : Tue May 10 12:15:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:a4:dc:1a:11:f3:38:fb:33:61:d4:6c:c1:1b:c0:88:
                    67:2c:d6:e9:f3:7c:6c:7d:3f:80:59:9e:ee:7e:ae:f6:
                    55:69:ac:83:9b:53:08:32:be:6f:1a:2b:a7:43:b8:92:
                    8c:3e:ca:ed:a3:0d:53:99:04:25:d3:6a:ab:f6:6f:c1:
                    ec:8e:d0:0f:c4:2b:9b:11:97:fa:d5:a2:c9:f6:bc:75:
                    b1:a7:c0:dc:c5:32:88:c9:25:46:dd:cd:ec:4b:22:2b:
                    75:a6:3d:48:ff:ce:a1:e4:20:df:b4:a0:a2:ce:94:a8:
                    27:44:4b:66:67:2a:ca:c6:be:6c:5c:bc:de:50:77:96:
                    9f:46:38:9e:96:e3:98:d0:10:7e:64:1d:cf:5d:71:43:
                    8c:89:ae:bb:91:46:ea:1c:e9:96:76:c4:85:30:86:e2:
                    0d:b5:40:de:0a:58:a5:c7:88:1c:56:b0:04:f6:bc:12:
                    e2:7f:da:4b:12:f1:c1:90:42:ac:5a:a6:91:8c:cf:f8:
                    2c:b0:d5:2c:c8:cf:c7:78:50:42:68:12:e5:40:a7:b1:
                    5f:56:a5:8b:92:41:96:c3:10:74:86:ae:14:ff:e7:35:
                    23:48:fa:57:bb:f8:c6:75:58:01:02:f5:70:fe:da:d9:
                    5f:92:3f:34:cd:30:ea:a8:0d:90:f1:61:4f:23:78:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:05:91:a5:2c:ec:8d:1e:6a:07:6c:9c:82:2f:44:38:
        dd:69:ea:79:8a:81:8e:1f:bb:f6:ac:ab:be:8a:02:67:
        6c:75:5b:55:17:fd:81:8a:bc:2c:8b:65:df:48:74:e6:
        ac:27:be:40:5d:9c:de:1c:88:c8:da:f7:16:d4:db:36:
        c0:76:af:be:1e:b6:93:1f:ea:36:45:a2:bd:ff:e5:7a:
        6a:10:03:8b:ed:24:66:ae:fc:60:76:e7:5f:e3:31:91:
        1a:c5:30:d1:08:22:e8:4a:bc:fa:9b:de:5a:6a:30:50:
        a0:d1:0e:33:61:57:fb:08:1e:76:2a:3f:d0:1d:2a:10:
        5d:da:29:10:9b:5e:a9:55:61:9b:1d:a4:c8:b4:38:aa:
        ea:df:9c:37:6a:16:be:2c:e1:2e:0a:1f:26:7a:4a:87:
        7e:83:b5:65:c2:0f:08:a5:e7:5b:ef:46:a6:80:7b:f2:
        b1:54:71:76:b3:8b:d4:c1:db:52:9f:9d:4a:33:f2:d0:
        ce:23:5f:f6:df:0e:90:13:dc:fc:5b:34:f0:89:33:b2:
        d8:df:25:07:3c:37:e6:0f:e2:2f:e5:0c:32:b7:44:3d:
        59:8d:72:f1:4a:3d:69:48:94:61:0d:b4:8f:b0:fc:79:
        57:4a:5c:ac:55:c6:5a:3b:e2:93:fe:3f:ee:ec:48:c2
    Fingerprint (SHA-256):
        E8:1B:05:74:65:1D:D0:DA:BF:0D:3A:4A:68:80:55:E5:7F:2C:D3:5F:95:6C:EE:D4:FA:E4:FF:63:33:3B:7D:71
    Fingerprint (SHA1):
        5A:17:DF:38:0A:5A:B3:0D:4D:24:C5:E8:8F:6D:6D:97:36:D6:D2:B7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11835: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121202 (0x1e67d4f2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:29 2017
            Not After : Tue May 10 12:15:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:a4:dc:1a:11:f3:38:fb:33:61:d4:6c:c1:1b:c0:88:
                    67:2c:d6:e9:f3:7c:6c:7d:3f:80:59:9e:ee:7e:ae:f6:
                    55:69:ac:83:9b:53:08:32:be:6f:1a:2b:a7:43:b8:92:
                    8c:3e:ca:ed:a3:0d:53:99:04:25:d3:6a:ab:f6:6f:c1:
                    ec:8e:d0:0f:c4:2b:9b:11:97:fa:d5:a2:c9:f6:bc:75:
                    b1:a7:c0:dc:c5:32:88:c9:25:46:dd:cd:ec:4b:22:2b:
                    75:a6:3d:48:ff:ce:a1:e4:20:df:b4:a0:a2:ce:94:a8:
                    27:44:4b:66:67:2a:ca:c6:be:6c:5c:bc:de:50:77:96:
                    9f:46:38:9e:96:e3:98:d0:10:7e:64:1d:cf:5d:71:43:
                    8c:89:ae:bb:91:46:ea:1c:e9:96:76:c4:85:30:86:e2:
                    0d:b5:40:de:0a:58:a5:c7:88:1c:56:b0:04:f6:bc:12:
                    e2:7f:da:4b:12:f1:c1:90:42:ac:5a:a6:91:8c:cf:f8:
                    2c:b0:d5:2c:c8:cf:c7:78:50:42:68:12:e5:40:a7:b1:
                    5f:56:a5:8b:92:41:96:c3:10:74:86:ae:14:ff:e7:35:
                    23:48:fa:57:bb:f8:c6:75:58:01:02:f5:70:fe:da:d9:
                    5f:92:3f:34:cd:30:ea:a8:0d:90:f1:61:4f:23:78:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:05:91:a5:2c:ec:8d:1e:6a:07:6c:9c:82:2f:44:38:
        dd:69:ea:79:8a:81:8e:1f:bb:f6:ac:ab:be:8a:02:67:
        6c:75:5b:55:17:fd:81:8a:bc:2c:8b:65:df:48:74:e6:
        ac:27:be:40:5d:9c:de:1c:88:c8:da:f7:16:d4:db:36:
        c0:76:af:be:1e:b6:93:1f:ea:36:45:a2:bd:ff:e5:7a:
        6a:10:03:8b:ed:24:66:ae:fc:60:76:e7:5f:e3:31:91:
        1a:c5:30:d1:08:22:e8:4a:bc:fa:9b:de:5a:6a:30:50:
        a0:d1:0e:33:61:57:fb:08:1e:76:2a:3f:d0:1d:2a:10:
        5d:da:29:10:9b:5e:a9:55:61:9b:1d:a4:c8:b4:38:aa:
        ea:df:9c:37:6a:16:be:2c:e1:2e:0a:1f:26:7a:4a:87:
        7e:83:b5:65:c2:0f:08:a5:e7:5b:ef:46:a6:80:7b:f2:
        b1:54:71:76:b3:8b:d4:c1:db:52:9f:9d:4a:33:f2:d0:
        ce:23:5f:f6:df:0e:90:13:dc:fc:5b:34:f0:89:33:b2:
        d8:df:25:07:3c:37:e6:0f:e2:2f:e5:0c:32:b7:44:3d:
        59:8d:72:f1:4a:3d:69:48:94:61:0d:b4:8f:b0:fc:79:
        57:4a:5c:ac:55:c6:5a:3b:e2:93:fe:3f:ee:ec:48:c2
    Fingerprint (SHA-256):
        E8:1B:05:74:65:1D:D0:DA:BF:0D:3A:4A:68:80:55:E5:7F:2C:D3:5F:95:6C:EE:D4:FA:E4:FF:63:33:3B:7D:71
    Fingerprint (SHA1):
        5A:17:DF:38:0A:5A:B3:0D:4D:24:C5:E8:8F:6D:6D:97:36:D6:D2:B7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11836: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121203 (0x1e67d4f3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:30 2017
            Not After : Tue May 10 12:15:30 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:ed:ef:a3:f4:fc:ea:c9:e0:4e:63:3e:37:5e:c3:38:
                    cd:ab:e3:99:a1:18:12:22:2b:76:1a:1d:40:8d:c7:69:
                    e1:e2:a3:5b:8f:d0:90:2f:14:0b:f3:09:e5:72:54:1d:
                    14:be:99:c4:96:4c:9b:7b:6e:fc:8c:d4:b9:70:15:c6:
                    b9:08:5a:06:aa:5b:e2:c4:0d:03:8a:06:80:ae:91:00:
                    28:d2:f2:34:91:ce:78:a5:0b:ca:e9:a9:d5:9e:30:33:
                    02:7b:c2:46:47:17:1a:0b:4c:93:16:21:99:05:c3:85:
                    fd:b0:2a:53:64:41:94:85:c1:c0:c4:e5:24:75:73:f8:
                    10:c2:aa:cc:dd:73:d2:fe:d1:64:fb:a4:93:55:31:0b:
                    eb:b1:89:0c:15:ad:6d:77:cd:b1:21:eb:5c:c8:f6:95:
                    9f:76:56:d1:a8:d1:32:6f:ce:bf:dc:16:11:19:cb:34:
                    fb:d4:00:b6:38:2d:cc:f3:cf:8a:1e:be:f1:f3:11:ef:
                    10:12:1d:75:40:30:35:78:2c:6c:a1:9c:ab:8a:ad:8d:
                    da:be:c7:dd:2b:ee:4c:6a:6c:1c:53:c5:52:e2:40:dd:
                    84:3d:14:c5:92:08:49:74:60:0b:80:74:58:2b:48:b9:
                    c8:d5:6a:d7:5e:2a:6f:a9:52:64:5e:e7:d3:0a:b2:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:30:09:6e:b9:a1:39:ca:a6:cb:2e:ba:59:e3:a2:14:
        cc:92:13:22:0d:0e:74:ea:96:41:10:8a:44:ac:a0:42:
        99:90:88:ca:b3:67:11:73:47:52:1d:56:47:ab:1f:c1:
        40:be:5d:db:da:86:e4:e4:8a:e7:f3:c6:6e:66:32:70:
        fc:9b:a4:74:4e:ef:f2:4d:11:ab:ee:1f:c3:a3:90:9b:
        ca:63:31:5b:c1:75:7d:d7:56:41:ba:e2:b8:82:65:f5:
        0c:aa:9c:49:4c:58:cc:32:b3:4f:a6:31:d2:d0:84:6d:
        1b:72:17:3c:4f:16:a3:fd:f5:16:7b:a4:1a:26:d2:0f:
        88:a6:84:ee:9b:1a:41:16:79:5c:5d:f8:e2:9a:01:78:
        2f:cc:ae:be:85:9b:f8:37:30:71:c8:db:41:f4:be:cd:
        ab:07:72:17:a1:9f:12:b1:a2:ef:49:ea:2a:ee:b7:70:
        e2:52:c0:c7:cb:c4:fc:86:c0:b4:5e:54:9c:a8:65:ba:
        8b:07:ab:5f:7c:58:44:22:d1:92:d4:31:4e:70:39:0f:
        cc:5a:00:fd:40:a4:30:f5:9d:60:a3:2e:e8:ef:bd:cc:
        69:19:f5:c7:ab:f0:37:e8:f4:cc:48:8f:f5:f1:9e:52:
        05:e4:d8:e3:cd:81:5f:34:d0:ca:8d:64:a4:3c:d4:d1
    Fingerprint (SHA-256):
        FF:7D:95:1D:8C:6E:E7:17:AF:B9:C3:31:BC:5E:E1:AA:E2:6B:E5:25:C2:78:1A:F6:45:32:67:F3:1C:19:64:F3
    Fingerprint (SHA1):
        C6:C8:21:AB:B5:69:0B:68:70:95:1D:11:AA:72:24:25:69:2A:D4:08
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11837: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121203 (0x1e67d4f3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:30 2017
            Not After : Tue May 10 12:15:30 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:ed:ef:a3:f4:fc:ea:c9:e0:4e:63:3e:37:5e:c3:38:
                    cd:ab:e3:99:a1:18:12:22:2b:76:1a:1d:40:8d:c7:69:
                    e1:e2:a3:5b:8f:d0:90:2f:14:0b:f3:09:e5:72:54:1d:
                    14:be:99:c4:96:4c:9b:7b:6e:fc:8c:d4:b9:70:15:c6:
                    b9:08:5a:06:aa:5b:e2:c4:0d:03:8a:06:80:ae:91:00:
                    28:d2:f2:34:91:ce:78:a5:0b:ca:e9:a9:d5:9e:30:33:
                    02:7b:c2:46:47:17:1a:0b:4c:93:16:21:99:05:c3:85:
                    fd:b0:2a:53:64:41:94:85:c1:c0:c4:e5:24:75:73:f8:
                    10:c2:aa:cc:dd:73:d2:fe:d1:64:fb:a4:93:55:31:0b:
                    eb:b1:89:0c:15:ad:6d:77:cd:b1:21:eb:5c:c8:f6:95:
                    9f:76:56:d1:a8:d1:32:6f:ce:bf:dc:16:11:19:cb:34:
                    fb:d4:00:b6:38:2d:cc:f3:cf:8a:1e:be:f1:f3:11:ef:
                    10:12:1d:75:40:30:35:78:2c:6c:a1:9c:ab:8a:ad:8d:
                    da:be:c7:dd:2b:ee:4c:6a:6c:1c:53:c5:52:e2:40:dd:
                    84:3d:14:c5:92:08:49:74:60:0b:80:74:58:2b:48:b9:
                    c8:d5:6a:d7:5e:2a:6f:a9:52:64:5e:e7:d3:0a:b2:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:30:09:6e:b9:a1:39:ca:a6:cb:2e:ba:59:e3:a2:14:
        cc:92:13:22:0d:0e:74:ea:96:41:10:8a:44:ac:a0:42:
        99:90:88:ca:b3:67:11:73:47:52:1d:56:47:ab:1f:c1:
        40:be:5d:db:da:86:e4:e4:8a:e7:f3:c6:6e:66:32:70:
        fc:9b:a4:74:4e:ef:f2:4d:11:ab:ee:1f:c3:a3:90:9b:
        ca:63:31:5b:c1:75:7d:d7:56:41:ba:e2:b8:82:65:f5:
        0c:aa:9c:49:4c:58:cc:32:b3:4f:a6:31:d2:d0:84:6d:
        1b:72:17:3c:4f:16:a3:fd:f5:16:7b:a4:1a:26:d2:0f:
        88:a6:84:ee:9b:1a:41:16:79:5c:5d:f8:e2:9a:01:78:
        2f:cc:ae:be:85:9b:f8:37:30:71:c8:db:41:f4:be:cd:
        ab:07:72:17:a1:9f:12:b1:a2:ef:49:ea:2a:ee:b7:70:
        e2:52:c0:c7:cb:c4:fc:86:c0:b4:5e:54:9c:a8:65:ba:
        8b:07:ab:5f:7c:58:44:22:d1:92:d4:31:4e:70:39:0f:
        cc:5a:00:fd:40:a4:30:f5:9d:60:a3:2e:e8:ef:bd:cc:
        69:19:f5:c7:ab:f0:37:e8:f4:cc:48:8f:f5:f1:9e:52:
        05:e4:d8:e3:cd:81:5f:34:d0:ca:8d:64:a4:3c:d4:d1
    Fingerprint (SHA-256):
        FF:7D:95:1D:8C:6E:E7:17:AF:B9:C3:31:BC:5E:E1:AA:E2:6B:E5:25:C2:78:1A:F6:45:32:67:F3:1C:19:64:F3
    Fingerprint (SHA1):
        C6:C8:21:AB:B5:69:0B:68:70:95:1D:11:AA:72:24:25:69:2A:D4:08
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11838: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121204 (0x1e67d4f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:15:31 2017
            Not After : Tue May 10 12:15:31 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:2e:2d:8c:31:bf:1c:8a:e2:2d:5f:f7:30:78:fb:6c:
                    57:a0:7f:1f:d1:2c:07:ee:7b:25:9e:01:fe:88:00:e3:
                    54:40:2c:00:a2:4f:7b:40:37:12:74:ba:26:5b:3b:0c:
                    17:22:c8:9f:cf:a8:e7:e0:88:5d:1f:5f:9f:8a:ca:c8:
                    8d:61:69:ce:d4:24:2e:bd:24:a1:58:e6:dc:b9:26:cb:
                    a7:3e:1d:e4:50:3c:ba:0d:24:8d:70:20:b2:9c:79:54:
                    21:12:49:f2:c3:a2:94:c3:c9:78:64:5a:d6:b8:52:e9:
                    8e:eb:15:6c:7a:24:30:ac:8d:13:44:5b:e5:f6:c2:b8:
                    64:eb:39:9c:85:70:44:ee:49:b1:48:02:e0:96:15:9f:
                    e3:d4:81:71:cc:95:aa:52:99:73:3c:18:48:70:04:bc:
                    eb:5a:b5:1d:fe:c2:5b:bf:7f:9c:c3:3e:48:81:7a:af:
                    a2:06:d0:c3:92:28:94:95:60:fa:8a:f3:0d:14:df:45:
                    59:02:e1:63:20:40:72:a2:b5:d8:e1:10:f5:8d:82:fa:
                    6e:bc:5c:d8:84:37:25:9f:1a:71:09:97:1c:e6:c3:6e:
                    60:e7:39:be:7f:a7:6c:fb:8f:4e:34:84:35:b6:ef:69:
                    98:da:e8:13:c3:66:6a:9f:52:a0:25:8d:0f:ec:5e:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:52:e9:c4:5c:7a:8c:7e:96:a4:ce:35:61:53:5f:80:
        40:02:75:c2:a8:18:a1:22:48:0d:ce:be:06:b1:b9:de:
        f4:a4:71:0b:ba:14:4e:ac:7c:a9:da:09:ae:b1:6e:2c:
        c1:fe:6c:e2:9e:00:59:db:8e:c0:7a:6c:61:35:01:59:
        33:6d:01:9b:9b:27:4a:ef:b9:f1:8c:db:7f:4a:1b:ec:
        d7:7d:ed:32:3d:b7:db:35:de:2c:67:5c:69:c4:52:c9:
        74:90:2b:df:da:8f:5d:ad:69:0a:c6:b4:3e:a4:4e:70:
        95:12:4f:12:a8:61:b6:ea:42:15:e6:82:77:a2:f5:30:
        1d:cf:8c:58:cf:d6:b1:7e:16:0d:81:ee:58:60:19:d7:
        64:d9:13:e6:f8:fc:6e:04:de:fb:f7:b1:c5:81:05:15:
        86:bd:44:3e:10:e5:83:31:bb:07:36:8a:2d:34:e6:6a:
        12:03:c9:9b:fd:20:67:34:56:db:e0:b6:d6:48:78:7f:
        b6:b2:8a:45:35:b5:5d:33:df:82:25:f7:a3:05:eb:87:
        10:18:59:fb:da:99:c5:6e:75:84:66:a4:be:24:b7:b0:
        4f:ee:27:55:77:d6:a7:83:ab:e8:d3:2c:ca:cd:36:77:
        57:9b:3a:9e:43:8f:75:0a:f3:69:ff:9c:2c:5c:23:70
    Fingerprint (SHA-256):
        D5:A5:AF:24:9D:09:56:96:C8:27:C9:AA:8D:3E:98:C5:2F:79:B8:F1:46:EA:63:92:CB:AB:16:D6:B8:72:65:B1
    Fingerprint (SHA1):
        CB:39:0E:48:07:C2:81:28:7E:2A:D4:CD:1A:8E:36:12:41:C3:6A:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11839: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121204 (0x1e67d4f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:15:31 2017
            Not After : Tue May 10 12:15:31 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:2e:2d:8c:31:bf:1c:8a:e2:2d:5f:f7:30:78:fb:6c:
                    57:a0:7f:1f:d1:2c:07:ee:7b:25:9e:01:fe:88:00:e3:
                    54:40:2c:00:a2:4f:7b:40:37:12:74:ba:26:5b:3b:0c:
                    17:22:c8:9f:cf:a8:e7:e0:88:5d:1f:5f:9f:8a:ca:c8:
                    8d:61:69:ce:d4:24:2e:bd:24:a1:58:e6:dc:b9:26:cb:
                    a7:3e:1d:e4:50:3c:ba:0d:24:8d:70:20:b2:9c:79:54:
                    21:12:49:f2:c3:a2:94:c3:c9:78:64:5a:d6:b8:52:e9:
                    8e:eb:15:6c:7a:24:30:ac:8d:13:44:5b:e5:f6:c2:b8:
                    64:eb:39:9c:85:70:44:ee:49:b1:48:02:e0:96:15:9f:
                    e3:d4:81:71:cc:95:aa:52:99:73:3c:18:48:70:04:bc:
                    eb:5a:b5:1d:fe:c2:5b:bf:7f:9c:c3:3e:48:81:7a:af:
                    a2:06:d0:c3:92:28:94:95:60:fa:8a:f3:0d:14:df:45:
                    59:02:e1:63:20:40:72:a2:b5:d8:e1:10:f5:8d:82:fa:
                    6e:bc:5c:d8:84:37:25:9f:1a:71:09:97:1c:e6:c3:6e:
                    60:e7:39:be:7f:a7:6c:fb:8f:4e:34:84:35:b6:ef:69:
                    98:da:e8:13:c3:66:6a:9f:52:a0:25:8d:0f:ec:5e:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:52:e9:c4:5c:7a:8c:7e:96:a4:ce:35:61:53:5f:80:
        40:02:75:c2:a8:18:a1:22:48:0d:ce:be:06:b1:b9:de:
        f4:a4:71:0b:ba:14:4e:ac:7c:a9:da:09:ae:b1:6e:2c:
        c1:fe:6c:e2:9e:00:59:db:8e:c0:7a:6c:61:35:01:59:
        33:6d:01:9b:9b:27:4a:ef:b9:f1:8c:db:7f:4a:1b:ec:
        d7:7d:ed:32:3d:b7:db:35:de:2c:67:5c:69:c4:52:c9:
        74:90:2b:df:da:8f:5d:ad:69:0a:c6:b4:3e:a4:4e:70:
        95:12:4f:12:a8:61:b6:ea:42:15:e6:82:77:a2:f5:30:
        1d:cf:8c:58:cf:d6:b1:7e:16:0d:81:ee:58:60:19:d7:
        64:d9:13:e6:f8:fc:6e:04:de:fb:f7:b1:c5:81:05:15:
        86:bd:44:3e:10:e5:83:31:bb:07:36:8a:2d:34:e6:6a:
        12:03:c9:9b:fd:20:67:34:56:db:e0:b6:d6:48:78:7f:
        b6:b2:8a:45:35:b5:5d:33:df:82:25:f7:a3:05:eb:87:
        10:18:59:fb:da:99:c5:6e:75:84:66:a4:be:24:b7:b0:
        4f:ee:27:55:77:d6:a7:83:ab:e8:d3:2c:ca:cd:36:77:
        57:9b:3a:9e:43:8f:75:0a:f3:69:ff:9c:2c:5c:23:70
    Fingerprint (SHA-256):
        D5:A5:AF:24:9D:09:56:96:C8:27:C9:AA:8D:3E:98:C5:2F:79:B8:F1:46:EA:63:92:CB:AB:16:D6:B8:72:65:B1
    Fingerprint (SHA1):
        CB:39:0E:48:07:C2:81:28:7E:2A:D4:CD:1A:8E:36:12:41:C3:6A:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11840: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11841: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121207 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11842: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11843: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11844: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11845: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510121208   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11846: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11847: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11848: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11849: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121209   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11850: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11851: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11852: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11853: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 510121210   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11854: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11855: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #11856: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11857: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510121211   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11858: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11859: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #11860: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11861: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510121212   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11862: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11863: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #11864: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11865: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 510121213   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11866: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11867: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11868: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #11869: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #11870: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11871: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #11872: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121207 (0x1e67d4f7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:15:38 2017
            Not After : Tue May 10 12:15:38 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:b1:5b:39:b0:fa:cf:94:b6:dc:56:c9:ac:49:79:3b:
                    fc:9e:a5:ef:80:97:5e:fe:b6:c5:36:11:2a:68:5f:a4:
                    20:10:d3:e2:16:e5:e5:39:69:98:2f:27:5b:11:94:4d:
                    30:94:24:87:fe:2f:9c:ad:c4:4c:fb:7a:66:79:0a:cc:
                    a7:a5:21:70:34:3f:5d:93:ed:0d:32:c6:ec:ec:d8:e4:
                    05:e9:41:6c:99:46:27:34:15:73:b4:99:cb:91:c0:2f:
                    5a:0d:19:85:62:ed:b4:8c:6a:b6:86:bf:37:27:fb:9a:
                    9f:1b:f6:37:13:b4:ac:cc:c5:63:3a:4f:a8:22:70:e3:
                    fe:7d:b5:53:c8:d7:cf:bb:7c:15:96:71:5a:3b:48:d3:
                    03:54:3c:40:bc:31:d6:79:c9:8d:00:f0:62:3e:01:54:
                    c5:fc:ce:66:80:6b:32:44:dc:57:d5:13:dd:c6:bf:bf:
                    4a:e8:7d:35:49:69:e3:12:e0:6c:34:4d:e6:0c:ae:a6:
                    5e:24:34:d1:80:da:d0:27:51:75:63:e5:27:34:b7:ad:
                    c9:0e:0b:00:35:68:26:8b:cd:03:64:17:76:cd:cf:e2:
                    4f:85:90:ff:3d:ba:3c:e8:41:90:d3:89:78:bc:5e:d5:
                    86:f6:e2:e9:15:36:e4:7c:73:3d:d5:8f:32:cf:7a:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:cb:d7:7e:1c:78:68:8d:d4:d0:08:db:83:f2:05:ef:
        37:5a:ee:4c:ab:2b:8d:c2:84:db:5e:75:ef:5c:dd:11:
        0a:d1:68:ea:82:b2:84:65:0e:7a:6f:c1:22:c7:df:22:
        e5:b7:10:e4:53:a2:4a:ac:e1:70:6c:55:5d:ae:3d:3e:
        d3:38:89:c1:54:9c:46:80:3f:e3:f0:72:70:36:fe:62:
        1c:cd:ed:87:b4:fc:3e:4a:e1:af:a2:31:f4:02:f7:fb:
        5b:63:99:5b:91:2c:31:a6:6f:07:0f:9e:ab:eb:64:09:
        b8:82:7f:d2:fb:5f:d2:35:40:bf:1f:e6:a7:ac:a6:15:
        a5:76:f5:a3:3a:38:00:6d:bb:15:5a:59:e3:27:5e:14:
        f7:1e:c0:10:fd:7d:d6:26:93:e8:d0:a6:6a:93:d3:4a:
        8b:f8:0f:14:6a:b1:f4:73:3d:c1:3a:a5:21:66:6d:2b:
        76:8d:c6:5c:ed:24:c4:cd:45:69:7c:62:fd:7b:6b:dc:
        e2:1f:53:ec:df:56:d3:a0:7e:65:1e:8b:52:fa:76:67:
        84:31:ca:62:25:54:3e:f3:8c:7d:43:a8:aa:de:b8:ba:
        88:13:cb:2a:85:10:72:0a:20:fc:85:e0:94:c6:cf:dc:
        83:13:be:d7:95:87:6a:4d:28:c6:c2:bf:11:42:00:ad
    Fingerprint (SHA-256):
        0C:FD:05:9B:9D:87:18:81:77:97:BA:F1:E3:1A:D4:7C:E6:6A:22:ED:9F:88:D3:65:7D:27:CE:D5:08:C9:C2:9F
    Fingerprint (SHA1):
        2C:55:C5:37:73:45:6D:44:0E:5B:1F:68:7E:D6:2A:BA:AA:F2:20:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11873: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11874: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11875: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11876: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121207 (0x1e67d4f7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:15:38 2017
            Not After : Tue May 10 12:15:38 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:b1:5b:39:b0:fa:cf:94:b6:dc:56:c9:ac:49:79:3b:
                    fc:9e:a5:ef:80:97:5e:fe:b6:c5:36:11:2a:68:5f:a4:
                    20:10:d3:e2:16:e5:e5:39:69:98:2f:27:5b:11:94:4d:
                    30:94:24:87:fe:2f:9c:ad:c4:4c:fb:7a:66:79:0a:cc:
                    a7:a5:21:70:34:3f:5d:93:ed:0d:32:c6:ec:ec:d8:e4:
                    05:e9:41:6c:99:46:27:34:15:73:b4:99:cb:91:c0:2f:
                    5a:0d:19:85:62:ed:b4:8c:6a:b6:86:bf:37:27:fb:9a:
                    9f:1b:f6:37:13:b4:ac:cc:c5:63:3a:4f:a8:22:70:e3:
                    fe:7d:b5:53:c8:d7:cf:bb:7c:15:96:71:5a:3b:48:d3:
                    03:54:3c:40:bc:31:d6:79:c9:8d:00:f0:62:3e:01:54:
                    c5:fc:ce:66:80:6b:32:44:dc:57:d5:13:dd:c6:bf:bf:
                    4a:e8:7d:35:49:69:e3:12:e0:6c:34:4d:e6:0c:ae:a6:
                    5e:24:34:d1:80:da:d0:27:51:75:63:e5:27:34:b7:ad:
                    c9:0e:0b:00:35:68:26:8b:cd:03:64:17:76:cd:cf:e2:
                    4f:85:90:ff:3d:ba:3c:e8:41:90:d3:89:78:bc:5e:d5:
                    86:f6:e2:e9:15:36:e4:7c:73:3d:d5:8f:32:cf:7a:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:cb:d7:7e:1c:78:68:8d:d4:d0:08:db:83:f2:05:ef:
        37:5a:ee:4c:ab:2b:8d:c2:84:db:5e:75:ef:5c:dd:11:
        0a:d1:68:ea:82:b2:84:65:0e:7a:6f:c1:22:c7:df:22:
        e5:b7:10:e4:53:a2:4a:ac:e1:70:6c:55:5d:ae:3d:3e:
        d3:38:89:c1:54:9c:46:80:3f:e3:f0:72:70:36:fe:62:
        1c:cd:ed:87:b4:fc:3e:4a:e1:af:a2:31:f4:02:f7:fb:
        5b:63:99:5b:91:2c:31:a6:6f:07:0f:9e:ab:eb:64:09:
        b8:82:7f:d2:fb:5f:d2:35:40:bf:1f:e6:a7:ac:a6:15:
        a5:76:f5:a3:3a:38:00:6d:bb:15:5a:59:e3:27:5e:14:
        f7:1e:c0:10:fd:7d:d6:26:93:e8:d0:a6:6a:93:d3:4a:
        8b:f8:0f:14:6a:b1:f4:73:3d:c1:3a:a5:21:66:6d:2b:
        76:8d:c6:5c:ed:24:c4:cd:45:69:7c:62:fd:7b:6b:dc:
        e2:1f:53:ec:df:56:d3:a0:7e:65:1e:8b:52:fa:76:67:
        84:31:ca:62:25:54:3e:f3:8c:7d:43:a8:aa:de:b8:ba:
        88:13:cb:2a:85:10:72:0a:20:fc:85:e0:94:c6:cf:dc:
        83:13:be:d7:95:87:6a:4d:28:c6:c2:bf:11:42:00:ad
    Fingerprint (SHA-256):
        0C:FD:05:9B:9D:87:18:81:77:97:BA:F1:E3:1A:D4:7C:E6:6A:22:ED:9F:88:D3:65:7D:27:CE:D5:08:C9:C2:9F
    Fingerprint (SHA1):
        2C:55:C5:37:73:45:6D:44:0E:5B:1F:68:7E:D6:2A:BA:AA:F2:20:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11877: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11878: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11879: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121214 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11880: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11881: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11882: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11883: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510121215   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11884: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11885: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #11886: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11887: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 510121216   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11888: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11889: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #11890: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11891: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 510121217   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11892: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11893: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11894: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11895: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 510121218   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11896: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11897: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #11898: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11899: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 510121219   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11900: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11901: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #11902: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11903: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 510121220   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11904: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11905: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11906: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11907: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 510121221   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11908: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11909: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #11910: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11911: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 510121222   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11912: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11913: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #11914: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11915: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 510121223   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11916: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11917: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11918: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11919: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 510121224   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11920: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11921: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #11922: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11923: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 510121225   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11924: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11925: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #11926: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11927: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 510121226   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11928: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11929: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11930: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11931: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 510121227   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11932: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11933: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #11934: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11935: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 510121228   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11936: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11937: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #11938: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11939: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 510121229   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11940: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11941: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #11942: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11943: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 510121230   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11944: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11945: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #11946: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11947: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 510121231   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11948: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11949: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #11950: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11951: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 510121232   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11952: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11953: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #11954: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11955: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 510121233   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11956: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11957: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #11958: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11959: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 510121234   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11960: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11961: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #11962: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11963: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 510121235   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11964: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11965: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #11966: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11967: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 510121236   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11968: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11969: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #11970: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11971: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 510121237   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11972: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11973: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #11974: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11975: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 510121238   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11976: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11977: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #11978: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11979: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 510121239   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11980: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11981: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #11982: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11983: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 510121240   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11984: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11985: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #11986: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11987: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 510121241   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11988: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11989: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #11990: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11991: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 510121242   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11992: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11993: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #11994: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11995: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 510121243   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11996: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11997: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11998: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121214 (0x1e67d4fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:15:50 2017
            Not After : Tue May 10 12:15:50 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:78:f1:94:a4:31:e5:84:24:6c:d3:7c:f9:0b:ad:a5:
                    9b:ec:2e:cf:8b:29:7d:d1:24:4e:42:bc:39:18:b7:90:
                    06:38:14:7d:03:c6:50:f8:ca:b9:bd:72:67:ae:f4:17:
                    ea:62:a5:29:81:3e:d4:aa:45:76:35:57:52:6c:59:a7:
                    84:ea:e1:a8:cf:14:1d:21:55:b1:49:91:77:25:07:3c:
                    82:2d:47:29:e2:bc:f4:fc:47:d2:33:d9:eb:0b:75:55:
                    38:22:2b:06:38:3d:9b:64:4c:97:ea:4d:22:77:16:83:
                    09:34:21:5b:78:d7:4c:04:bc:7c:a2:d1:d8:77:5d:9b:
                    ac:37:42:f6:cd:cf:9f:6a:c7:08:f1:a1:6f:8a:05:89:
                    7f:9d:5f:39:53:5e:f7:c0:7a:c7:8d:82:90:c7:35:94:
                    2e:dd:33:5f:80:9d:a2:43:78:c7:fd:63:dd:0b:4b:1d:
                    45:47:84:aa:a7:b3:f9:4f:42:55:a7:a5:be:af:4f:74:
                    a7:fe:dd:00:b4:a1:99:69:00:17:9d:0f:1c:30:2e:1c:
                    3c:96:ed:81:b9:df:d6:bd:9b:d9:84:19:a5:39:62:c2:
                    8e:1e:0e:28:31:c4:92:ce:68:35:3f:7c:46:f5:95:21:
                    df:2e:44:d7:63:45:53:f9:42:bc:81:b3:90:ce:fd:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:40:da:35:ef:a6:83:6b:4f:b0:fa:ce:e9:e6:55:95:
        d0:9a:0a:ba:0d:ad:67:fd:0e:af:2a:99:36:de:29:5c:
        6b:7c:ae:6b:9b:32:19:9b:02:84:dd:6f:7f:d2:06:a2:
        40:8e:10:da:e8:2b:dc:47:41:02:68:1a:1f:1b:a8:97:
        4b:56:ab:1b:16:7c:39:ac:89:17:67:d4:07:ee:b4:f2:
        a4:19:af:c5:f3:f1:bc:c5:6a:e2:90:df:6b:da:a4:10:
        68:5a:56:ca:97:23:ab:3a:95:ce:4f:81:f4:cc:52:85:
        71:61:96:d6:76:8a:7d:db:be:93:eb:80:07:4c:fa:ef:
        6a:ec:8d:87:5a:1c:a6:d9:50:5e:8a:07:8e:bd:25:8f:
        ff:36:bd:72:1f:a6:fb:dc:ea:9e:84:21:42:9f:2e:2b:
        ca:ee:76:de:10:d9:60:4e:73:de:c3:85:48:4f:fd:4f:
        28:6b:24:42:2e:76:52:98:4d:e0:d1:c4:72:1b:46:f0:
        6a:8e:70:38:d3:65:47:5b:e5:ea:aa:5b:7c:53:d1:18:
        f4:14:2e:43:df:95:20:60:37:b0:2a:cb:6e:b3:0f:40:
        34:b1:99:b6:db:db:1c:d0:cc:e7:23:5e:31:b2:ad:5a:
        19:a8:2c:07:9c:9c:74:89:16:34:f5:88:6b:b8:db:99
    Fingerprint (SHA-256):
        8F:C9:40:C3:E0:2A:ED:DA:DD:C5:43:F6:31:11:79:E6:19:AA:C3:70:8E:0C:58:A3:0F:A8:2D:C1:00:BA:F2:E1
    Fingerprint (SHA1):
        82:B1:2C:AB:43:3E:0C:D1:59:06:FF:A2:50:05:B5:17:CC:4F:71:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11999: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12000: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121214 (0x1e67d4fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:15:50 2017
            Not After : Tue May 10 12:15:50 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:78:f1:94:a4:31:e5:84:24:6c:d3:7c:f9:0b:ad:a5:
                    9b:ec:2e:cf:8b:29:7d:d1:24:4e:42:bc:39:18:b7:90:
                    06:38:14:7d:03:c6:50:f8:ca:b9:bd:72:67:ae:f4:17:
                    ea:62:a5:29:81:3e:d4:aa:45:76:35:57:52:6c:59:a7:
                    84:ea:e1:a8:cf:14:1d:21:55:b1:49:91:77:25:07:3c:
                    82:2d:47:29:e2:bc:f4:fc:47:d2:33:d9:eb:0b:75:55:
                    38:22:2b:06:38:3d:9b:64:4c:97:ea:4d:22:77:16:83:
                    09:34:21:5b:78:d7:4c:04:bc:7c:a2:d1:d8:77:5d:9b:
                    ac:37:42:f6:cd:cf:9f:6a:c7:08:f1:a1:6f:8a:05:89:
                    7f:9d:5f:39:53:5e:f7:c0:7a:c7:8d:82:90:c7:35:94:
                    2e:dd:33:5f:80:9d:a2:43:78:c7:fd:63:dd:0b:4b:1d:
                    45:47:84:aa:a7:b3:f9:4f:42:55:a7:a5:be:af:4f:74:
                    a7:fe:dd:00:b4:a1:99:69:00:17:9d:0f:1c:30:2e:1c:
                    3c:96:ed:81:b9:df:d6:bd:9b:d9:84:19:a5:39:62:c2:
                    8e:1e:0e:28:31:c4:92:ce:68:35:3f:7c:46:f5:95:21:
                    df:2e:44:d7:63:45:53:f9:42:bc:81:b3:90:ce:fd:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:40:da:35:ef:a6:83:6b:4f:b0:fa:ce:e9:e6:55:95:
        d0:9a:0a:ba:0d:ad:67:fd:0e:af:2a:99:36:de:29:5c:
        6b:7c:ae:6b:9b:32:19:9b:02:84:dd:6f:7f:d2:06:a2:
        40:8e:10:da:e8:2b:dc:47:41:02:68:1a:1f:1b:a8:97:
        4b:56:ab:1b:16:7c:39:ac:89:17:67:d4:07:ee:b4:f2:
        a4:19:af:c5:f3:f1:bc:c5:6a:e2:90:df:6b:da:a4:10:
        68:5a:56:ca:97:23:ab:3a:95:ce:4f:81:f4:cc:52:85:
        71:61:96:d6:76:8a:7d:db:be:93:eb:80:07:4c:fa:ef:
        6a:ec:8d:87:5a:1c:a6:d9:50:5e:8a:07:8e:bd:25:8f:
        ff:36:bd:72:1f:a6:fb:dc:ea:9e:84:21:42:9f:2e:2b:
        ca:ee:76:de:10:d9:60:4e:73:de:c3:85:48:4f:fd:4f:
        28:6b:24:42:2e:76:52:98:4d:e0:d1:c4:72:1b:46:f0:
        6a:8e:70:38:d3:65:47:5b:e5:ea:aa:5b:7c:53:d1:18:
        f4:14:2e:43:df:95:20:60:37:b0:2a:cb:6e:b3:0f:40:
        34:b1:99:b6:db:db:1c:d0:cc:e7:23:5e:31:b2:ad:5a:
        19:a8:2c:07:9c:9c:74:89:16:34:f5:88:6b:b8:db:99
    Fingerprint (SHA-256):
        8F:C9:40:C3:E0:2A:ED:DA:DD:C5:43:F6:31:11:79:E6:19:AA:C3:70:8E:0C:58:A3:0F:A8:2D:C1:00:BA:F2:E1
    Fingerprint (SHA1):
        82:B1:2C:AB:43:3E:0C:D1:59:06:FF:A2:50:05:B5:17:CC:4F:71:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12001: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12002: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12003: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12004: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121214 (0x1e67d4fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:15:50 2017
            Not After : Tue May 10 12:15:50 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:78:f1:94:a4:31:e5:84:24:6c:d3:7c:f9:0b:ad:a5:
                    9b:ec:2e:cf:8b:29:7d:d1:24:4e:42:bc:39:18:b7:90:
                    06:38:14:7d:03:c6:50:f8:ca:b9:bd:72:67:ae:f4:17:
                    ea:62:a5:29:81:3e:d4:aa:45:76:35:57:52:6c:59:a7:
                    84:ea:e1:a8:cf:14:1d:21:55:b1:49:91:77:25:07:3c:
                    82:2d:47:29:e2:bc:f4:fc:47:d2:33:d9:eb:0b:75:55:
                    38:22:2b:06:38:3d:9b:64:4c:97:ea:4d:22:77:16:83:
                    09:34:21:5b:78:d7:4c:04:bc:7c:a2:d1:d8:77:5d:9b:
                    ac:37:42:f6:cd:cf:9f:6a:c7:08:f1:a1:6f:8a:05:89:
                    7f:9d:5f:39:53:5e:f7:c0:7a:c7:8d:82:90:c7:35:94:
                    2e:dd:33:5f:80:9d:a2:43:78:c7:fd:63:dd:0b:4b:1d:
                    45:47:84:aa:a7:b3:f9:4f:42:55:a7:a5:be:af:4f:74:
                    a7:fe:dd:00:b4:a1:99:69:00:17:9d:0f:1c:30:2e:1c:
                    3c:96:ed:81:b9:df:d6:bd:9b:d9:84:19:a5:39:62:c2:
                    8e:1e:0e:28:31:c4:92:ce:68:35:3f:7c:46:f5:95:21:
                    df:2e:44:d7:63:45:53:f9:42:bc:81:b3:90:ce:fd:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:40:da:35:ef:a6:83:6b:4f:b0:fa:ce:e9:e6:55:95:
        d0:9a:0a:ba:0d:ad:67:fd:0e:af:2a:99:36:de:29:5c:
        6b:7c:ae:6b:9b:32:19:9b:02:84:dd:6f:7f:d2:06:a2:
        40:8e:10:da:e8:2b:dc:47:41:02:68:1a:1f:1b:a8:97:
        4b:56:ab:1b:16:7c:39:ac:89:17:67:d4:07:ee:b4:f2:
        a4:19:af:c5:f3:f1:bc:c5:6a:e2:90:df:6b:da:a4:10:
        68:5a:56:ca:97:23:ab:3a:95:ce:4f:81:f4:cc:52:85:
        71:61:96:d6:76:8a:7d:db:be:93:eb:80:07:4c:fa:ef:
        6a:ec:8d:87:5a:1c:a6:d9:50:5e:8a:07:8e:bd:25:8f:
        ff:36:bd:72:1f:a6:fb:dc:ea:9e:84:21:42:9f:2e:2b:
        ca:ee:76:de:10:d9:60:4e:73:de:c3:85:48:4f:fd:4f:
        28:6b:24:42:2e:76:52:98:4d:e0:d1:c4:72:1b:46:f0:
        6a:8e:70:38:d3:65:47:5b:e5:ea:aa:5b:7c:53:d1:18:
        f4:14:2e:43:df:95:20:60:37:b0:2a:cb:6e:b3:0f:40:
        34:b1:99:b6:db:db:1c:d0:cc:e7:23:5e:31:b2:ad:5a:
        19:a8:2c:07:9c:9c:74:89:16:34:f5:88:6b:b8:db:99
    Fingerprint (SHA-256):
        8F:C9:40:C3:E0:2A:ED:DA:DD:C5:43:F6:31:11:79:E6:19:AA:C3:70:8E:0C:58:A3:0F:A8:2D:C1:00:BA:F2:E1
    Fingerprint (SHA1):
        82:B1:2C:AB:43:3E:0C:D1:59:06:FF:A2:50:05:B5:17:CC:4F:71:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12005: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12006: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12007: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12008: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121214 (0x1e67d4fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:15:50 2017
            Not After : Tue May 10 12:15:50 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:78:f1:94:a4:31:e5:84:24:6c:d3:7c:f9:0b:ad:a5:
                    9b:ec:2e:cf:8b:29:7d:d1:24:4e:42:bc:39:18:b7:90:
                    06:38:14:7d:03:c6:50:f8:ca:b9:bd:72:67:ae:f4:17:
                    ea:62:a5:29:81:3e:d4:aa:45:76:35:57:52:6c:59:a7:
                    84:ea:e1:a8:cf:14:1d:21:55:b1:49:91:77:25:07:3c:
                    82:2d:47:29:e2:bc:f4:fc:47:d2:33:d9:eb:0b:75:55:
                    38:22:2b:06:38:3d:9b:64:4c:97:ea:4d:22:77:16:83:
                    09:34:21:5b:78:d7:4c:04:bc:7c:a2:d1:d8:77:5d:9b:
                    ac:37:42:f6:cd:cf:9f:6a:c7:08:f1:a1:6f:8a:05:89:
                    7f:9d:5f:39:53:5e:f7:c0:7a:c7:8d:82:90:c7:35:94:
                    2e:dd:33:5f:80:9d:a2:43:78:c7:fd:63:dd:0b:4b:1d:
                    45:47:84:aa:a7:b3:f9:4f:42:55:a7:a5:be:af:4f:74:
                    a7:fe:dd:00:b4:a1:99:69:00:17:9d:0f:1c:30:2e:1c:
                    3c:96:ed:81:b9:df:d6:bd:9b:d9:84:19:a5:39:62:c2:
                    8e:1e:0e:28:31:c4:92:ce:68:35:3f:7c:46:f5:95:21:
                    df:2e:44:d7:63:45:53:f9:42:bc:81:b3:90:ce:fd:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:40:da:35:ef:a6:83:6b:4f:b0:fa:ce:e9:e6:55:95:
        d0:9a:0a:ba:0d:ad:67:fd:0e:af:2a:99:36:de:29:5c:
        6b:7c:ae:6b:9b:32:19:9b:02:84:dd:6f:7f:d2:06:a2:
        40:8e:10:da:e8:2b:dc:47:41:02:68:1a:1f:1b:a8:97:
        4b:56:ab:1b:16:7c:39:ac:89:17:67:d4:07:ee:b4:f2:
        a4:19:af:c5:f3:f1:bc:c5:6a:e2:90:df:6b:da:a4:10:
        68:5a:56:ca:97:23:ab:3a:95:ce:4f:81:f4:cc:52:85:
        71:61:96:d6:76:8a:7d:db:be:93:eb:80:07:4c:fa:ef:
        6a:ec:8d:87:5a:1c:a6:d9:50:5e:8a:07:8e:bd:25:8f:
        ff:36:bd:72:1f:a6:fb:dc:ea:9e:84:21:42:9f:2e:2b:
        ca:ee:76:de:10:d9:60:4e:73:de:c3:85:48:4f:fd:4f:
        28:6b:24:42:2e:76:52:98:4d:e0:d1:c4:72:1b:46:f0:
        6a:8e:70:38:d3:65:47:5b:e5:ea:aa:5b:7c:53:d1:18:
        f4:14:2e:43:df:95:20:60:37:b0:2a:cb:6e:b3:0f:40:
        34:b1:99:b6:db:db:1c:d0:cc:e7:23:5e:31:b2:ad:5a:
        19:a8:2c:07:9c:9c:74:89:16:34:f5:88:6b:b8:db:99
    Fingerprint (SHA-256):
        8F:C9:40:C3:E0:2A:ED:DA:DD:C5:43:F6:31:11:79:E6:19:AA:C3:70:8E:0C:58:A3:0F:A8:2D:C1:00:BA:F2:E1
    Fingerprint (SHA1):
        82:B1:2C:AB:43:3E:0C:D1:59:06:FF:A2:50:05:B5:17:CC:4F:71:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12009: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121214 (0x1e67d4fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:15:50 2017
            Not After : Tue May 10 12:15:50 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:78:f1:94:a4:31:e5:84:24:6c:d3:7c:f9:0b:ad:a5:
                    9b:ec:2e:cf:8b:29:7d:d1:24:4e:42:bc:39:18:b7:90:
                    06:38:14:7d:03:c6:50:f8:ca:b9:bd:72:67:ae:f4:17:
                    ea:62:a5:29:81:3e:d4:aa:45:76:35:57:52:6c:59:a7:
                    84:ea:e1:a8:cf:14:1d:21:55:b1:49:91:77:25:07:3c:
                    82:2d:47:29:e2:bc:f4:fc:47:d2:33:d9:eb:0b:75:55:
                    38:22:2b:06:38:3d:9b:64:4c:97:ea:4d:22:77:16:83:
                    09:34:21:5b:78:d7:4c:04:bc:7c:a2:d1:d8:77:5d:9b:
                    ac:37:42:f6:cd:cf:9f:6a:c7:08:f1:a1:6f:8a:05:89:
                    7f:9d:5f:39:53:5e:f7:c0:7a:c7:8d:82:90:c7:35:94:
                    2e:dd:33:5f:80:9d:a2:43:78:c7:fd:63:dd:0b:4b:1d:
                    45:47:84:aa:a7:b3:f9:4f:42:55:a7:a5:be:af:4f:74:
                    a7:fe:dd:00:b4:a1:99:69:00:17:9d:0f:1c:30:2e:1c:
                    3c:96:ed:81:b9:df:d6:bd:9b:d9:84:19:a5:39:62:c2:
                    8e:1e:0e:28:31:c4:92:ce:68:35:3f:7c:46:f5:95:21:
                    df:2e:44:d7:63:45:53:f9:42:bc:81:b3:90:ce:fd:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:40:da:35:ef:a6:83:6b:4f:b0:fa:ce:e9:e6:55:95:
        d0:9a:0a:ba:0d:ad:67:fd:0e:af:2a:99:36:de:29:5c:
        6b:7c:ae:6b:9b:32:19:9b:02:84:dd:6f:7f:d2:06:a2:
        40:8e:10:da:e8:2b:dc:47:41:02:68:1a:1f:1b:a8:97:
        4b:56:ab:1b:16:7c:39:ac:89:17:67:d4:07:ee:b4:f2:
        a4:19:af:c5:f3:f1:bc:c5:6a:e2:90:df:6b:da:a4:10:
        68:5a:56:ca:97:23:ab:3a:95:ce:4f:81:f4:cc:52:85:
        71:61:96:d6:76:8a:7d:db:be:93:eb:80:07:4c:fa:ef:
        6a:ec:8d:87:5a:1c:a6:d9:50:5e:8a:07:8e:bd:25:8f:
        ff:36:bd:72:1f:a6:fb:dc:ea:9e:84:21:42:9f:2e:2b:
        ca:ee:76:de:10:d9:60:4e:73:de:c3:85:48:4f:fd:4f:
        28:6b:24:42:2e:76:52:98:4d:e0:d1:c4:72:1b:46:f0:
        6a:8e:70:38:d3:65:47:5b:e5:ea:aa:5b:7c:53:d1:18:
        f4:14:2e:43:df:95:20:60:37:b0:2a:cb:6e:b3:0f:40:
        34:b1:99:b6:db:db:1c:d0:cc:e7:23:5e:31:b2:ad:5a:
        19:a8:2c:07:9c:9c:74:89:16:34:f5:88:6b:b8:db:99
    Fingerprint (SHA-256):
        8F:C9:40:C3:E0:2A:ED:DA:DD:C5:43:F6:31:11:79:E6:19:AA:C3:70:8E:0C:58:A3:0F:A8:2D:C1:00:BA:F2:E1
    Fingerprint (SHA1):
        82:B1:2C:AB:43:3E:0C:D1:59:06:FF:A2:50:05:B5:17:CC:4F:71:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12010: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12011: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121214 (0x1e67d4fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:15:50 2017
            Not After : Tue May 10 12:15:50 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:78:f1:94:a4:31:e5:84:24:6c:d3:7c:f9:0b:ad:a5:
                    9b:ec:2e:cf:8b:29:7d:d1:24:4e:42:bc:39:18:b7:90:
                    06:38:14:7d:03:c6:50:f8:ca:b9:bd:72:67:ae:f4:17:
                    ea:62:a5:29:81:3e:d4:aa:45:76:35:57:52:6c:59:a7:
                    84:ea:e1:a8:cf:14:1d:21:55:b1:49:91:77:25:07:3c:
                    82:2d:47:29:e2:bc:f4:fc:47:d2:33:d9:eb:0b:75:55:
                    38:22:2b:06:38:3d:9b:64:4c:97:ea:4d:22:77:16:83:
                    09:34:21:5b:78:d7:4c:04:bc:7c:a2:d1:d8:77:5d:9b:
                    ac:37:42:f6:cd:cf:9f:6a:c7:08:f1:a1:6f:8a:05:89:
                    7f:9d:5f:39:53:5e:f7:c0:7a:c7:8d:82:90:c7:35:94:
                    2e:dd:33:5f:80:9d:a2:43:78:c7:fd:63:dd:0b:4b:1d:
                    45:47:84:aa:a7:b3:f9:4f:42:55:a7:a5:be:af:4f:74:
                    a7:fe:dd:00:b4:a1:99:69:00:17:9d:0f:1c:30:2e:1c:
                    3c:96:ed:81:b9:df:d6:bd:9b:d9:84:19:a5:39:62:c2:
                    8e:1e:0e:28:31:c4:92:ce:68:35:3f:7c:46:f5:95:21:
                    df:2e:44:d7:63:45:53:f9:42:bc:81:b3:90:ce:fd:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:40:da:35:ef:a6:83:6b:4f:b0:fa:ce:e9:e6:55:95:
        d0:9a:0a:ba:0d:ad:67:fd:0e:af:2a:99:36:de:29:5c:
        6b:7c:ae:6b:9b:32:19:9b:02:84:dd:6f:7f:d2:06:a2:
        40:8e:10:da:e8:2b:dc:47:41:02:68:1a:1f:1b:a8:97:
        4b:56:ab:1b:16:7c:39:ac:89:17:67:d4:07:ee:b4:f2:
        a4:19:af:c5:f3:f1:bc:c5:6a:e2:90:df:6b:da:a4:10:
        68:5a:56:ca:97:23:ab:3a:95:ce:4f:81:f4:cc:52:85:
        71:61:96:d6:76:8a:7d:db:be:93:eb:80:07:4c:fa:ef:
        6a:ec:8d:87:5a:1c:a6:d9:50:5e:8a:07:8e:bd:25:8f:
        ff:36:bd:72:1f:a6:fb:dc:ea:9e:84:21:42:9f:2e:2b:
        ca:ee:76:de:10:d9:60:4e:73:de:c3:85:48:4f:fd:4f:
        28:6b:24:42:2e:76:52:98:4d:e0:d1:c4:72:1b:46:f0:
        6a:8e:70:38:d3:65:47:5b:e5:ea:aa:5b:7c:53:d1:18:
        f4:14:2e:43:df:95:20:60:37:b0:2a:cb:6e:b3:0f:40:
        34:b1:99:b6:db:db:1c:d0:cc:e7:23:5e:31:b2:ad:5a:
        19:a8:2c:07:9c:9c:74:89:16:34:f5:88:6b:b8:db:99
    Fingerprint (SHA-256):
        8F:C9:40:C3:E0:2A:ED:DA:DD:C5:43:F6:31:11:79:E6:19:AA:C3:70:8E:0C:58:A3:0F:A8:2D:C1:00:BA:F2:E1
    Fingerprint (SHA1):
        82:B1:2C:AB:43:3E:0C:D1:59:06:FF:A2:50:05:B5:17:CC:4F:71:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12012: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12013: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12014: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12015: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121214 (0x1e67d4fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:15:50 2017
            Not After : Tue May 10 12:15:50 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:78:f1:94:a4:31:e5:84:24:6c:d3:7c:f9:0b:ad:a5:
                    9b:ec:2e:cf:8b:29:7d:d1:24:4e:42:bc:39:18:b7:90:
                    06:38:14:7d:03:c6:50:f8:ca:b9:bd:72:67:ae:f4:17:
                    ea:62:a5:29:81:3e:d4:aa:45:76:35:57:52:6c:59:a7:
                    84:ea:e1:a8:cf:14:1d:21:55:b1:49:91:77:25:07:3c:
                    82:2d:47:29:e2:bc:f4:fc:47:d2:33:d9:eb:0b:75:55:
                    38:22:2b:06:38:3d:9b:64:4c:97:ea:4d:22:77:16:83:
                    09:34:21:5b:78:d7:4c:04:bc:7c:a2:d1:d8:77:5d:9b:
                    ac:37:42:f6:cd:cf:9f:6a:c7:08:f1:a1:6f:8a:05:89:
                    7f:9d:5f:39:53:5e:f7:c0:7a:c7:8d:82:90:c7:35:94:
                    2e:dd:33:5f:80:9d:a2:43:78:c7:fd:63:dd:0b:4b:1d:
                    45:47:84:aa:a7:b3:f9:4f:42:55:a7:a5:be:af:4f:74:
                    a7:fe:dd:00:b4:a1:99:69:00:17:9d:0f:1c:30:2e:1c:
                    3c:96:ed:81:b9:df:d6:bd:9b:d9:84:19:a5:39:62:c2:
                    8e:1e:0e:28:31:c4:92:ce:68:35:3f:7c:46:f5:95:21:
                    df:2e:44:d7:63:45:53:f9:42:bc:81:b3:90:ce:fd:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:40:da:35:ef:a6:83:6b:4f:b0:fa:ce:e9:e6:55:95:
        d0:9a:0a:ba:0d:ad:67:fd:0e:af:2a:99:36:de:29:5c:
        6b:7c:ae:6b:9b:32:19:9b:02:84:dd:6f:7f:d2:06:a2:
        40:8e:10:da:e8:2b:dc:47:41:02:68:1a:1f:1b:a8:97:
        4b:56:ab:1b:16:7c:39:ac:89:17:67:d4:07:ee:b4:f2:
        a4:19:af:c5:f3:f1:bc:c5:6a:e2:90:df:6b:da:a4:10:
        68:5a:56:ca:97:23:ab:3a:95:ce:4f:81:f4:cc:52:85:
        71:61:96:d6:76:8a:7d:db:be:93:eb:80:07:4c:fa:ef:
        6a:ec:8d:87:5a:1c:a6:d9:50:5e:8a:07:8e:bd:25:8f:
        ff:36:bd:72:1f:a6:fb:dc:ea:9e:84:21:42:9f:2e:2b:
        ca:ee:76:de:10:d9:60:4e:73:de:c3:85:48:4f:fd:4f:
        28:6b:24:42:2e:76:52:98:4d:e0:d1:c4:72:1b:46:f0:
        6a:8e:70:38:d3:65:47:5b:e5:ea:aa:5b:7c:53:d1:18:
        f4:14:2e:43:df:95:20:60:37:b0:2a:cb:6e:b3:0f:40:
        34:b1:99:b6:db:db:1c:d0:cc:e7:23:5e:31:b2:ad:5a:
        19:a8:2c:07:9c:9c:74:89:16:34:f5:88:6b:b8:db:99
    Fingerprint (SHA-256):
        8F:C9:40:C3:E0:2A:ED:DA:DD:C5:43:F6:31:11:79:E6:19:AA:C3:70:8E:0C:58:A3:0F:A8:2D:C1:00:BA:F2:E1
    Fingerprint (SHA1):
        82:B1:2C:AB:43:3E:0C:D1:59:06:FF:A2:50:05:B5:17:CC:4F:71:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12016: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121214 (0x1e67d4fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:15:50 2017
            Not After : Tue May 10 12:15:50 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:78:f1:94:a4:31:e5:84:24:6c:d3:7c:f9:0b:ad:a5:
                    9b:ec:2e:cf:8b:29:7d:d1:24:4e:42:bc:39:18:b7:90:
                    06:38:14:7d:03:c6:50:f8:ca:b9:bd:72:67:ae:f4:17:
                    ea:62:a5:29:81:3e:d4:aa:45:76:35:57:52:6c:59:a7:
                    84:ea:e1:a8:cf:14:1d:21:55:b1:49:91:77:25:07:3c:
                    82:2d:47:29:e2:bc:f4:fc:47:d2:33:d9:eb:0b:75:55:
                    38:22:2b:06:38:3d:9b:64:4c:97:ea:4d:22:77:16:83:
                    09:34:21:5b:78:d7:4c:04:bc:7c:a2:d1:d8:77:5d:9b:
                    ac:37:42:f6:cd:cf:9f:6a:c7:08:f1:a1:6f:8a:05:89:
                    7f:9d:5f:39:53:5e:f7:c0:7a:c7:8d:82:90:c7:35:94:
                    2e:dd:33:5f:80:9d:a2:43:78:c7:fd:63:dd:0b:4b:1d:
                    45:47:84:aa:a7:b3:f9:4f:42:55:a7:a5:be:af:4f:74:
                    a7:fe:dd:00:b4:a1:99:69:00:17:9d:0f:1c:30:2e:1c:
                    3c:96:ed:81:b9:df:d6:bd:9b:d9:84:19:a5:39:62:c2:
                    8e:1e:0e:28:31:c4:92:ce:68:35:3f:7c:46:f5:95:21:
                    df:2e:44:d7:63:45:53:f9:42:bc:81:b3:90:ce:fd:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:40:da:35:ef:a6:83:6b:4f:b0:fa:ce:e9:e6:55:95:
        d0:9a:0a:ba:0d:ad:67:fd:0e:af:2a:99:36:de:29:5c:
        6b:7c:ae:6b:9b:32:19:9b:02:84:dd:6f:7f:d2:06:a2:
        40:8e:10:da:e8:2b:dc:47:41:02:68:1a:1f:1b:a8:97:
        4b:56:ab:1b:16:7c:39:ac:89:17:67:d4:07:ee:b4:f2:
        a4:19:af:c5:f3:f1:bc:c5:6a:e2:90:df:6b:da:a4:10:
        68:5a:56:ca:97:23:ab:3a:95:ce:4f:81:f4:cc:52:85:
        71:61:96:d6:76:8a:7d:db:be:93:eb:80:07:4c:fa:ef:
        6a:ec:8d:87:5a:1c:a6:d9:50:5e:8a:07:8e:bd:25:8f:
        ff:36:bd:72:1f:a6:fb:dc:ea:9e:84:21:42:9f:2e:2b:
        ca:ee:76:de:10:d9:60:4e:73:de:c3:85:48:4f:fd:4f:
        28:6b:24:42:2e:76:52:98:4d:e0:d1:c4:72:1b:46:f0:
        6a:8e:70:38:d3:65:47:5b:e5:ea:aa:5b:7c:53:d1:18:
        f4:14:2e:43:df:95:20:60:37:b0:2a:cb:6e:b3:0f:40:
        34:b1:99:b6:db:db:1c:d0:cc:e7:23:5e:31:b2:ad:5a:
        19:a8:2c:07:9c:9c:74:89:16:34:f5:88:6b:b8:db:99
    Fingerprint (SHA-256):
        8F:C9:40:C3:E0:2A:ED:DA:DD:C5:43:F6:31:11:79:E6:19:AA:C3:70:8E:0C:58:A3:0F:A8:2D:C1:00:BA:F2:E1
    Fingerprint (SHA1):
        82:B1:2C:AB:43:3E:0C:D1:59:06:FF:A2:50:05:B5:17:CC:4F:71:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #12017: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121214 (0x1e67d4fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:15:50 2017
            Not After : Tue May 10 12:15:50 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:78:f1:94:a4:31:e5:84:24:6c:d3:7c:f9:0b:ad:a5:
                    9b:ec:2e:cf:8b:29:7d:d1:24:4e:42:bc:39:18:b7:90:
                    06:38:14:7d:03:c6:50:f8:ca:b9:bd:72:67:ae:f4:17:
                    ea:62:a5:29:81:3e:d4:aa:45:76:35:57:52:6c:59:a7:
                    84:ea:e1:a8:cf:14:1d:21:55:b1:49:91:77:25:07:3c:
                    82:2d:47:29:e2:bc:f4:fc:47:d2:33:d9:eb:0b:75:55:
                    38:22:2b:06:38:3d:9b:64:4c:97:ea:4d:22:77:16:83:
                    09:34:21:5b:78:d7:4c:04:bc:7c:a2:d1:d8:77:5d:9b:
                    ac:37:42:f6:cd:cf:9f:6a:c7:08:f1:a1:6f:8a:05:89:
                    7f:9d:5f:39:53:5e:f7:c0:7a:c7:8d:82:90:c7:35:94:
                    2e:dd:33:5f:80:9d:a2:43:78:c7:fd:63:dd:0b:4b:1d:
                    45:47:84:aa:a7:b3:f9:4f:42:55:a7:a5:be:af:4f:74:
                    a7:fe:dd:00:b4:a1:99:69:00:17:9d:0f:1c:30:2e:1c:
                    3c:96:ed:81:b9:df:d6:bd:9b:d9:84:19:a5:39:62:c2:
                    8e:1e:0e:28:31:c4:92:ce:68:35:3f:7c:46:f5:95:21:
                    df:2e:44:d7:63:45:53:f9:42:bc:81:b3:90:ce:fd:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:40:da:35:ef:a6:83:6b:4f:b0:fa:ce:e9:e6:55:95:
        d0:9a:0a:ba:0d:ad:67:fd:0e:af:2a:99:36:de:29:5c:
        6b:7c:ae:6b:9b:32:19:9b:02:84:dd:6f:7f:d2:06:a2:
        40:8e:10:da:e8:2b:dc:47:41:02:68:1a:1f:1b:a8:97:
        4b:56:ab:1b:16:7c:39:ac:89:17:67:d4:07:ee:b4:f2:
        a4:19:af:c5:f3:f1:bc:c5:6a:e2:90:df:6b:da:a4:10:
        68:5a:56:ca:97:23:ab:3a:95:ce:4f:81:f4:cc:52:85:
        71:61:96:d6:76:8a:7d:db:be:93:eb:80:07:4c:fa:ef:
        6a:ec:8d:87:5a:1c:a6:d9:50:5e:8a:07:8e:bd:25:8f:
        ff:36:bd:72:1f:a6:fb:dc:ea:9e:84:21:42:9f:2e:2b:
        ca:ee:76:de:10:d9:60:4e:73:de:c3:85:48:4f:fd:4f:
        28:6b:24:42:2e:76:52:98:4d:e0:d1:c4:72:1b:46:f0:
        6a:8e:70:38:d3:65:47:5b:e5:ea:aa:5b:7c:53:d1:18:
        f4:14:2e:43:df:95:20:60:37:b0:2a:cb:6e:b3:0f:40:
        34:b1:99:b6:db:db:1c:d0:cc:e7:23:5e:31:b2:ad:5a:
        19:a8:2c:07:9c:9c:74:89:16:34:f5:88:6b:b8:db:99
    Fingerprint (SHA-256):
        8F:C9:40:C3:E0:2A:ED:DA:DD:C5:43:F6:31:11:79:E6:19:AA:C3:70:8E:0C:58:A3:0F:A8:2D:C1:00:BA:F2:E1
    Fingerprint (SHA1):
        82:B1:2C:AB:43:3E:0C:D1:59:06:FF:A2:50:05:B5:17:CC:4F:71:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #12018: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121214 (0x1e67d4fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:15:50 2017
            Not After : Tue May 10 12:15:50 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:78:f1:94:a4:31:e5:84:24:6c:d3:7c:f9:0b:ad:a5:
                    9b:ec:2e:cf:8b:29:7d:d1:24:4e:42:bc:39:18:b7:90:
                    06:38:14:7d:03:c6:50:f8:ca:b9:bd:72:67:ae:f4:17:
                    ea:62:a5:29:81:3e:d4:aa:45:76:35:57:52:6c:59:a7:
                    84:ea:e1:a8:cf:14:1d:21:55:b1:49:91:77:25:07:3c:
                    82:2d:47:29:e2:bc:f4:fc:47:d2:33:d9:eb:0b:75:55:
                    38:22:2b:06:38:3d:9b:64:4c:97:ea:4d:22:77:16:83:
                    09:34:21:5b:78:d7:4c:04:bc:7c:a2:d1:d8:77:5d:9b:
                    ac:37:42:f6:cd:cf:9f:6a:c7:08:f1:a1:6f:8a:05:89:
                    7f:9d:5f:39:53:5e:f7:c0:7a:c7:8d:82:90:c7:35:94:
                    2e:dd:33:5f:80:9d:a2:43:78:c7:fd:63:dd:0b:4b:1d:
                    45:47:84:aa:a7:b3:f9:4f:42:55:a7:a5:be:af:4f:74:
                    a7:fe:dd:00:b4:a1:99:69:00:17:9d:0f:1c:30:2e:1c:
                    3c:96:ed:81:b9:df:d6:bd:9b:d9:84:19:a5:39:62:c2:
                    8e:1e:0e:28:31:c4:92:ce:68:35:3f:7c:46:f5:95:21:
                    df:2e:44:d7:63:45:53:f9:42:bc:81:b3:90:ce:fd:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:40:da:35:ef:a6:83:6b:4f:b0:fa:ce:e9:e6:55:95:
        d0:9a:0a:ba:0d:ad:67:fd:0e:af:2a:99:36:de:29:5c:
        6b:7c:ae:6b:9b:32:19:9b:02:84:dd:6f:7f:d2:06:a2:
        40:8e:10:da:e8:2b:dc:47:41:02:68:1a:1f:1b:a8:97:
        4b:56:ab:1b:16:7c:39:ac:89:17:67:d4:07:ee:b4:f2:
        a4:19:af:c5:f3:f1:bc:c5:6a:e2:90:df:6b:da:a4:10:
        68:5a:56:ca:97:23:ab:3a:95:ce:4f:81:f4:cc:52:85:
        71:61:96:d6:76:8a:7d:db:be:93:eb:80:07:4c:fa:ef:
        6a:ec:8d:87:5a:1c:a6:d9:50:5e:8a:07:8e:bd:25:8f:
        ff:36:bd:72:1f:a6:fb:dc:ea:9e:84:21:42:9f:2e:2b:
        ca:ee:76:de:10:d9:60:4e:73:de:c3:85:48:4f:fd:4f:
        28:6b:24:42:2e:76:52:98:4d:e0:d1:c4:72:1b:46:f0:
        6a:8e:70:38:d3:65:47:5b:e5:ea:aa:5b:7c:53:d1:18:
        f4:14:2e:43:df:95:20:60:37:b0:2a:cb:6e:b3:0f:40:
        34:b1:99:b6:db:db:1c:d0:cc:e7:23:5e:31:b2:ad:5a:
        19:a8:2c:07:9c:9c:74:89:16:34:f5:88:6b:b8:db:99
    Fingerprint (SHA-256):
        8F:C9:40:C3:E0:2A:ED:DA:DD:C5:43:F6:31:11:79:E6:19:AA:C3:70:8E:0C:58:A3:0F:A8:2D:C1:00:BA:F2:E1
    Fingerprint (SHA1):
        82:B1:2C:AB:43:3E:0C:D1:59:06:FF:A2:50:05:B5:17:CC:4F:71:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #12019: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121214 (0x1e67d4fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:15:50 2017
            Not After : Tue May 10 12:15:50 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:78:f1:94:a4:31:e5:84:24:6c:d3:7c:f9:0b:ad:a5:
                    9b:ec:2e:cf:8b:29:7d:d1:24:4e:42:bc:39:18:b7:90:
                    06:38:14:7d:03:c6:50:f8:ca:b9:bd:72:67:ae:f4:17:
                    ea:62:a5:29:81:3e:d4:aa:45:76:35:57:52:6c:59:a7:
                    84:ea:e1:a8:cf:14:1d:21:55:b1:49:91:77:25:07:3c:
                    82:2d:47:29:e2:bc:f4:fc:47:d2:33:d9:eb:0b:75:55:
                    38:22:2b:06:38:3d:9b:64:4c:97:ea:4d:22:77:16:83:
                    09:34:21:5b:78:d7:4c:04:bc:7c:a2:d1:d8:77:5d:9b:
                    ac:37:42:f6:cd:cf:9f:6a:c7:08:f1:a1:6f:8a:05:89:
                    7f:9d:5f:39:53:5e:f7:c0:7a:c7:8d:82:90:c7:35:94:
                    2e:dd:33:5f:80:9d:a2:43:78:c7:fd:63:dd:0b:4b:1d:
                    45:47:84:aa:a7:b3:f9:4f:42:55:a7:a5:be:af:4f:74:
                    a7:fe:dd:00:b4:a1:99:69:00:17:9d:0f:1c:30:2e:1c:
                    3c:96:ed:81:b9:df:d6:bd:9b:d9:84:19:a5:39:62:c2:
                    8e:1e:0e:28:31:c4:92:ce:68:35:3f:7c:46:f5:95:21:
                    df:2e:44:d7:63:45:53:f9:42:bc:81:b3:90:ce:fd:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:40:da:35:ef:a6:83:6b:4f:b0:fa:ce:e9:e6:55:95:
        d0:9a:0a:ba:0d:ad:67:fd:0e:af:2a:99:36:de:29:5c:
        6b:7c:ae:6b:9b:32:19:9b:02:84:dd:6f:7f:d2:06:a2:
        40:8e:10:da:e8:2b:dc:47:41:02:68:1a:1f:1b:a8:97:
        4b:56:ab:1b:16:7c:39:ac:89:17:67:d4:07:ee:b4:f2:
        a4:19:af:c5:f3:f1:bc:c5:6a:e2:90:df:6b:da:a4:10:
        68:5a:56:ca:97:23:ab:3a:95:ce:4f:81:f4:cc:52:85:
        71:61:96:d6:76:8a:7d:db:be:93:eb:80:07:4c:fa:ef:
        6a:ec:8d:87:5a:1c:a6:d9:50:5e:8a:07:8e:bd:25:8f:
        ff:36:bd:72:1f:a6:fb:dc:ea:9e:84:21:42:9f:2e:2b:
        ca:ee:76:de:10:d9:60:4e:73:de:c3:85:48:4f:fd:4f:
        28:6b:24:42:2e:76:52:98:4d:e0:d1:c4:72:1b:46:f0:
        6a:8e:70:38:d3:65:47:5b:e5:ea:aa:5b:7c:53:d1:18:
        f4:14:2e:43:df:95:20:60:37:b0:2a:cb:6e:b3:0f:40:
        34:b1:99:b6:db:db:1c:d0:cc:e7:23:5e:31:b2:ad:5a:
        19:a8:2c:07:9c:9c:74:89:16:34:f5:88:6b:b8:db:99
    Fingerprint (SHA-256):
        8F:C9:40:C3:E0:2A:ED:DA:DD:C5:43:F6:31:11:79:E6:19:AA:C3:70:8E:0C:58:A3:0F:A8:2D:C1:00:BA:F2:E1
    Fingerprint (SHA1):
        82:B1:2C:AB:43:3E:0C:D1:59:06:FF:A2:50:05:B5:17:CC:4F:71:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #12020: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121214 (0x1e67d4fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:15:50 2017
            Not After : Tue May 10 12:15:50 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:78:f1:94:a4:31:e5:84:24:6c:d3:7c:f9:0b:ad:a5:
                    9b:ec:2e:cf:8b:29:7d:d1:24:4e:42:bc:39:18:b7:90:
                    06:38:14:7d:03:c6:50:f8:ca:b9:bd:72:67:ae:f4:17:
                    ea:62:a5:29:81:3e:d4:aa:45:76:35:57:52:6c:59:a7:
                    84:ea:e1:a8:cf:14:1d:21:55:b1:49:91:77:25:07:3c:
                    82:2d:47:29:e2:bc:f4:fc:47:d2:33:d9:eb:0b:75:55:
                    38:22:2b:06:38:3d:9b:64:4c:97:ea:4d:22:77:16:83:
                    09:34:21:5b:78:d7:4c:04:bc:7c:a2:d1:d8:77:5d:9b:
                    ac:37:42:f6:cd:cf:9f:6a:c7:08:f1:a1:6f:8a:05:89:
                    7f:9d:5f:39:53:5e:f7:c0:7a:c7:8d:82:90:c7:35:94:
                    2e:dd:33:5f:80:9d:a2:43:78:c7:fd:63:dd:0b:4b:1d:
                    45:47:84:aa:a7:b3:f9:4f:42:55:a7:a5:be:af:4f:74:
                    a7:fe:dd:00:b4:a1:99:69:00:17:9d:0f:1c:30:2e:1c:
                    3c:96:ed:81:b9:df:d6:bd:9b:d9:84:19:a5:39:62:c2:
                    8e:1e:0e:28:31:c4:92:ce:68:35:3f:7c:46:f5:95:21:
                    df:2e:44:d7:63:45:53:f9:42:bc:81:b3:90:ce:fd:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b5:40:da:35:ef:a6:83:6b:4f:b0:fa:ce:e9:e6:55:95:
        d0:9a:0a:ba:0d:ad:67:fd:0e:af:2a:99:36:de:29:5c:
        6b:7c:ae:6b:9b:32:19:9b:02:84:dd:6f:7f:d2:06:a2:
        40:8e:10:da:e8:2b:dc:47:41:02:68:1a:1f:1b:a8:97:
        4b:56:ab:1b:16:7c:39:ac:89:17:67:d4:07:ee:b4:f2:
        a4:19:af:c5:f3:f1:bc:c5:6a:e2:90:df:6b:da:a4:10:
        68:5a:56:ca:97:23:ab:3a:95:ce:4f:81:f4:cc:52:85:
        71:61:96:d6:76:8a:7d:db:be:93:eb:80:07:4c:fa:ef:
        6a:ec:8d:87:5a:1c:a6:d9:50:5e:8a:07:8e:bd:25:8f:
        ff:36:bd:72:1f:a6:fb:dc:ea:9e:84:21:42:9f:2e:2b:
        ca:ee:76:de:10:d9:60:4e:73:de:c3:85:48:4f:fd:4f:
        28:6b:24:42:2e:76:52:98:4d:e0:d1:c4:72:1b:46:f0:
        6a:8e:70:38:d3:65:47:5b:e5:ea:aa:5b:7c:53:d1:18:
        f4:14:2e:43:df:95:20:60:37:b0:2a:cb:6e:b3:0f:40:
        34:b1:99:b6:db:db:1c:d0:cc:e7:23:5e:31:b2:ad:5a:
        19:a8:2c:07:9c:9c:74:89:16:34:f5:88:6b:b8:db:99
    Fingerprint (SHA-256):
        8F:C9:40:C3:E0:2A:ED:DA:DD:C5:43:F6:31:11:79:E6:19:AA:C3:70:8E:0C:58:A3:0F:A8:2D:C1:00:BA:F2:E1
    Fingerprint (SHA1):
        82:B1:2C:AB:43:3E:0C:D1:59:06:FF:A2:50:05:B5:17:CC:4F:71:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #12021: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12022: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12023: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121244 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12024: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12025: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #12026: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12027: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 510121245   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12028: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12029: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #12030: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12031: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 510121246   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12032: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12033: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #12034: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12035: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 510121247   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12036: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12037: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #12038: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12039: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 510121248   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12040: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12041: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #12042: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12043: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 510121249   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12044: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12045: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #12046: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12047: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 510121250   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12048: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12049: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12050: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121244 (0x1e67d51c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:16:35 2017
            Not After : Tue May 10 12:16:35 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:db:fa:62:01:2c:bf:77:55:84:84:3a:9b:41:cd:20:
                    4f:45:2e:4f:e6:0e:b3:4d:4a:7b:e7:8e:fa:a3:2c:62:
                    6e:c2:39:b5:13:89:e9:e6:91:43:d3:79:32:b9:cd:47:
                    d6:c9:fc:55:5e:10:9f:7d:ba:e6:5e:54:20:b5:b9:c0:
                    5a:06:c5:8e:11:5c:36:83:23:51:68:9e:70:5b:6a:79:
                    4f:1d:49:79:58:9b:f8:3e:f9:1d:d3:75:8b:31:06:72:
                    26:09:25:22:72:65:b5:f5:2a:9d:31:52:4e:27:e7:20:
                    ea:a1:4c:35:da:b5:ac:21:2f:a4:39:42:bf:29:69:ad:
                    f4:0f:9d:b7:ea:4e:08:d1:40:0f:b3:f9:97:e7:1a:1b:
                    d4:ca:9f:95:aa:7a:77:d7:46:bd:1f:6d:27:29:1d:8c:
                    e6:b4:74:13:35:72:9e:10:91:85:df:4f:e1:88:66:5d:
                    4f:3f:49:a4:c6:08:f4:a0:5d:27:49:10:af:ac:58:4a:
                    5f:14:f3:c3:2f:cb:fa:02:3e:aa:82:75:a0:cf:94:dc:
                    64:e3:47:b5:a5:8c:7e:90:27:46:b0:ee:ed:d6:c5:8e:
                    0c:86:53:70:56:d2:4f:25:c6:21:04:97:0a:fe:a8:85:
                    2e:b8:bf:ec:b1:78:fc:74:77:62:1c:68:b2:86:9f:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:f3:b6:eb:4e:b5:62:e3:cc:85:3f:43:73:f2:8b:06:
        1c:95:5f:52:b2:2b:a6:28:3a:6c:fa:eb:03:81:ef:56:
        93:76:cd:bf:87:42:ee:51:fe:9b:e1:79:b7:79:ba:0e:
        d1:a3:34:36:ed:8d:c0:a9:9c:1d:dd:3c:e7:10:dc:11:
        d6:c2:0f:9c:25:10:83:91:f7:96:03:57:a7:c8:15:01:
        23:d5:31:eb:95:a9:41:e7:9a:46:fe:44:2d:47:52:9e:
        4c:66:e8:64:47:9b:80:01:b9:30:37:70:4c:36:85:fa:
        74:44:78:1a:90:b0:26:e4:9b:04:5a:1e:32:a4:85:05:
        2b:88:8f:54:46:1a:58:5d:dc:dc:83:b2:42:0e:88:71:
        c7:d2:5b:91:ab:d3:8b:2e:18:59:04:4e:d1:9b:f8:94:
        86:02:ac:7a:2e:b6:49:8d:b4:4b:ba:97:96:95:38:eb:
        37:a3:f8:1d:33:44:82:9c:e3:2f:f2:01:8e:25:11:1b:
        20:25:97:95:b6:0e:08:68:28:c7:99:ca:a1:4f:10:f3:
        3e:9e:86:00:0c:82:cd:d7:d8:d4:c3:81:e7:4b:4a:2b:
        b3:85:64:f7:2e:b6:a3:91:f7:42:67:89:d0:3b:11:83:
        fb:9a:96:70:50:16:8a:33:05:0d:04:f9:27:f8:da:2d
    Fingerprint (SHA-256):
        91:09:67:8F:04:BF:21:46:39:95:93:66:8A:4D:5C:E1:B7:F0:01:DE:D0:FD:6C:B1:F9:06:43:1B:3C:91:14:A0
    Fingerprint (SHA1):
        FE:E6:7E:F7:55:44:64:FF:1C:58:12:22:FF:BA:B3:DB:01:80:13:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #12051: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12052: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12053: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #12054: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121244 (0x1e67d51c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:16:35 2017
            Not After : Tue May 10 12:16:35 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:db:fa:62:01:2c:bf:77:55:84:84:3a:9b:41:cd:20:
                    4f:45:2e:4f:e6:0e:b3:4d:4a:7b:e7:8e:fa:a3:2c:62:
                    6e:c2:39:b5:13:89:e9:e6:91:43:d3:79:32:b9:cd:47:
                    d6:c9:fc:55:5e:10:9f:7d:ba:e6:5e:54:20:b5:b9:c0:
                    5a:06:c5:8e:11:5c:36:83:23:51:68:9e:70:5b:6a:79:
                    4f:1d:49:79:58:9b:f8:3e:f9:1d:d3:75:8b:31:06:72:
                    26:09:25:22:72:65:b5:f5:2a:9d:31:52:4e:27:e7:20:
                    ea:a1:4c:35:da:b5:ac:21:2f:a4:39:42:bf:29:69:ad:
                    f4:0f:9d:b7:ea:4e:08:d1:40:0f:b3:f9:97:e7:1a:1b:
                    d4:ca:9f:95:aa:7a:77:d7:46:bd:1f:6d:27:29:1d:8c:
                    e6:b4:74:13:35:72:9e:10:91:85:df:4f:e1:88:66:5d:
                    4f:3f:49:a4:c6:08:f4:a0:5d:27:49:10:af:ac:58:4a:
                    5f:14:f3:c3:2f:cb:fa:02:3e:aa:82:75:a0:cf:94:dc:
                    64:e3:47:b5:a5:8c:7e:90:27:46:b0:ee:ed:d6:c5:8e:
                    0c:86:53:70:56:d2:4f:25:c6:21:04:97:0a:fe:a8:85:
                    2e:b8:bf:ec:b1:78:fc:74:77:62:1c:68:b2:86:9f:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:f3:b6:eb:4e:b5:62:e3:cc:85:3f:43:73:f2:8b:06:
        1c:95:5f:52:b2:2b:a6:28:3a:6c:fa:eb:03:81:ef:56:
        93:76:cd:bf:87:42:ee:51:fe:9b:e1:79:b7:79:ba:0e:
        d1:a3:34:36:ed:8d:c0:a9:9c:1d:dd:3c:e7:10:dc:11:
        d6:c2:0f:9c:25:10:83:91:f7:96:03:57:a7:c8:15:01:
        23:d5:31:eb:95:a9:41:e7:9a:46:fe:44:2d:47:52:9e:
        4c:66:e8:64:47:9b:80:01:b9:30:37:70:4c:36:85:fa:
        74:44:78:1a:90:b0:26:e4:9b:04:5a:1e:32:a4:85:05:
        2b:88:8f:54:46:1a:58:5d:dc:dc:83:b2:42:0e:88:71:
        c7:d2:5b:91:ab:d3:8b:2e:18:59:04:4e:d1:9b:f8:94:
        86:02:ac:7a:2e:b6:49:8d:b4:4b:ba:97:96:95:38:eb:
        37:a3:f8:1d:33:44:82:9c:e3:2f:f2:01:8e:25:11:1b:
        20:25:97:95:b6:0e:08:68:28:c7:99:ca:a1:4f:10:f3:
        3e:9e:86:00:0c:82:cd:d7:d8:d4:c3:81:e7:4b:4a:2b:
        b3:85:64:f7:2e:b6:a3:91:f7:42:67:89:d0:3b:11:83:
        fb:9a:96:70:50:16:8a:33:05:0d:04:f9:27:f8:da:2d
    Fingerprint (SHA-256):
        91:09:67:8F:04:BF:21:46:39:95:93:66:8A:4D:5C:E1:B7:F0:01:DE:D0:FD:6C:B1:F9:06:43:1B:3C:91:14:A0
    Fingerprint (SHA1):
        FE:E6:7E:F7:55:44:64:FF:1C:58:12:22:FF:BA:B3:DB:01:80:13:E8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #12055: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12056: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12057: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12058: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121251 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12059: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12060: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12061: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12062: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121252   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #12063: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12064: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12065: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12066: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121253   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12067: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12068: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #12069: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12070: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510121254   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12071: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12072: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12073: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #12074: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #12075: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #12076: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121251 (0x1e67d523)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:16:46 2017
            Not After : Tue May 10 12:16:46 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:77:7b:3d:42:c6:64:d1:ae:2e:3c:ab:96:ab:13:f1:
                    e8:aa:30:cc:5d:2b:ae:9d:7d:5f:50:5b:e1:38:ec:1d:
                    98:7a:ee:6c:04:31:fc:ee:10:a9:5d:ba:2f:c8:e6:47:
                    ec:4c:9f:33:ff:32:0c:6e:f2:f7:7d:93:0c:98:99:4b:
                    c6:2c:e1:d4:dc:d5:8a:81:45:89:5f:44:8c:35:f4:46:
                    78:d2:9e:71:73:14:65:32:8b:fe:81:44:04:94:02:a0:
                    2c:22:1c:f2:3b:7e:4d:bb:07:a7:dc:d1:ad:d7:ab:c6:
                    06:6a:e5:de:ed:8a:30:85:d3:ae:73:ac:0a:58:db:4f:
                    70:85:e9:7f:d3:8e:a5:33:94:58:75:a0:c0:d2:e7:35:
                    55:85:06:21:0b:8e:47:80:0f:50:f0:ee:38:b1:9d:76:
                    a8:b5:80:c2:39:38:0b:d7:37:8d:d6:13:71:8c:e6:84:
                    66:86:ba:c2:8e:37:00:06:6f:f8:fa:dd:9a:d6:c5:74:
                    50:d4:e1:f4:fa:4a:bb:a1:5a:da:3e:fd:44:bf:8f:6a:
                    c4:ed:1c:4d:b9:28:71:21:09:d3:bc:48:88:c0:1e:af:
                    87:f1:49:15:a3:0b:25:b0:43:4a:98:f9:bc:7c:4f:38:
                    5c:09:fe:ed:3c:e3:30:2d:14:1c:e7:f3:6e:d4:c8:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:a0:4f:95:e8:dc:1c:97:59:74:0f:70:e0:91:22:c6:
        a0:f5:dd:73:f2:e6:be:5c:bb:29:1e:dd:07:68:cd:a7:
        b1:8e:64:aa:43:19:73:63:0d:e0:f4:0e:61:d6:76:9f:
        ab:9c:4c:26:4f:19:69:54:09:57:f5:1b:d8:b5:93:91:
        c7:e6:ca:26:5e:48:59:4b:dd:67:1e:e7:ef:34:16:da:
        6a:03:06:20:e5:b9:37:f2:22:14:ca:7d:6e:39:b8:ae:
        e7:51:94:fb:34:5e:e0:93:0b:50:5f:3f:57:fd:de:ef:
        c6:4e:f7:97:38:21:67:2f:fc:15:8e:c1:90:c4:c8:a4:
        a0:d0:d9:2d:c0:06:bb:d7:44:31:0a:63:d2:6d:1d:c4:
        a1:90:ad:5e:3a:7d:bb:ab:99:05:a5:73:30:8f:9f:03:
        98:97:9d:28:4a:bf:8f:98:61:bd:d9:b7:41:16:de:12:
        52:67:9d:46:63:02:eb:7e:a7:c0:0e:d8:25:8e:cc:06:
        15:28:65:0d:c7:c7:5e:1c:c0:f7:6c:55:1d:45:41:79:
        cb:42:10:9c:d7:5f:04:8b:14:33:d2:cc:b1:da:5a:b6:
        5e:2f:ec:7b:f7:3c:49:27:ce:21:fb:21:9f:55:69:e8:
        87:67:3c:ad:d3:7d:9a:1a:2f:6e:0e:01:3c:d8:65:04
    Fingerprint (SHA-256):
        F2:F4:29:A1:1F:AC:E1:CD:60:CD:83:F5:35:AA:F9:CE:D7:A8:E9:4A:3A:51:3F:E9:50:45:28:F2:B7:90:D3:FB
    Fingerprint (SHA1):
        55:99:5B:CE:18:45:D1:69:A1:D9:DF:32:A9:F7:0D:8A:8E:7F:E0:9E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12077: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12078: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12079: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121252 (0x1e67d524)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:16:48 2017
            Not After : Tue May 10 12:16:48 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:d3:18:32:15:72:fa:b1:2d:c3:cc:ed:19:e1:b4:02:
                    98:ee:94:35:ad:8b:3c:ea:4b:0b:80:0d:63:c0:5b:fa:
                    43:a8:9c:2f:c0:78:be:bd:5c:01:16:4c:07:39:fc:51:
                    06:04:12:29:c0:a4:60:1b:91:62:f8:b6:9a:f4:63:2b:
                    09:1c:f7:76:5b:fb:46:da:c7:91:fb:54:5a:2a:bb:e4:
                    49:d0:c0:5f:cd:36:f0:97:d7:f7:67:61:0d:89:ec:a2:
                    43:0a:4b:10:e7:06:1d:7c:07:09:b8:d8:c3:84:c8:bd:
                    07:ff:6d:32:46:26:9b:e2:13:7a:d3:e3:40:d3:a9:1e:
                    28:b1:e8:6a:3a:db:18:ef:76:2c:11:35:dc:f5:4f:82:
                    22:41:a4:1f:9a:8d:04:3b:bb:5d:9b:5b:ff:37:4b:22:
                    20:57:5b:23:d2:12:93:da:00:3c:e8:55:0e:c7:64:86:
                    d1:7c:7a:dc:20:c8:13:34:3d:c3:83:46:1b:7f:7d:f7:
                    5f:f2:a3:89:67:02:3a:a0:26:67:7d:42:58:19:1a:5a:
                    76:9b:0c:12:12:c3:06:76:34:d1:d0:16:ff:0c:07:12:
                    9a:76:6a:14:42:c3:67:eb:96:66:fb:64:35:eb:66:36:
                    2e:97:8b:08:41:19:48:af:a7:03:ee:e9:f1:0d:4e:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:fe:71:0d:bb:eb:f4:c5:94:53:ef:61:4f:f0:a8:8b:
        c8:19:24:c2:53:6e:bd:c2:a2:2e:de:b4:2e:5c:5a:b7:
        05:94:69:6f:35:36:54:79:22:35:6b:22:fd:c5:2b:8e:
        5b:3f:48:69:7d:49:b0:4a:cc:f8:9c:47:32:60:ba:32:
        8e:d3:fe:79:db:64:db:7c:b5:18:12:ef:1c:0f:b4:fb:
        49:fd:66:48:1a:b9:09:c2:ff:4d:dd:8b:c7:d9:ce:38:
        11:14:75:86:44:91:37:62:a4:0d:e2:d5:c3:39:90:fd:
        62:79:2b:74:00:87:29:ac:6d:d9:bc:4b:26:7d:c3:f8:
        3b:79:6d:95:23:bb:8a:3c:f8:89:4c:d0:19:90:38:a9:
        2b:30:51:0d:21:b0:c5:67:7a:19:c9:96:b3:5c:06:b1:
        24:5a:27:8e:93:7b:4a:44:20:50:b2:80:30:df:df:2a:
        30:0c:ec:b8:9b:b1:c8:b9:21:2e:ce:e8:a8:fb:5c:64:
        17:70:c9:76:d6:ac:d5:35:0f:21:df:8e:50:6b:fa:fb:
        4b:d9:e4:f6:2c:60:62:23:81:1b:5f:1f:69:e5:2f:af:
        5b:f9:bf:60:41:f2:e1:5b:32:f5:ae:a3:48:fa:4e:f7:
        ac:3d:a3:b1:da:aa:c1:b5:66:01:88:c0:92:92:6b:72
    Fingerprint (SHA-256):
        55:F2:B3:0C:A6:F4:2B:E1:D0:75:97:36:0A:42:9C:F1:F8:E8:9C:B9:F7:18:2A:06:74:3A:BA:C2:11:BE:D4:8F
    Fingerprint (SHA1):
        AF:33:FE:EA:41:A6:B2:C4:19:A8:D0:2B:8C:9A:35:C4:21:47:2F:92
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #12080: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12081: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121253 (0x1e67d525)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:16:50 2017
            Not After : Tue May 10 12:16:50 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    92:21:a5:3f:41:19:88:e5:e7:64:b8:96:2b:0d:c9:9c:
                    98:6f:42:f7:b0:34:4b:e3:6c:de:9e:8f:bd:f0:00:b0:
                    1c:62:9b:35:44:06:90:71:74:3a:dc:54:b9:49:b0:cb:
                    ab:74:a8:92:70:07:c0:24:b5:4c:5f:fa:ab:40:29:c5:
                    d7:d1:d2:24:a4:a4:10:e0:6f:71:5e:bd:e9:59:7b:a4:
                    02:e4:97:d1:5d:d8:97:2a:ee:2d:49:2b:ac:80:e6:2b:
                    01:4c:64:e2:88:7a:dc:7c:32:93:f5:c9:40:a8:cc:9a:
                    72:9a:4f:0c:17:ee:50:75:59:a5:66:b8:0d:8a:98:bb:
                    b9:54:ed:bc:3a:75:0d:e6:8c:29:1d:f4:76:47:90:18:
                    88:c5:20:c5:8b:7f:cb:7d:5d:f5:29:0e:75:2e:0a:cd:
                    87:4f:9b:7d:f8:87:16:00:1f:fe:c2:4e:0c:67:9c:c8:
                    84:e9:a8:55:89:7b:68:32:a6:38:d9:55:b7:61:07:9c:
                    d7:28:2c:9f:c2:ea:ab:01:18:c1:f5:5c:71:2f:91:b7:
                    dc:48:22:0f:a5:5c:f1:78:77:05:5b:31:7f:90:ff:1e:
                    6e:80:9f:db:13:dc:1a:90:b8:d1:03:5e:80:81:b2:da:
                    51:aa:a9:b1:44:91:20:41:41:77:ba:9e:f2:0b:45:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7d:f2:f2:ab:83:aa:19:42:12:bd:0b:5d:f8:70:0f:d5:
        6f:bc:a2:2f:86:28:92:19:87:dd:e5:02:2e:d2:00:60:
        0d:f5:0f:a9:a4:cf:a6:4c:32:76:88:db:10:57:a7:4f:
        1b:be:39:ba:99:66:3b:6d:8c:15:35:c6:cd:e4:69:69:
        a9:31:6b:ae:2b:aa:a3:e2:8c:1d:0a:91:a5:02:51:4b:
        f9:e9:c7:60:1a:6f:04:c8:1e:f6:fe:88:f9:ba:cf:f0:
        a5:c8:6e:4d:5e:af:96:7f:c7:b0:b1:49:bd:b6:30:12:
        80:d9:9e:d6:8a:05:34:c4:28:20:45:7e:4f:30:0a:c2:
        ab:95:b4:1f:bc:08:3e:90:22:04:6a:68:b9:76:01:26:
        13:72:bc:9e:45:8d:a4:b3:04:e5:f2:35:f6:d8:81:7a:
        4f:90:1d:df:4f:d0:3d:8a:94:f2:0d:bb:5b:11:8f:27:
        37:75:13:a5:ef:b5:74:b9:ab:5e:af:5a:89:96:5e:eb:
        f1:bc:15:08:bb:58:77:1a:65:23:2c:66:0d:e5:66:f3:
        5e:56:19:f3:d4:5f:41:8d:88:70:12:d0:07:3f:b6:c4:
        c1:55:24:83:52:0d:96:f2:8c:1a:16:07:d7:f5:6f:ec:
        fa:6e:92:9e:90:c0:ae:cc:ee:01:6d:db:91:80:c4:eb
    Fingerprint (SHA-256):
        1E:5B:3C:68:66:CA:61:2E:45:AE:B0:8B:DE:5B:0A:8A:2C:4B:A1:93:A6:F3:00:49:DA:95:D9:D4:84:88:E4:AC
    Fingerprint (SHA1):
        0E:0C:DD:B5:27:24:45:2B:B5:78:26:AC:B0:D2:7E:D2:41:2A:7C:EC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #12082: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12083: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121255 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12084: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12085: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12086: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12087: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121256   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12088: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12089: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12090: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12091: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121257   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #12092: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12093: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #12094: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12095: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 510121258   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12096: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12097: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #12098: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12099: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 510121259   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12100: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12101: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12102: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #12103: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #12104: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #12105: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #12106: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121255 (0x1e67d527)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:16:54 2017
            Not After : Tue May 10 12:16:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:54:ce:8d:88:01:de:f8:7d:0a:9b:de:db:85:4d:0d:
                    d9:9e:06:d6:80:b6:21:69:ac:09:d4:80:56:0d:8b:12:
                    88:ae:f7:f7:b1:2a:28:76:90:26:06:12:7d:7e:d3:cc:
                    6b:1c:bf:d3:f0:ca:36:94:34:1a:9c:da:2a:86:57:02:
                    a5:28:c2:85:1e:32:78:97:0e:54:22:d3:17:c6:86:44:
                    4c:ef:21:03:72:79:d6:d0:95:4b:1c:b4:2e:92:97:be:
                    23:93:ce:85:30:b5:f9:e1:14:68:b6:e8:29:be:ac:79:
                    cc:d0:9d:49:5f:ae:82:c5:b6:76:89:e0:4b:da:96:8f:
                    93:80:98:1f:29:78:39:fa:54:ae:35:cf:69:d7:2f:b0:
                    41:b1:3f:b9:35:6c:c4:50:37:21:c2:7f:2c:0e:19:94:
                    7c:24:95:7c:74:57:3c:99:f4:40:0e:5c:01:7a:88:8d:
                    a5:49:5e:6e:1c:e4:85:b6:fe:84:cf:2f:c1:f1:8f:e7:
                    b5:78:93:3d:c5:2c:2e:4e:be:44:1d:d8:eb:e3:02:6a:
                    71:73:4c:7a:3c:87:80:4b:f1:7b:fc:1f:45:05:24:d7:
                    b6:b4:0d:f9:49:2b:77:44:47:0e:81:31:fb:cf:6d:a3:
                    97:cf:34:b3:b3:9f:c6:68:89:3c:dc:30:3b:41:41:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:69:02:c7:01:82:02:82:0c:06:40:19:12:4e:a0:76:
        57:cf:d6:3e:da:25:38:10:e3:42:7d:b4:3e:95:04:b4:
        a0:a2:7d:0e:36:18:97:3a:cc:c3:02:74:66:1e:5b:39:
        0d:60:71:fd:90:cd:17:ca:bd:ff:32:80:de:a0:ff:d8:
        42:98:91:10:87:97:5f:76:96:24:c4:f5:5c:16:5e:72:
        43:00:24:a9:cb:e0:b4:f1:9b:5b:db:19:a7:ea:df:aa:
        1e:b6:d6:0e:50:6a:01:b0:62:98:fa:ec:3f:f3:7e:0c:
        f9:97:4b:99:24:19:cf:21:d7:a8:c7:48:c7:86:9a:d5:
        41:95:85:fa:ce:3f:ca:ce:00:f8:6e:43:73:64:0b:50:
        41:da:c4:3d:16:be:c3:18:c9:8c:f4:d8:b6:1e:b1:69:
        f7:5c:b5:27:ad:14:38:6c:0a:17:f2:70:ad:6c:f9:9d:
        95:03:c8:11:ac:af:52:7a:1d:62:ed:33:e2:83:5d:52:
        65:1c:d3:a9:58:7b:f9:6b:52:84:84:21:81:73:6b:7d:
        34:71:e3:20:0c:ba:3e:69:63:e6:8b:1c:f9:d2:62:c0:
        03:77:cd:58:0c:d8:cd:de:6f:b9:c1:83:a4:ac:98:05:
        43:aa:ea:a5:4c:b5:3b:a7:79:ee:83:68:44:39:d5:04
    Fingerprint (SHA-256):
        73:03:0E:7B:8E:59:4A:A9:0A:6B:D7:1A:3D:11:B9:58:55:C4:8C:69:AB:AD:7D:FB:95:F6:97:14:A3:04:4B:69
    Fingerprint (SHA1):
        56:D2:35:58:FB:BB:25:2E:E2:31:AF:57:0F:18:6B:12:07:8F:E1:FE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12107: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12108: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121256 (0x1e67d528)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:16:55 2017
            Not After : Tue May 10 12:16:55 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:a3:b3:94:97:bc:35:5f:95:a7:12:4c:1d:73:fc:5f:
                    44:45:f8:7b:cb:dd:11:fd:eb:3c:b2:63:25:57:e6:f3:
                    2c:c0:80:28:6f:1f:5a:15:7a:f0:29:8b:50:2b:9a:34:
                    ee:f5:f5:a1:88:9a:47:2f:e7:47:7d:ee:a8:8b:a0:bd:
                    57:ba:a7:83:99:c1:ff:83:cc:e4:a2:c2:03:73:db:82:
                    1c:eb:d2:d6:b6:33:70:a8:3c:0d:27:f5:ed:be:88:95:
                    ae:f5:87:f8:b6:4a:fc:99:9d:58:95:9e:30:59:1f:42:
                    87:4d:09:41:2f:b9:97:97:e1:49:db:f9:a6:db:3b:4f:
                    25:7e:17:0d:a5:ed:e9:88:8f:9e:81:44:a3:fd:ae:94:
                    eb:85:cf:4e:b4:28:71:80:74:31:4c:c9:5c:07:0d:df:
                    76:2b:ff:e6:75:49:94:38:c3:ea:0f:01:56:66:0b:1b:
                    1f:a7:1e:fc:ac:52:54:3b:ae:ec:c4:5e:85:21:00:91:
                    a9:7e:65:a5:37:25:68:b9:12:a3:b3:41:a7:95:fb:e5:
                    e2:02:ab:ec:13:96:1c:10:c6:c4:0a:a5:9b:95:a0:d7:
                    da:a0:06:1d:d3:f8:03:f9:a4:ee:64:42:fb:8b:90:3e:
                    c9:94:cc:41:46:a4:f6:2a:4b:b3:b2:35:0f:8e:5e:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:6d:e3:78:91:80:1d:8a:53:f1:dc:59:b7:64:58:fd:
        e4:3e:8e:21:ea:bc:62:08:44:96:fd:4e:fc:e2:38:b2:
        63:b9:cf:87:d1:90:75:36:8e:05:64:68:35:59:31:1e:
        0e:49:42:3d:84:6c:0b:d2:1a:d6:18:2d:fa:bf:e0:ac:
        ea:0f:f1:05:16:2b:5f:b7:9a:71:41:af:06:1a:86:4d:
        8b:9c:01:37:26:5c:40:99:3d:78:73:30:49:2b:50:a9:
        9d:52:e6:1a:a0:5c:1f:31:a0:99:0c:d2:cb:15:e4:f1:
        fc:77:f0:44:49:5d:5b:f9:b4:ec:5f:c7:6a:42:00:08:
        02:6c:f9:56:f4:6b:30:25:4d:1f:56:14:c8:5a:cc:6f:
        bc:66:a0:fc:2d:b0:2e:8c:f7:b3:f6:3f:40:12:3f:ba:
        fe:d0:2b:2e:71:1b:63:5e:90:f1:c1:49:54:b4:0f:c8:
        9a:a1:b4:d9:d1:d4:ef:ba:71:82:c3:f4:f7:dc:c2:1d:
        ff:17:05:c0:d6:68:1f:37:91:05:b3:58:41:2c:1c:03:
        d7:3e:c7:cb:3a:72:61:13:e0:a9:d5:02:99:39:42:7b:
        b7:5b:e4:7c:29:2a:8a:10:2f:ab:21:b0:26:bf:8f:c6:
        fa:de:ce:8f:e5:c6:53:b3:e1:77:e0:c9:e4:95:40:ee
    Fingerprint (SHA-256):
        D9:45:B4:50:61:BF:2A:BF:7F:C4:39:C9:37:64:44:0B:B3:B5:40:55:10:D2:9E:AE:6C:3D:54:6C:DC:70:09:E1
    Fingerprint (SHA1):
        15:40:23:57:C5:C4:AE:77:EB:72:50:A3:60:BB:53:12:05:78:F6:1D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #12109: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12110: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12111: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121257 (0x1e67d529)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:16:57 2017
            Not After : Tue May 10 12:16:57 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:95:02:aa:fa:ea:37:2e:51:1c:b2:94:24:76:8c:d8:
                    36:aa:17:f5:1a:e0:33:78:0e:c6:db:da:61:50:f1:ba:
                    4a:03:60:d6:28:b2:f1:af:9c:d0:18:da:41:9f:ac:e7:
                    e9:e1:e1:1a:c1:b4:4a:cf:fc:60:07:14:37:35:fb:b4:
                    d4:58:a1:05:33:b4:48:e7:07:bb:65:05:7b:ff:9a:71:
                    d3:52:fa:5a:ae:7f:1d:fe:a4:17:0a:48:be:2f:dd:8d:
                    32:11:ed:27:33:cc:d8:8f:c5:b8:c4:2b:8e:76:ce:b7:
                    a5:1b:cc:47:9f:9f:dc:0d:f0:71:5f:1e:3e:2e:3c:2a:
                    28:ec:06:8b:e7:b4:ac:8d:de:8a:4a:36:e9:43:dc:6f:
                    b7:58:71:f0:31:8b:89:84:39:eb:9e:15:44:42:05:cf:
                    8e:a4:12:0c:6a:5c:6c:be:95:d1:35:c4:dc:01:eb:52:
                    d1:61:b0:e8:9d:5b:b3:82:79:29:f7:e7:1b:ef:0f:08:
                    2d:a9:c5:7d:d3:29:26:b9:d7:18:42:8a:d8:37:44:d1:
                    1c:ae:3a:4c:7f:d9:e2:72:bc:eb:ee:b5:19:73:5f:f4:
                    d0:21:09:ac:23:2d:4a:3e:f1:9f:09:94:f4:b2:82:32:
                    82:50:77:14:87:e3:27:99:b5:08:ae:2b:76:89:b4:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cd:32:ea:25:cd:c4:a3:c0:6c:58:91:de:45:94:05:4d:
        62:ac:26:33:c6:e7:fc:65:d4:0c:e7:61:d4:ff:07:b9:
        27:5a:3e:4d:f5:87:f6:55:5e:90:70:99:7f:10:0e:9f:
        31:d2:78:75:dd:08:52:25:ab:3e:70:9e:09:f0:fe:ed:
        62:3c:59:9a:74:52:36:89:04:e2:8f:89:10:11:f4:a4:
        bb:26:51:f4:54:98:fc:c6:d3:7d:ae:4f:a8:de:91:8d:
        5e:d2:6b:21:2d:72:fd:25:31:45:fe:40:cc:ae:35:e1:
        10:fd:71:f0:13:ce:8e:d8:d0:02:6b:1a:32:c7:1d:4a:
        65:ac:d2:4d:e6:ed:b9:f4:07:ce:e8:4e:c1:af:1a:08:
        6e:32:2a:f4:f7:9f:f2:51:1f:2d:3d:43:d0:ca:71:ce:
        fc:35:e6:ff:e9:c1:ad:7b:73:04:54:57:96:da:01:b5:
        c3:01:ee:30:e4:96:ea:f6:ce:74:db:8c:d3:9c:15:da:
        f2:4a:ba:6c:3e:5d:53:ea:85:96:31:52:ea:3c:3b:cf:
        e4:d5:b9:47:ad:ad:0c:7a:b5:ab:97:f5:d2:26:d4:ef:
        45:09:db:f8:47:00:12:67:62:4d:2c:f1:3f:1f:10:28:
        8a:9d:b8:3c:6d:82:01:ff:45:01:2d:28:09:8d:c5:b5
    Fingerprint (SHA-256):
        AC:FE:E4:B8:6A:1E:87:72:F9:16:29:40:39:F5:B6:4D:08:9C:78:14:28:8E:ED:EB:B3:B1:54:CC:42:51:00:08
    Fingerprint (SHA1):
        35:13:58:5F:28:B8:5F:EA:05:68:E7:BC:D6:BF:46:DA:74:FC:22:DD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #12112: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12113: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121260 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12114: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12115: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12116: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12117: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121261   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12118: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12119: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12120: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12121: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121262   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA1Root-510121039.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12122: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12123: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #12124: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12125: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510121263   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12126: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12127: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #12128: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121260 (0x1e67d52c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:17:03 2017
            Not After : Tue May 10 12:17:03 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:f1:4a:33:43:fb:f2:b8:20:86:f2:e7:5f:3a:9e:61:
                    ce:cc:82:2b:86:b7:54:7a:ac:79:4f:fe:04:22:d0:31:
                    e8:5a:0f:d5:fc:89:6d:9a:81:3d:26:ae:73:e4:59:37:
                    82:36:59:1e:34:41:8b:32:91:49:8c:4a:19:82:9b:7b:
                    aa:f3:b5:35:71:e3:36:c2:47:5c:3d:33:f1:dc:a8:81:
                    76:b3:6d:54:36:5d:a6:c0:1d:91:c1:b3:1a:c7:d4:46:
                    8a:05:5a:63:99:bd:6d:25:6b:a5:84:34:cf:5c:00:97:
                    87:e6:2e:01:a2:56:e8:0e:e1:ac:39:ce:c3:3a:32:6c:
                    b5:62:58:d4:e6:ec:71:4e:1f:ec:37:10:a4:de:7b:04:
                    b9:0a:50:d1:95:45:6b:68:e9:e9:2f:07:95:92:da:63:
                    8e:c0:85:98:1f:2a:31:2b:70:d8:b2:81:aa:3c:80:02:
                    0d:09:59:4b:36:e7:8d:90:56:03:ee:9e:5e:be:47:77:
                    3c:58:12:9a:eb:b4:b9:cd:d9:6f:97:9f:71:ce:16:5f:
                    54:51:52:70:fe:7e:ec:68:a8:71:df:7b:0d:19:2a:1c:
                    ca:40:a0:1b:88:dd:8c:d7:29:19:5d:73:4b:5f:74:64:
                    a5:18:df:a6:23:0f:d3:c2:e4:9c:99:81:da:48:7d:95
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:b3:13:8b:dd:0a:1e:26:b4:b7:df:f2:6a:73:6e:6e:
        09:3e:52:9f:63:30:7f:e8:d8:b5:51:7d:8c:65:be:13:
        e1:fb:47:a8:fb:b2:c0:52:17:45:ba:6d:9a:a6:7e:b0:
        65:14:64:3d:07:e2:6c:a5:f7:96:ef:3e:37:7e:c6:a5:
        de:05:ec:8c:94:8f:4b:ea:84:d4:d2:d5:1a:a8:4b:02:
        a8:56:2a:e0:34:ef:85:15:74:83:0d:96:2b:4c:e8:5c:
        9b:d8:70:f9:09:cf:01:f2:88:5c:d7:8c:e9:f9:37:10:
        d3:b8:a9:1e:4a:33:b4:4e:83:1a:02:30:ed:ef:b1:de:
        09:c4:44:4a:be:c0:9c:cc:e8:ea:2f:1e:88:04:92:b5:
        19:ff:81:3a:fd:7a:1b:00:c2:0b:cd:27:18:0f:4a:5b:
        d3:44:0b:b2:e2:de:d2:d1:c6:7d:c0:6a:5e:33:91:d9:
        29:af:d7:61:83:2b:cd:78:57:e1:c2:c2:2d:e5:8f:78:
        38:0a:99:2e:74:7b:88:ed:7c:c5:6e:78:d3:06:d5:03:
        5c:89:6d:84:c0:f7:13:d6:bc:62:40:d7:1d:fe:4b:61:
        10:f2:e2:a4:74:97:81:a8:46:e4:d6:62:94:75:19:1b:
        8a:ae:da:a9:c4:57:e4:8b:3d:13:4d:b6:57:88:50:01
    Fingerprint (SHA-256):
        AB:E4:53:59:8D:42:98:C6:C4:F4:1C:15:EC:EF:72:E5:27:73:0C:45:A8:41:99:70:32:48:62:34:C0:7F:21:E4
    Fingerprint (SHA1):
        3C:5C:EE:07:1D:32:BE:01:2E:43:BD:8D:32:C2:A3:4C:EA:C9:F6:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12129: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #12130: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121264 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12131: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #12132: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #12133: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121265 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12134: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #12135: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #12136: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12137: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510121266 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12138: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12139: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510121267 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12140: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12141: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #12142: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12143: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12144: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510121268   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-Bridge-510121040.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12145: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12146: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12147: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12148: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121269   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12149: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12150: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #12151: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121264 (0x1e67d530)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:17:09 2017
            Not After : Tue May 10 12:17:09 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:30:95:20:56:9c:1a:49:ea:85:82:c8:27:c1:59:b4:
                    87:58:20:29:fd:8e:10:91:c9:4a:33:cf:e3:93:5a:1d:
                    65:de:cd:81:65:e5:2c:37:5d:eb:dc:c5:ab:9b:b2:70:
                    40:8b:97:75:4f:54:a4:de:6f:d8:99:93:91:d3:5a:7c:
                    e1:74:0a:33:08:86:8f:9e:a9:48:19:a0:eb:58:92:ef:
                    92:64:79:91:ae:25:ad:dd:71:a1:f3:96:a1:eb:d2:03:
                    4d:9c:42:f9:03:43:02:aa:60:fa:0b:6d:12:d2:34:4d:
                    25:a0:0a:f5:7f:63:c2:a6:0f:d4:4a:28:19:97:d2:51:
                    50:03:f9:dd:a3:25:e4:07:3f:66:3c:c0:d1:69:9b:95:
                    e2:16:67:95:d9:c1:52:30:18:ea:9f:2e:91:c0:fc:0e:
                    2f:58:96:33:5c:24:2f:4d:bf:91:2f:4a:bb:38:7d:4d:
                    76:0b:99:cb:a1:43:0f:61:2a:9a:39:07:9e:d9:1d:67:
                    06:40:62:f0:17:c6:e2:a9:74:88:72:1d:e7:04:79:a6:
                    77:e6:43:98:d8:5e:0d:2f:0b:b5:53:42:b6:2a:24:30:
                    32:2e:28:7a:c1:1d:03:a8:8f:e2:7f:2a:91:f0:a7:eb:
                    9a:53:2c:d6:4c:3f:10:c1:83:d4:f7:f8:c5:33:e8:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c3:a2:dd:41:82:0b:42:db:a5:78:0a:66:a3:51:d6:ac:
        01:23:a7:6e:0f:2e:d5:9b:86:1f:1a:40:74:48:e1:33:
        16:e0:e7:46:18:b4:94:db:e6:52:d8:ee:50:35:03:53:
        ab:f9:50:a2:75:1f:1e:15:5f:0b:69:e9:d3:7e:db:48:
        c3:4b:f0:9a:11:3c:e8:8f:c0:96:3f:1b:e6:5a:ef:af:
        de:10:32:46:2b:97:92:11:31:40:6b:5e:c2:d4:bd:1e:
        83:e7:b4:8b:65:f7:8e:47:ff:64:7a:2f:8d:ef:9e:7f:
        0f:4e:36:e0:d3:73:1b:72:0e:5c:2b:08:a5:df:4f:79:
        93:9a:e3:ff:5b:d8:b6:db:90:fe:29:d6:42:a4:7f:d6:
        fd:36:f6:79:06:d2:11:e6:a0:de:c6:a1:82:a6:3a:c3:
        ce:e7:b4:e5:6c:e9:1e:73:54:0e:83:2f:17:35:a8:7f:
        5c:3c:09:c7:34:69:cc:e3:d8:60:75:a1:d9:63:c5:80:
        0c:7c:9d:3b:fa:fe:a4:21:9a:d4:ee:3f:0b:c4:da:16:
        42:66:b6:67:e4:15:da:1b:4b:f7:91:d6:a8:c9:08:38:
        3b:1b:4b:e3:93:a7:4f:b7:54:8b:07:26:55:ef:18:f7:
        64:18:e7:f7:61:7e:e7:3e:56:57:3a:58:90:8d:d7:08
    Fingerprint (SHA-256):
        B3:01:31:91:2B:C7:34:BD:B1:3D:3B:8D:90:8F:F4:4C:4B:9B:AD:C0:D5:95:67:05:B9:69:2E:9C:24:35:CA:84
    Fingerprint (SHA1):
        3F:54:34:25:EC:6C:7D:97:6F:AF:5A:26:00:4D:C7:74:D0:42:48:02
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12152: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121265 (0x1e67d531)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:17:11 2017
            Not After : Tue May 10 12:17:11 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:b4:12:38:d0:2e:0c:a9:1c:28:70:cf:66:77:e6:cc:
                    e8:f0:6e:7a:11:59:b7:94:63:8e:68:a9:30:9b:8b:00:
                    80:f2:a5:bf:7d:df:4c:13:1a:a7:5d:ad:cb:0e:31:43:
                    3a:1e:88:26:3b:3a:99:37:cc:d1:a4:28:a9:9a:2e:e7:
                    87:84:58:d1:65:49:99:36:77:b3:87:d1:e9:ca:f2:79:
                    b3:df:3f:b7:05:f0:c6:fd:47:38:13:40:f3:02:7b:00:
                    74:94:93:cb:51:a4:6d:cf:4c:74:9d:ad:f1:5a:63:a6:
                    98:f6:a5:a9:19:f1:44:0e:0b:5c:90:a7:73:65:b8:9f:
                    79:99:48:3e:0d:57:23:a7:ed:1c:27:d8:58:6d:c1:4e:
                    e3:d3:f4:75:0d:2d:a6:04:19:01:08:03:94:cf:fd:03:
                    ba:fd:34:67:1c:3d:93:b5:61:bb:32:49:cb:5c:8f:b8:
                    dc:b6:27:ea:11:0f:b1:66:13:d1:4b:1a:85:f0:f7:75:
                    39:ff:01:7a:0e:be:8f:b3:43:af:57:18:d4:d6:1b:84:
                    33:b4:b5:fd:ff:9e:bd:3e:3c:38:6a:b0:7d:05:1c:4a:
                    6c:fe:6f:67:09:5e:16:e2:df:3c:55:b1:66:45:85:a9:
                    05:fd:ff:83:0a:24:c8:52:af:81:72:fc:0b:66:3f:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:7d:59:e8:ff:8e:e0:a0:c8:46:7d:0c:a4:a3:6e:cb:
        9f:5c:b9:f0:b1:21:1f:43:64:21:4f:7a:5a:2b:6c:d3:
        7b:7c:7f:ba:6f:03:39:45:81:e8:31:80:4d:4a:21:9e:
        58:49:03:83:29:fd:b3:1c:80:4a:c3:cf:b8:9b:2d:7a:
        6a:98:e5:48:33:d9:17:0d:a3:ea:c0:0a:98:cf:fb:8e:
        34:e7:18:88:42:e2:7d:da:68:34:1b:49:73:bf:14:27:
        71:c1:55:9f:62:3a:97:88:0d:2b:17:0c:c5:2f:22:d3:
        95:55:d1:da:b1:36:09:e1:f0:d4:19:7c:dd:d4:94:71:
        4c:f9:80:15:c9:eb:06:54:97:7d:51:89:bd:ab:21:53:
        cd:26:cc:52:c0:79:b8:18:33:57:ed:3d:3a:47:0a:ca:
        86:26:d0:ef:dc:d2:fb:f0:a9:96:81:b1:54:64:fe:7e:
        5c:64:ab:89:e6:07:ca:86:5e:2d:5f:32:39:87:62:7c:
        9d:09:92:60:e4:1c:09:94:71:48:b7:b2:5a:19:19:6f:
        4d:74:b0:e8:c5:6c:74:d9:d7:b7:ea:7a:70:21:a5:84:
        24:bf:8f:c3:55:c2:e4:07:cf:d6:64:69:6c:b2:46:43:
        67:4c:e4:33:15:4f:5a:26:be:c1:fc:a2:04:35:05:72
    Fingerprint (SHA-256):
        81:0F:4C:E1:81:F0:24:B3:19:40:34:5E:F6:9A:CB:41:0E:63:A3:36:13:F0:DD:F0:7F:FE:F9:C5:9B:E5:C0:69
    Fingerprint (SHA1):
        23:9B:6F:0B:DD:13:8F:93:E2:BE:39:09:B3:60:9B:EC:40:6A:9B:67
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12153: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121265 (0x1e67d531)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:17:11 2017
            Not After : Tue May 10 12:17:11 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:b4:12:38:d0:2e:0c:a9:1c:28:70:cf:66:77:e6:cc:
                    e8:f0:6e:7a:11:59:b7:94:63:8e:68:a9:30:9b:8b:00:
                    80:f2:a5:bf:7d:df:4c:13:1a:a7:5d:ad:cb:0e:31:43:
                    3a:1e:88:26:3b:3a:99:37:cc:d1:a4:28:a9:9a:2e:e7:
                    87:84:58:d1:65:49:99:36:77:b3:87:d1:e9:ca:f2:79:
                    b3:df:3f:b7:05:f0:c6:fd:47:38:13:40:f3:02:7b:00:
                    74:94:93:cb:51:a4:6d:cf:4c:74:9d:ad:f1:5a:63:a6:
                    98:f6:a5:a9:19:f1:44:0e:0b:5c:90:a7:73:65:b8:9f:
                    79:99:48:3e:0d:57:23:a7:ed:1c:27:d8:58:6d:c1:4e:
                    e3:d3:f4:75:0d:2d:a6:04:19:01:08:03:94:cf:fd:03:
                    ba:fd:34:67:1c:3d:93:b5:61:bb:32:49:cb:5c:8f:b8:
                    dc:b6:27:ea:11:0f:b1:66:13:d1:4b:1a:85:f0:f7:75:
                    39:ff:01:7a:0e:be:8f:b3:43:af:57:18:d4:d6:1b:84:
                    33:b4:b5:fd:ff:9e:bd:3e:3c:38:6a:b0:7d:05:1c:4a:
                    6c:fe:6f:67:09:5e:16:e2:df:3c:55:b1:66:45:85:a9:
                    05:fd:ff:83:0a:24:c8:52:af:81:72:fc:0b:66:3f:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:7d:59:e8:ff:8e:e0:a0:c8:46:7d:0c:a4:a3:6e:cb:
        9f:5c:b9:f0:b1:21:1f:43:64:21:4f:7a:5a:2b:6c:d3:
        7b:7c:7f:ba:6f:03:39:45:81:e8:31:80:4d:4a:21:9e:
        58:49:03:83:29:fd:b3:1c:80:4a:c3:cf:b8:9b:2d:7a:
        6a:98:e5:48:33:d9:17:0d:a3:ea:c0:0a:98:cf:fb:8e:
        34:e7:18:88:42:e2:7d:da:68:34:1b:49:73:bf:14:27:
        71:c1:55:9f:62:3a:97:88:0d:2b:17:0c:c5:2f:22:d3:
        95:55:d1:da:b1:36:09:e1:f0:d4:19:7c:dd:d4:94:71:
        4c:f9:80:15:c9:eb:06:54:97:7d:51:89:bd:ab:21:53:
        cd:26:cc:52:c0:79:b8:18:33:57:ed:3d:3a:47:0a:ca:
        86:26:d0:ef:dc:d2:fb:f0:a9:96:81:b1:54:64:fe:7e:
        5c:64:ab:89:e6:07:ca:86:5e:2d:5f:32:39:87:62:7c:
        9d:09:92:60:e4:1c:09:94:71:48:b7:b2:5a:19:19:6f:
        4d:74:b0:e8:c5:6c:74:d9:d7:b7:ea:7a:70:21:a5:84:
        24:bf:8f:c3:55:c2:e4:07:cf:d6:64:69:6c:b2:46:43:
        67:4c:e4:33:15:4f:5a:26:be:c1:fc:a2:04:35:05:72
    Fingerprint (SHA-256):
        81:0F:4C:E1:81:F0:24:B3:19:40:34:5E:F6:9A:CB:41:0E:63:A3:36:13:F0:DD:F0:7F:FE:F9:C5:9B:E5:C0:69
    Fingerprint (SHA1):
        23:9B:6F:0B:DD:13:8F:93:E2:BE:39:09:B3:60:9B:EC:40:6A:9B:67
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12154: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #12155: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121270 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12156: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #12157: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #12158: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121271 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12159: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #12160: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #12161: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12162: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510121272 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12163: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12164: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510121273 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12165: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12166: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #12167: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12168: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12169: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510121274   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-Bridge-510121041.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12170: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12171: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12172: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12173: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121275   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12174: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12175: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12176: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12177: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510121276   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-BridgeNavy-510121042.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12178: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12179: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12180: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12181: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510121277   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12182: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12183: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #12184: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121270 (0x1e67d536)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:17:18 2017
            Not After : Tue May 10 12:17:18 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:ba:42:af:e4:3b:8f:ba:a8:de:3b:1f:1a:b0:ae:d6:
                    97:4e:13:75:85:cc:3a:04:0e:8e:bb:98:af:23:64:46:
                    d1:f8:d4:0f:4b:ca:62:52:5a:8a:f5:ed:f6:3a:dc:11:
                    f0:90:4d:99:4c:05:5e:89:96:9f:9b:41:f1:d2:2a:18:
                    78:0e:34:0b:e9:72:e6:2e:c2:ba:4c:21:f9:a6:f2:0a:
                    ed:1e:4a:f6:19:b2:21:5c:03:02:c0:88:bf:04:a1:2c:
                    05:0b:c4:c5:dc:48:2c:b2:76:d2:af:5d:e4:f1:6b:84:
                    a3:d5:8b:8f:26:59:cd:60:e5:b9:66:e6:a9:db:4a:14:
                    32:8d:1f:3e:13:4a:0d:78:11:63:39:3f:df:2b:73:22:
                    af:46:a0:f7:01:3b:8c:bc:33:f5:21:85:11:c6:f7:1d:
                    36:51:35:c5:bb:9f:49:66:9f:b0:26:0b:8c:b9:8b:81:
                    39:bd:ca:ce:ed:97:d7:8b:31:42:b6:34:e1:88:21:fe:
                    b6:82:07:f3:22:b5:83:6a:07:35:7f:4c:66:ed:50:38:
                    bc:7c:c4:c7:3c:11:da:fc:41:d8:0d:b6:cd:b9:e4:f4:
                    61:d2:21:e1:6f:6d:3c:e3:02:19:4d:7e:16:ac:7a:0f:
                    1a:c7:74:ce:2a:4f:36:6d:cd:a6:fd:fd:c3:ff:da:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:21:ac:2d:43:28:12:b4:a7:3c:b0:8f:c7:e2:0d:29:
        d9:d9:e8:2d:47:02:d5:4e:87:dc:f9:32:da:82:b0:3e:
        c7:56:70:59:b7:ec:7a:aa:5b:0c:b5:84:e3:90:41:8d:
        fd:17:3f:e6:8d:f3:e9:ae:1e:55:e4:4f:33:69:ec:f1:
        dd:9f:4c:34:2d:3e:fc:10:4a:cd:69:60:c7:18:39:8e:
        88:26:04:f4:f1:d2:c2:ba:74:1e:4a:38:ed:a9:c8:03:
        98:1e:73:5a:51:35:b5:74:0c:10:e4:d0:be:57:48:44:
        a7:03:c3:2a:d7:1e:31:81:61:44:1d:b6:20:be:32:22:
        45:8a:d4:79:19:da:4d:3f:25:81:63:b5:bd:30:50:01:
        73:bb:af:bb:65:02:2d:f4:68:99:16:7e:94:28:c8:0b:
        cc:d6:6b:e8:e7:14:27:d7:55:82:1b:6b:06:2f:6e:95:
        c1:d3:e0:15:bd:e5:a4:d3:10:ed:cf:f6:65:68:b6:4d:
        c7:38:4f:be:d6:2f:06:dc:4d:d0:b2:8e:22:01:f6:27:
        55:85:e6:a0:d7:51:7e:fc:22:b3:45:1d:f4:0d:84:70:
        ea:87:fa:8d:8b:fd:aa:a4:cd:b6:30:7d:3e:8b:c3:b9:
        10:b5:05:b1:f0:da:6d:c6:60:68:e6:ba:90:e2:0a:34
    Fingerprint (SHA-256):
        9D:1A:5D:15:3C:1D:61:B3:86:09:C0:7B:86:0B:4A:DB:9E:49:B0:18:97:19:73:30:62:AD:9A:D7:0E:94:AB:2F
    Fingerprint (SHA1):
        24:F0:35:65:23:A5:69:95:A5:13:3D:87:89:8D:62:A9:03:0D:97:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12185: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121271 (0x1e67d537)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:17:20 2017
            Not After : Tue May 10 12:17:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:cb:4b:82:cd:8c:b2:b0:60:61:a4:35:22:fb:50:3d:
                    d3:50:4d:7b:97:4b:23:d5:f3:7f:1c:fe:06:b2:03:ea:
                    a5:ff:63:31:3c:b5:ce:f7:ee:69:d6:fd:dd:4f:9e:3b:
                    a4:1a:0e:ab:58:51:75:9d:17:4e:1b:c8:99:37:df:a6:
                    40:0d:2c:23:f4:01:3c:7f:3a:1b:5d:36:27:63:39:15:
                    9a:be:26:1e:de:a8:6a:a9:72:fb:7e:44:a4:56:68:83:
                    92:f5:f6:91:4f:e2:a4:2b:1e:15:88:66:b0:91:00:3d:
                    d1:2b:fe:6c:9f:8c:84:2b:4d:e6:14:f2:21:61:3e:14:
                    df:bb:b3:1b:61:bb:2f:7d:dc:8c:7d:e3:75:f0:ea:4b:
                    20:20:25:a1:22:e5:0d:14:b9:5f:40:67:4f:76:91:eb:
                    b9:8a:41:cc:f5:8e:12:98:e8:35:3c:23:3e:79:80:4a:
                    a6:e1:08:7b:c8:dd:5c:ca:23:f2:e3:38:c2:0b:5e:71:
                    26:ac:c8:cc:ec:8d:3f:d9:ce:9b:58:95:07:ee:42:90:
                    2f:ea:4d:c1:35:a8:98:47:58:60:8c:79:7f:29:dd:7b:
                    5c:1a:c2:02:7d:0e:ba:bf:a5:71:7a:99:ed:a5:b5:d3:
                    e4:b0:4e:d8:9f:48:e4:84:54:e2:70:5f:93:40:c2:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:65:59:d9:9b:14:f1:0b:3d:91:00:47:2b:91:f5:76:
        6c:52:4e:c6:cc:7a:b3:bd:02:94:19:bf:4a:09:0d:4b:
        74:0d:ec:da:96:c4:12:22:c3:ab:4b:83:ed:25:5d:f7:
        33:55:38:32:ab:ff:38:13:51:2a:02:8f:f0:d0:05:ed:
        d0:82:44:f8:b2:c2:da:f8:e1:29:c1:3f:4a:20:1a:ba:
        47:e5:05:f3:fe:39:4f:d3:b7:52:3e:ef:36:e1:c2:32:
        2e:dc:59:aa:c2:c2:f0:7e:2f:4e:0c:dc:f4:d4:8f:b9:
        78:14:39:00:6d:10:e2:a6:e2:c0:4c:60:44:44:19:66:
        69:ca:24:27:ba:05:9e:20:9a:bf:46:0c:44:b0:94:64:
        65:32:ec:b5:0e:a5:88:19:8b:07:78:b6:40:5e:a5:d6:
        8c:b3:a2:84:d0:d1:bf:42:f3:3e:a2:05:e8:cc:3d:c5:
        ec:c8:53:c7:b0:a2:e3:f3:c9:9b:6c:aa:35:43:2a:7d:
        33:68:67:1a:0d:e3:91:40:9c:3b:6f:3a:3b:98:5f:0e:
        01:c2:4c:21:b3:98:9a:f4:a9:b7:fe:a3:95:54:c8:1f:
        b5:f0:1c:75:bd:ef:4f:ff:48:0a:84:4e:b7:7c:ab:09:
        2b:c8:37:0a:71:2f:8b:05:ac:1d:5e:b3:0c:d9:8f:1d
    Fingerprint (SHA-256):
        47:94:18:4B:AF:AD:8B:0F:42:B0:8D:83:AC:05:09:27:C1:E6:0B:34:45:2A:7E:71:4E:17:89:4C:C3:86:45:A4
    Fingerprint (SHA1):
        BF:2A:37:6F:8A:87:16:63:74:4F:CF:A5:E9:D4:DA:3E:49:5E:65:7A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12186: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121271 (0x1e67d537)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:17:20 2017
            Not After : Tue May 10 12:17:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:cb:4b:82:cd:8c:b2:b0:60:61:a4:35:22:fb:50:3d:
                    d3:50:4d:7b:97:4b:23:d5:f3:7f:1c:fe:06:b2:03:ea:
                    a5:ff:63:31:3c:b5:ce:f7:ee:69:d6:fd:dd:4f:9e:3b:
                    a4:1a:0e:ab:58:51:75:9d:17:4e:1b:c8:99:37:df:a6:
                    40:0d:2c:23:f4:01:3c:7f:3a:1b:5d:36:27:63:39:15:
                    9a:be:26:1e:de:a8:6a:a9:72:fb:7e:44:a4:56:68:83:
                    92:f5:f6:91:4f:e2:a4:2b:1e:15:88:66:b0:91:00:3d:
                    d1:2b:fe:6c:9f:8c:84:2b:4d:e6:14:f2:21:61:3e:14:
                    df:bb:b3:1b:61:bb:2f:7d:dc:8c:7d:e3:75:f0:ea:4b:
                    20:20:25:a1:22:e5:0d:14:b9:5f:40:67:4f:76:91:eb:
                    b9:8a:41:cc:f5:8e:12:98:e8:35:3c:23:3e:79:80:4a:
                    a6:e1:08:7b:c8:dd:5c:ca:23:f2:e3:38:c2:0b:5e:71:
                    26:ac:c8:cc:ec:8d:3f:d9:ce:9b:58:95:07:ee:42:90:
                    2f:ea:4d:c1:35:a8:98:47:58:60:8c:79:7f:29:dd:7b:
                    5c:1a:c2:02:7d:0e:ba:bf:a5:71:7a:99:ed:a5:b5:d3:
                    e4:b0:4e:d8:9f:48:e4:84:54:e2:70:5f:93:40:c2:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:65:59:d9:9b:14:f1:0b:3d:91:00:47:2b:91:f5:76:
        6c:52:4e:c6:cc:7a:b3:bd:02:94:19:bf:4a:09:0d:4b:
        74:0d:ec:da:96:c4:12:22:c3:ab:4b:83:ed:25:5d:f7:
        33:55:38:32:ab:ff:38:13:51:2a:02:8f:f0:d0:05:ed:
        d0:82:44:f8:b2:c2:da:f8:e1:29:c1:3f:4a:20:1a:ba:
        47:e5:05:f3:fe:39:4f:d3:b7:52:3e:ef:36:e1:c2:32:
        2e:dc:59:aa:c2:c2:f0:7e:2f:4e:0c:dc:f4:d4:8f:b9:
        78:14:39:00:6d:10:e2:a6:e2:c0:4c:60:44:44:19:66:
        69:ca:24:27:ba:05:9e:20:9a:bf:46:0c:44:b0:94:64:
        65:32:ec:b5:0e:a5:88:19:8b:07:78:b6:40:5e:a5:d6:
        8c:b3:a2:84:d0:d1:bf:42:f3:3e:a2:05:e8:cc:3d:c5:
        ec:c8:53:c7:b0:a2:e3:f3:c9:9b:6c:aa:35:43:2a:7d:
        33:68:67:1a:0d:e3:91:40:9c:3b:6f:3a:3b:98:5f:0e:
        01:c2:4c:21:b3:98:9a:f4:a9:b7:fe:a3:95:54:c8:1f:
        b5:f0:1c:75:bd:ef:4f:ff:48:0a:84:4e:b7:7c:ab:09:
        2b:c8:37:0a:71:2f:8b:05:ac:1d:5e:b3:0c:d9:8f:1d
    Fingerprint (SHA-256):
        47:94:18:4B:AF:AD:8B:0F:42:B0:8D:83:AC:05:09:27:C1:E6:0B:34:45:2A:7E:71:4E:17:89:4C:C3:86:45:A4
    Fingerprint (SHA1):
        BF:2A:37:6F:8A:87:16:63:74:4F:CF:A5:E9:D4:DA:3E:49:5E:65:7A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12187: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #12188: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121270 (0x1e67d536)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:17:18 2017
            Not After : Tue May 10 12:17:18 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:ba:42:af:e4:3b:8f:ba:a8:de:3b:1f:1a:b0:ae:d6:
                    97:4e:13:75:85:cc:3a:04:0e:8e:bb:98:af:23:64:46:
                    d1:f8:d4:0f:4b:ca:62:52:5a:8a:f5:ed:f6:3a:dc:11:
                    f0:90:4d:99:4c:05:5e:89:96:9f:9b:41:f1:d2:2a:18:
                    78:0e:34:0b:e9:72:e6:2e:c2:ba:4c:21:f9:a6:f2:0a:
                    ed:1e:4a:f6:19:b2:21:5c:03:02:c0:88:bf:04:a1:2c:
                    05:0b:c4:c5:dc:48:2c:b2:76:d2:af:5d:e4:f1:6b:84:
                    a3:d5:8b:8f:26:59:cd:60:e5:b9:66:e6:a9:db:4a:14:
                    32:8d:1f:3e:13:4a:0d:78:11:63:39:3f:df:2b:73:22:
                    af:46:a0:f7:01:3b:8c:bc:33:f5:21:85:11:c6:f7:1d:
                    36:51:35:c5:bb:9f:49:66:9f:b0:26:0b:8c:b9:8b:81:
                    39:bd:ca:ce:ed:97:d7:8b:31:42:b6:34:e1:88:21:fe:
                    b6:82:07:f3:22:b5:83:6a:07:35:7f:4c:66:ed:50:38:
                    bc:7c:c4:c7:3c:11:da:fc:41:d8:0d:b6:cd:b9:e4:f4:
                    61:d2:21:e1:6f:6d:3c:e3:02:19:4d:7e:16:ac:7a:0f:
                    1a:c7:74:ce:2a:4f:36:6d:cd:a6:fd:fd:c3:ff:da:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:21:ac:2d:43:28:12:b4:a7:3c:b0:8f:c7:e2:0d:29:
        d9:d9:e8:2d:47:02:d5:4e:87:dc:f9:32:da:82:b0:3e:
        c7:56:70:59:b7:ec:7a:aa:5b:0c:b5:84:e3:90:41:8d:
        fd:17:3f:e6:8d:f3:e9:ae:1e:55:e4:4f:33:69:ec:f1:
        dd:9f:4c:34:2d:3e:fc:10:4a:cd:69:60:c7:18:39:8e:
        88:26:04:f4:f1:d2:c2:ba:74:1e:4a:38:ed:a9:c8:03:
        98:1e:73:5a:51:35:b5:74:0c:10:e4:d0:be:57:48:44:
        a7:03:c3:2a:d7:1e:31:81:61:44:1d:b6:20:be:32:22:
        45:8a:d4:79:19:da:4d:3f:25:81:63:b5:bd:30:50:01:
        73:bb:af:bb:65:02:2d:f4:68:99:16:7e:94:28:c8:0b:
        cc:d6:6b:e8:e7:14:27:d7:55:82:1b:6b:06:2f:6e:95:
        c1:d3:e0:15:bd:e5:a4:d3:10:ed:cf:f6:65:68:b6:4d:
        c7:38:4f:be:d6:2f:06:dc:4d:d0:b2:8e:22:01:f6:27:
        55:85:e6:a0:d7:51:7e:fc:22:b3:45:1d:f4:0d:84:70:
        ea:87:fa:8d:8b:fd:aa:a4:cd:b6:30:7d:3e:8b:c3:b9:
        10:b5:05:b1:f0:da:6d:c6:60:68:e6:ba:90:e2:0a:34
    Fingerprint (SHA-256):
        9D:1A:5D:15:3C:1D:61:B3:86:09:C0:7B:86:0B:4A:DB:9E:49:B0:18:97:19:73:30:62:AD:9A:D7:0E:94:AB:2F
    Fingerprint (SHA1):
        24:F0:35:65:23:A5:69:95:A5:13:3D:87:89:8D:62:A9:03:0D:97:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12189: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121271 (0x1e67d537)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:17:20 2017
            Not After : Tue May 10 12:17:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:cb:4b:82:cd:8c:b2:b0:60:61:a4:35:22:fb:50:3d:
                    d3:50:4d:7b:97:4b:23:d5:f3:7f:1c:fe:06:b2:03:ea:
                    a5:ff:63:31:3c:b5:ce:f7:ee:69:d6:fd:dd:4f:9e:3b:
                    a4:1a:0e:ab:58:51:75:9d:17:4e:1b:c8:99:37:df:a6:
                    40:0d:2c:23:f4:01:3c:7f:3a:1b:5d:36:27:63:39:15:
                    9a:be:26:1e:de:a8:6a:a9:72:fb:7e:44:a4:56:68:83:
                    92:f5:f6:91:4f:e2:a4:2b:1e:15:88:66:b0:91:00:3d:
                    d1:2b:fe:6c:9f:8c:84:2b:4d:e6:14:f2:21:61:3e:14:
                    df:bb:b3:1b:61:bb:2f:7d:dc:8c:7d:e3:75:f0:ea:4b:
                    20:20:25:a1:22:e5:0d:14:b9:5f:40:67:4f:76:91:eb:
                    b9:8a:41:cc:f5:8e:12:98:e8:35:3c:23:3e:79:80:4a:
                    a6:e1:08:7b:c8:dd:5c:ca:23:f2:e3:38:c2:0b:5e:71:
                    26:ac:c8:cc:ec:8d:3f:d9:ce:9b:58:95:07:ee:42:90:
                    2f:ea:4d:c1:35:a8:98:47:58:60:8c:79:7f:29:dd:7b:
                    5c:1a:c2:02:7d:0e:ba:bf:a5:71:7a:99:ed:a5:b5:d3:
                    e4:b0:4e:d8:9f:48:e4:84:54:e2:70:5f:93:40:c2:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:65:59:d9:9b:14:f1:0b:3d:91:00:47:2b:91:f5:76:
        6c:52:4e:c6:cc:7a:b3:bd:02:94:19:bf:4a:09:0d:4b:
        74:0d:ec:da:96:c4:12:22:c3:ab:4b:83:ed:25:5d:f7:
        33:55:38:32:ab:ff:38:13:51:2a:02:8f:f0:d0:05:ed:
        d0:82:44:f8:b2:c2:da:f8:e1:29:c1:3f:4a:20:1a:ba:
        47:e5:05:f3:fe:39:4f:d3:b7:52:3e:ef:36:e1:c2:32:
        2e:dc:59:aa:c2:c2:f0:7e:2f:4e:0c:dc:f4:d4:8f:b9:
        78:14:39:00:6d:10:e2:a6:e2:c0:4c:60:44:44:19:66:
        69:ca:24:27:ba:05:9e:20:9a:bf:46:0c:44:b0:94:64:
        65:32:ec:b5:0e:a5:88:19:8b:07:78:b6:40:5e:a5:d6:
        8c:b3:a2:84:d0:d1:bf:42:f3:3e:a2:05:e8:cc:3d:c5:
        ec:c8:53:c7:b0:a2:e3:f3:c9:9b:6c:aa:35:43:2a:7d:
        33:68:67:1a:0d:e3:91:40:9c:3b:6f:3a:3b:98:5f:0e:
        01:c2:4c:21:b3:98:9a:f4:a9:b7:fe:a3:95:54:c8:1f:
        b5:f0:1c:75:bd:ef:4f:ff:48:0a:84:4e:b7:7c:ab:09:
        2b:c8:37:0a:71:2f:8b:05:ac:1d:5e:b3:0c:d9:8f:1d
    Fingerprint (SHA-256):
        47:94:18:4B:AF:AD:8B:0F:42:B0:8D:83:AC:05:09:27:C1:E6:0B:34:45:2A:7E:71:4E:17:89:4C:C3:86:45:A4
    Fingerprint (SHA1):
        BF:2A:37:6F:8A:87:16:63:74:4F:CF:A5:E9:D4:DA:3E:49:5E:65:7A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12190: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121271 (0x1e67d537)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:17:20 2017
            Not After : Tue May 10 12:17:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:cb:4b:82:cd:8c:b2:b0:60:61:a4:35:22:fb:50:3d:
                    d3:50:4d:7b:97:4b:23:d5:f3:7f:1c:fe:06:b2:03:ea:
                    a5:ff:63:31:3c:b5:ce:f7:ee:69:d6:fd:dd:4f:9e:3b:
                    a4:1a:0e:ab:58:51:75:9d:17:4e:1b:c8:99:37:df:a6:
                    40:0d:2c:23:f4:01:3c:7f:3a:1b:5d:36:27:63:39:15:
                    9a:be:26:1e:de:a8:6a:a9:72:fb:7e:44:a4:56:68:83:
                    92:f5:f6:91:4f:e2:a4:2b:1e:15:88:66:b0:91:00:3d:
                    d1:2b:fe:6c:9f:8c:84:2b:4d:e6:14:f2:21:61:3e:14:
                    df:bb:b3:1b:61:bb:2f:7d:dc:8c:7d:e3:75:f0:ea:4b:
                    20:20:25:a1:22:e5:0d:14:b9:5f:40:67:4f:76:91:eb:
                    b9:8a:41:cc:f5:8e:12:98:e8:35:3c:23:3e:79:80:4a:
                    a6:e1:08:7b:c8:dd:5c:ca:23:f2:e3:38:c2:0b:5e:71:
                    26:ac:c8:cc:ec:8d:3f:d9:ce:9b:58:95:07:ee:42:90:
                    2f:ea:4d:c1:35:a8:98:47:58:60:8c:79:7f:29:dd:7b:
                    5c:1a:c2:02:7d:0e:ba:bf:a5:71:7a:99:ed:a5:b5:d3:
                    e4:b0:4e:d8:9f:48:e4:84:54:e2:70:5f:93:40:c2:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:65:59:d9:9b:14:f1:0b:3d:91:00:47:2b:91:f5:76:
        6c:52:4e:c6:cc:7a:b3:bd:02:94:19:bf:4a:09:0d:4b:
        74:0d:ec:da:96:c4:12:22:c3:ab:4b:83:ed:25:5d:f7:
        33:55:38:32:ab:ff:38:13:51:2a:02:8f:f0:d0:05:ed:
        d0:82:44:f8:b2:c2:da:f8:e1:29:c1:3f:4a:20:1a:ba:
        47:e5:05:f3:fe:39:4f:d3:b7:52:3e:ef:36:e1:c2:32:
        2e:dc:59:aa:c2:c2:f0:7e:2f:4e:0c:dc:f4:d4:8f:b9:
        78:14:39:00:6d:10:e2:a6:e2:c0:4c:60:44:44:19:66:
        69:ca:24:27:ba:05:9e:20:9a:bf:46:0c:44:b0:94:64:
        65:32:ec:b5:0e:a5:88:19:8b:07:78:b6:40:5e:a5:d6:
        8c:b3:a2:84:d0:d1:bf:42:f3:3e:a2:05:e8:cc:3d:c5:
        ec:c8:53:c7:b0:a2:e3:f3:c9:9b:6c:aa:35:43:2a:7d:
        33:68:67:1a:0d:e3:91:40:9c:3b:6f:3a:3b:98:5f:0e:
        01:c2:4c:21:b3:98:9a:f4:a9:b7:fe:a3:95:54:c8:1f:
        b5:f0:1c:75:bd:ef:4f:ff:48:0a:84:4e:b7:7c:ab:09:
        2b:c8:37:0a:71:2f:8b:05:ac:1d:5e:b3:0c:d9:8f:1d
    Fingerprint (SHA-256):
        47:94:18:4B:AF:AD:8B:0F:42:B0:8D:83:AC:05:09:27:C1:E6:0B:34:45:2A:7E:71:4E:17:89:4C:C3:86:45:A4
    Fingerprint (SHA1):
        BF:2A:37:6F:8A:87:16:63:74:4F:CF:A5:E9:D4:DA:3E:49:5E:65:7A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12191: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #12192: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121278 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12193: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #12194: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #12195: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121279 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12196: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #12197: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #12198: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12199: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 510121280   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12200: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12201: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #12202: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12203: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 510121281   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12204: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12205: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #12206: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12207: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 510121282 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #12208: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12209: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 510121283 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #12210: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12211: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #12212: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12213: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12214: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510121284   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12215: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12216: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12217: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12218: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510121285   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12219: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12220: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12221: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12222: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121286   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12223: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12224: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12225: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12226: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510121287   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12227: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12228: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12229: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121278 (0x1e67d53e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:17:31 2017
            Not After : Tue May 10 12:17:31 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:27:75:b8:30:5c:cb:79:be:0e:1e:a0:a9:b7:cc:09:
                    d5:ed:60:36:92:ec:97:27:b1:c2:10:ba:2c:cd:ef:ba:
                    e6:24:fd:e9:c9:27:2e:48:f4:3c:ac:8f:53:21:ec:78:
                    63:e4:1a:85:92:d0:76:d7:3b:75:26:4c:87:e7:8c:d1:
                    af:8c:0a:cd:e3:0b:d0:5b:e8:06:0e:d4:aa:f6:8e:ab:
                    fc:c7:ce:b3:2f:55:ae:e3:9e:9a:65:40:4b:5d:eb:20:
                    79:04:82:3e:8e:93:fc:92:6c:92:e8:fe:06:96:f7:d9:
                    d7:43:bf:82:34:d2:6c:44:97:26:9b:38:ed:b4:28:8e:
                    ef:ea:05:36:1a:f2:ce:ce:ee:c4:9f:41:99:63:fd:a5:
                    6c:18:2d:11:0c:f8:fe:9c:bd:6b:db:a8:40:94:50:c6:
                    c8:83:6d:62:0c:13:5b:b0:fd:35:7f:3f:93:5b:ae:7c:
                    07:0e:d0:73:57:45:8d:88:fa:40:54:8b:de:2b:23:38:
                    b0:c2:99:45:29:74:c7:54:ed:60:80:fe:bf:af:fc:64:
                    be:d5:ed:60:7b:68:7c:75:35:db:17:70:94:29:a7:0a:
                    50:d7:1e:30:8b:58:cb:5c:c9:2a:d5:a6:cc:d3:49:db:
                    f0:36:bc:13:dc:17:08:4c:7a:b5:69:75:85:cb:2d:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:08:87:95:0c:0a:65:16:0f:bc:5a:38:5d:be:08:9e:
        39:51:03:c6:3b:1f:a7:99:f6:d2:ae:34:01:51:3d:7f:
        c5:f8:16:0b:87:3d:b1:3f:c1:2f:02:cc:0b:7f:21:1a:
        96:c8:6f:47:71:c7:72:e3:c9:87:9e:54:cf:0b:4b:dc:
        6c:e6:9b:c5:9f:34:06:ad:f3:73:42:b2:93:86:07:90:
        c3:e4:07:f7:fd:86:ac:60:39:c1:4d:f2:24:63:40:28:
        ec:cc:d8:59:5f:9f:92:f5:7f:d0:9d:45:9a:bc:75:e2:
        5a:25:3b:99:46:ef:03:72:25:fc:61:e7:dc:76:0d:3d:
        40:7e:f3:11:8f:68:90:85:3d:58:97:38:b8:62:5d:ff:
        53:f1:0e:c8:de:70:b4:ae:e5:c4:39:55:90:40:69:3b:
        1e:98:53:bc:47:f4:d0:8d:3f:76:be:25:ec:f4:4d:58:
        20:9b:26:b9:0b:13:bb:ee:47:3d:29:cc:2d:e1:0f:d4:
        83:23:37:31:89:18:49:d6:4e:33:88:04:f5:90:bc:b1:
        09:31:02:31:8c:3c:f9:c1:f4:08:3a:39:6b:6b:73:58:
        2c:c8:57:50:2a:e6:0c:90:a3:af:b7:2e:29:c1:19:34:
        15:7a:ad:e9:e6:e8:eb:6e:c4:d1:82:6d:18:f1:10:fc
    Fingerprint (SHA-256):
        E9:45:2F:67:F8:44:75:A8:34:42:58:04:CE:45:06:05:14:1C:88:1B:02:90:E7:83:8A:8F:8E:AC:23:E6:82:39
    Fingerprint (SHA1):
        DA:D5:A9:2D:1B:B3:2F:EB:4F:EC:0C:68:DC:62:AD:A9:96:55:10:55
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #12230: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12231: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12232: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12233: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12234: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12235: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12236: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12237: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12238: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121279 (0x1e67d53f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:17:32 2017
            Not After : Tue May 10 12:17:32 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:25:dd:c1:ad:ba:b4:dd:d8:a1:49:1f:84:98:64:4a:
                    53:0b:db:c1:bb:68:24:5c:ed:ba:79:70:25:c9:53:83:
                    a7:eb:f9:eb:2b:65:0c:47:84:1e:9b:1d:c4:48:ce:28:
                    4e:7e:9b:b4:25:19:89:b6:08:d8:f9:67:21:27:b3:c9:
                    48:f8:89:a2:56:1c:99:e3:c9:b1:0f:7b:96:62:d9:41:
                    dd:ac:c5:b4:6b:1f:21:86:be:93:62:07:40:d0:f0:0e:
                    05:21:25:1b:8e:a9:1f:8a:68:80:9e:15:cf:c2:dd:e8:
                    2b:b2:a0:19:33:a1:6d:ca:28:f9:86:ae:3c:62:4e:e3:
                    ee:5c:1e:58:94:97:95:17:7c:5c:a2:b4:cb:d9:6e:9b:
                    b7:9c:8b:ac:c9:96:91:04:46:fb:f6:ed:77:2e:a9:8d:
                    8d:a8:ea:f4:8a:65:20:58:78:2a:b2:c4:15:25:b9:96:
                    40:78:49:f5:dd:f1:d7:95:3b:4a:1b:8d:07:7e:df:d7:
                    71:6b:18:7b:ec:19:41:cc:a7:54:42:19:40:bf:b0:44:
                    09:15:c1:ad:0a:e9:b3:a6:6f:bc:cd:8d:b8:91:1d:8c:
                    eb:52:bc:92:a6:3b:43:fc:b8:34:8e:f4:dc:e8:26:b5:
                    c5:4d:ce:4c:db:37:25:6c:4b:b0:df:0f:15:e0:22:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c9:f4:e1:32:4c:5c:e7:5b:95:ad:04:54:5c:69:a1:d5:
        9b:60:63:a0:34:42:4d:76:ec:3b:d2:ae:41:01:6e:2f:
        0f:d5:d5:a1:1a:cb:ef:a7:0a:47:b2:56:4e:5e:7c:05:
        0c:e2:2f:cf:82:41:d0:65:dd:a0:b4:2b:25:bc:aa:cd:
        6d:20:08:50:e9:18:8f:3e:b5:d7:2a:2f:11:75:14:bf:
        07:dd:ef:7e:6c:ab:0b:0c:3b:a8:c4:e9:fd:7b:c6:01:
        6b:59:8b:02:56:49:7b:36:31:60:6c:48:68:13:77:6d:
        12:3e:2a:45:ec:10:5d:a2:28:5f:1e:df:e4:da:48:0c:
        a6:7f:70:f5:3d:65:33:2b:36:ed:4e:a8:d2:93:22:b3:
        08:b6:0a:ee:f4:26:bb:9a:b1:1b:b0:62:8a:e9:1b:ab:
        14:00:70:09:fc:7c:29:b1:c7:ae:76:54:85:f0:5d:32:
        4d:bb:a3:bf:b7:e5:a3:67:78:77:ab:39:e7:83:71:1d:
        a2:b0:14:e3:90:55:55:48:25:7f:2f:7c:e8:a1:e1:0b:
        aa:74:c3:f9:b3:d6:43:f0:17:82:06:8b:ef:0e:ce:8c:
        7f:87:73:3b:ad:a3:e3:05:ba:d9:d8:6c:3b:33:cf:73:
        9b:12:5b:4f:de:4d:dd:40:cb:95:b0:6e:d3:bf:c4:28
    Fingerprint (SHA-256):
        40:3C:D2:A5:DD:40:9A:B7:73:7C:2D:AF:BF:48:CF:EC:44:D5:34:C4:2B:06:09:D3:E4:7B:6D:C8:1B:ED:50:0A
    Fingerprint (SHA1):
        32:3A:9C:18:7B:63:2B:D8:37:80:8B:AF:7C:1B:34:42:79:A2:15:F1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #12239: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12240: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12241: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12242: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12243: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12244: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12245: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #12246: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #12247: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #12248: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #12249: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #12250: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #12251: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #12252: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12253: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12254: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #12255: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #12256: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12257: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121288 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12258: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12259: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12260: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12261: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121289   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12262: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12263: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12264: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12265: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121290   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12266: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12267: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12268: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12269: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 510121291   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12270: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12271: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12272: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12273: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510121292   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12274: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12275: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #12276: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12277: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 510121293   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12278: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12279: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #12280: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12281: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 510121294   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12282: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12283: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #12284: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12285: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 510121295   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12286: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12287: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #12288: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12289: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 510121296   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12290: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12291: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12292: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121288 (0x1e67d548)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:17:46 2017
            Not After : Tue May 10 12:17:46 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    67:87:9b:5b:18:94:2c:92:da:90:dd:24:09:88:b8:76:
                    ca:10:a9:58:b2:b2:e4:dd:98:3f:eb:ea:a7:4b:de:16:
                    16:03:6c:4c:8e:fe:32:84:2f:50:f0:54:48:7f:ab:25:
                    be:33:43:1b:cd:54:5b:6e:4e:da:b7:4a:ef:18:de:7e:
                    5e:ee:5b:f8:57:2e:53:19:a1:97:22:8b:db:4b:a7:35:
                    81:b2:41:1a:1c:77:fe:b7:2b:1f:6f:eb:a5:16:19:38:
                    45:02:a8:df:91:c9:80:db:93:6c:48:cb:1a:48:45:e8:
                    57:41:bb:27:67:85:e0:b2:00:5f:b0:c8:87:2e:43:be:
                    cf:d0:c5:78:03:c3:67:bf:7e:f6:85:20:59:95:b6:32:
                    44:9f:71:db:c3:6d:3f:2e:c4:2c:1c:45:63:9b:d3:8a:
                    ca:e6:bf:ae:f0:e6:c9:b6:76:5a:61:74:99:98:9c:dc:
                    70:a4:53:34:12:47:34:c8:b0:7a:37:42:d3:f2:f6:6c:
                    c4:90:a8:99:f8:12:bb:f3:dc:f4:eb:bd:44:b7:9d:0a:
                    54:86:6b:1d:db:93:ed:26:d9:ae:e7:0b:fa:9c:8e:f6:
                    59:ba:35:1e:11:7c:4a:68:38:65:f6:51:c1:43:04:bf:
                    3e:d1:a8:73:ac:91:91:23:0c:c8:95:ac:95:5c:e1:c9
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:4a:1b:30:93:1f:e6:9e:16:ed:b9:88:27:
        4b:3d:1e:b3:fc:05:c4:c0:ac:0b:be:71:48:36:31:20:
        02:1c:29:39:cb:a9:86:ff:24:8a:99:8c:ff:36:80:13:
        8e:65:85:cc:ac:53:d9:58:a3:b8:38:bf:68:2f
    Fingerprint (SHA-256):
        66:61:E9:B2:9C:8D:C0:61:D5:09:B1:5C:3F:06:51:22:3E:ED:C2:60:E2:E5:F7:9B:29:EC:15:CC:D7:A5:72:1B
    Fingerprint (SHA1):
        3A:D3:D7:B6:59:1B:24:47:BD:38:12:21:4F:A0:AE:23:12:7A:E1:9E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12293: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121288 (0x1e67d548)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:17:46 2017
            Not After : Tue May 10 12:17:46 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    67:87:9b:5b:18:94:2c:92:da:90:dd:24:09:88:b8:76:
                    ca:10:a9:58:b2:b2:e4:dd:98:3f:eb:ea:a7:4b:de:16:
                    16:03:6c:4c:8e:fe:32:84:2f:50:f0:54:48:7f:ab:25:
                    be:33:43:1b:cd:54:5b:6e:4e:da:b7:4a:ef:18:de:7e:
                    5e:ee:5b:f8:57:2e:53:19:a1:97:22:8b:db:4b:a7:35:
                    81:b2:41:1a:1c:77:fe:b7:2b:1f:6f:eb:a5:16:19:38:
                    45:02:a8:df:91:c9:80:db:93:6c:48:cb:1a:48:45:e8:
                    57:41:bb:27:67:85:e0:b2:00:5f:b0:c8:87:2e:43:be:
                    cf:d0:c5:78:03:c3:67:bf:7e:f6:85:20:59:95:b6:32:
                    44:9f:71:db:c3:6d:3f:2e:c4:2c:1c:45:63:9b:d3:8a:
                    ca:e6:bf:ae:f0:e6:c9:b6:76:5a:61:74:99:98:9c:dc:
                    70:a4:53:34:12:47:34:c8:b0:7a:37:42:d3:f2:f6:6c:
                    c4:90:a8:99:f8:12:bb:f3:dc:f4:eb:bd:44:b7:9d:0a:
                    54:86:6b:1d:db:93:ed:26:d9:ae:e7:0b:fa:9c:8e:f6:
                    59:ba:35:1e:11:7c:4a:68:38:65:f6:51:c1:43:04:bf:
                    3e:d1:a8:73:ac:91:91:23:0c:c8:95:ac:95:5c:e1:c9
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:4a:1b:30:93:1f:e6:9e:16:ed:b9:88:27:
        4b:3d:1e:b3:fc:05:c4:c0:ac:0b:be:71:48:36:31:20:
        02:1c:29:39:cb:a9:86:ff:24:8a:99:8c:ff:36:80:13:
        8e:65:85:cc:ac:53:d9:58:a3:b8:38:bf:68:2f
    Fingerprint (SHA-256):
        66:61:E9:B2:9C:8D:C0:61:D5:09:B1:5C:3F:06:51:22:3E:ED:C2:60:E2:E5:F7:9B:29:EC:15:CC:D7:A5:72:1B
    Fingerprint (SHA1):
        3A:D3:D7:B6:59:1B:24:47:BD:38:12:21:4F:A0:AE:23:12:7A:E1:9E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #12294: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121288 (0x1e67d548)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:17:46 2017
            Not After : Tue May 10 12:17:46 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    67:87:9b:5b:18:94:2c:92:da:90:dd:24:09:88:b8:76:
                    ca:10:a9:58:b2:b2:e4:dd:98:3f:eb:ea:a7:4b:de:16:
                    16:03:6c:4c:8e:fe:32:84:2f:50:f0:54:48:7f:ab:25:
                    be:33:43:1b:cd:54:5b:6e:4e:da:b7:4a:ef:18:de:7e:
                    5e:ee:5b:f8:57:2e:53:19:a1:97:22:8b:db:4b:a7:35:
                    81:b2:41:1a:1c:77:fe:b7:2b:1f:6f:eb:a5:16:19:38:
                    45:02:a8:df:91:c9:80:db:93:6c:48:cb:1a:48:45:e8:
                    57:41:bb:27:67:85:e0:b2:00:5f:b0:c8:87:2e:43:be:
                    cf:d0:c5:78:03:c3:67:bf:7e:f6:85:20:59:95:b6:32:
                    44:9f:71:db:c3:6d:3f:2e:c4:2c:1c:45:63:9b:d3:8a:
                    ca:e6:bf:ae:f0:e6:c9:b6:76:5a:61:74:99:98:9c:dc:
                    70:a4:53:34:12:47:34:c8:b0:7a:37:42:d3:f2:f6:6c:
                    c4:90:a8:99:f8:12:bb:f3:dc:f4:eb:bd:44:b7:9d:0a:
                    54:86:6b:1d:db:93:ed:26:d9:ae:e7:0b:fa:9c:8e:f6:
                    59:ba:35:1e:11:7c:4a:68:38:65:f6:51:c1:43:04:bf:
                    3e:d1:a8:73:ac:91:91:23:0c:c8:95:ac:95:5c:e1:c9
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:4a:1b:30:93:1f:e6:9e:16:ed:b9:88:27:
        4b:3d:1e:b3:fc:05:c4:c0:ac:0b:be:71:48:36:31:20:
        02:1c:29:39:cb:a9:86:ff:24:8a:99:8c:ff:36:80:13:
        8e:65:85:cc:ac:53:d9:58:a3:b8:38:bf:68:2f
    Fingerprint (SHA-256):
        66:61:E9:B2:9C:8D:C0:61:D5:09:B1:5C:3F:06:51:22:3E:ED:C2:60:E2:E5:F7:9B:29:EC:15:CC:D7:A5:72:1B
    Fingerprint (SHA1):
        3A:D3:D7:B6:59:1B:24:47:BD:38:12:21:4F:A0:AE:23:12:7A:E1:9E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #12295: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121288 (0x1e67d548)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:17:46 2017
            Not After : Tue May 10 12:17:46 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    67:87:9b:5b:18:94:2c:92:da:90:dd:24:09:88:b8:76:
                    ca:10:a9:58:b2:b2:e4:dd:98:3f:eb:ea:a7:4b:de:16:
                    16:03:6c:4c:8e:fe:32:84:2f:50:f0:54:48:7f:ab:25:
                    be:33:43:1b:cd:54:5b:6e:4e:da:b7:4a:ef:18:de:7e:
                    5e:ee:5b:f8:57:2e:53:19:a1:97:22:8b:db:4b:a7:35:
                    81:b2:41:1a:1c:77:fe:b7:2b:1f:6f:eb:a5:16:19:38:
                    45:02:a8:df:91:c9:80:db:93:6c:48:cb:1a:48:45:e8:
                    57:41:bb:27:67:85:e0:b2:00:5f:b0:c8:87:2e:43:be:
                    cf:d0:c5:78:03:c3:67:bf:7e:f6:85:20:59:95:b6:32:
                    44:9f:71:db:c3:6d:3f:2e:c4:2c:1c:45:63:9b:d3:8a:
                    ca:e6:bf:ae:f0:e6:c9:b6:76:5a:61:74:99:98:9c:dc:
                    70:a4:53:34:12:47:34:c8:b0:7a:37:42:d3:f2:f6:6c:
                    c4:90:a8:99:f8:12:bb:f3:dc:f4:eb:bd:44:b7:9d:0a:
                    54:86:6b:1d:db:93:ed:26:d9:ae:e7:0b:fa:9c:8e:f6:
                    59:ba:35:1e:11:7c:4a:68:38:65:f6:51:c1:43:04:bf:
                    3e:d1:a8:73:ac:91:91:23:0c:c8:95:ac:95:5c:e1:c9
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:4a:1b:30:93:1f:e6:9e:16:ed:b9:88:27:
        4b:3d:1e:b3:fc:05:c4:c0:ac:0b:be:71:48:36:31:20:
        02:1c:29:39:cb:a9:86:ff:24:8a:99:8c:ff:36:80:13:
        8e:65:85:cc:ac:53:d9:58:a3:b8:38:bf:68:2f
    Fingerprint (SHA-256):
        66:61:E9:B2:9C:8D:C0:61:D5:09:B1:5C:3F:06:51:22:3E:ED:C2:60:E2:E5:F7:9B:29:EC:15:CC:D7:A5:72:1B
    Fingerprint (SHA1):
        3A:D3:D7:B6:59:1B:24:47:BD:38:12:21:4F:A0:AE:23:12:7A:E1:9E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #12296: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12297: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12298: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12299: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #12300: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12301: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12302: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12303: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12304: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12305: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12306: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12307: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #12308: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12309: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12310: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12311: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #12312: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12313: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12314: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12315: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12316: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12317: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12318: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12319: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #12320: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12321: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12322: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12323: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510121802Z
nextupdate=20180510121802Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:18:02 2017
    Next Update: Thu May 10 12:18:02 2018
    CRL Extensions:
chains.sh: #12324: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121802Z
nextupdate=20180510121802Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:18:02 2017
    Next Update: Thu May 10 12:18:02 2018
    CRL Extensions:
chains.sh: #12325: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510121802Z
nextupdate=20180510121802Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:18:02 2017
    Next Update: Thu May 10 12:18:02 2018
    CRL Extensions:
chains.sh: #12326: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510121803Z
nextupdate=20180510121803Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:18:03 2017
    Next Update: Thu May 10 12:18:03 2018
    CRL Extensions:
chains.sh: #12327: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510121804Z
addcert 14 20170510121804Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:18:04 2017
    Next Update: Thu May 10 12:18:02 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed May 10 12:18:04 2017
    CRL Extensions:
chains.sh: #12328: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121805Z
addcert 15 20170510121805Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:18:05 2017
    Next Update: Thu May 10 12:18:02 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed May 10 12:18:05 2017
    CRL Extensions:
chains.sh: #12329: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12330: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12331: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #12332: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #12333: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #12334: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #12335: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #12336: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #12337: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #12338: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:17:55 2017
            Not After : Tue May 10 12:17:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:52:a9:0e:a6:61:2e:e0:3c:43:97:ec:b1:73:c2:8c:
                    17:a1:10:b3:de:0c:38:ec:45:e1:44:e8:f4:2c:2e:ae:
                    1c:ad:4c:14:f4:a9:0b:66:6b:99:ff:63:30:92:40:70:
                    1a:26:b7:3c:66:b7:ef:89:82:89:d6:a5:0e:94:a0:ce:
                    cd:6a:9e:57:35:83:19:d6:1d:e3:2c:90:bf:90:22:6a:
                    bc:93:a5:50:47:6c:87:79:58:70:b3:03:33:8f:13:46:
                    e2:ac:5a:8e:36:27:a8:18:03:fc:f9:a6:c5:1b:51:82:
                    3d:57:17:17:07:14:d9:c9:c6:1f:1a:ea:20:bc:50:47:
                    dc:fb:04:31:60:44:64:3f:31:35:36:44:5e:33:43:8f:
                    64:01:3b:98:47:77:25:99:a1:b6:e0:ba:f6:4e:55:e3:
                    cb:9d:e6:b3:38:78:8a:a7:f1:42:aa:81:6d:94:02:68:
                    af:a9:57:1f:49:35:81:7d:be:c8:e6:35:6c:4d:79:25:
                    93:09:e9:6f:e4:4c:93:97:b7:b7:e6:8b:9e:7d:62:5b:
                    92:e1:a3:3e:78:88:eb:6d:73:9f:87:0a:89:b5:c9:00:
                    b5:88:05:52:ba:e4:30:ac:22:2a:8d:9a:02:95:cb:86:
                    0c:a8:35:71:e1:43:40:0b:97:ba:81:8c:07:68:93:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a8:87:7a:27:28:03:b2:cd:9a:a8:58:af:53:0a:f7:0e:
        44:17:48:31:5f:a0:c5:3e:75:6b:30:ac:3e:b2:92:5b:
        e8:fb:da:2c:c3:5c:86:6c:d4:38:f2:72:f8:86:05:e7:
        f3:aa:ec:75:9f:89:3e:3b:86:98:5c:fb:d0:2a:98:f8:
        dd:b5:79:53:00:55:ce:24:6b:15:cf:3c:46:a0:d1:41:
        4e:cc:00:43:02:90:6a:7d:a3:63:5a:af:01:00:24:e1:
        a8:63:27:0c:7b:f7:59:1d:f5:fc:90:6b:e1:72:b9:bf:
        3e:a1:21:b4:ba:1b:4b:7b:c4:1a:b4:ec:19:c4:c1:cb:
        8c:43:43:80:1f:00:62:07:d1:5b:ce:89:b2:b8:5e:ef:
        5b:af:e6:5c:ed:81:f8:5c:87:02:df:5f:9c:b9:16:ba:
        45:b1:52:b0:c8:ea:e9:ad:fc:4c:55:84:c2:c7:2f:dc:
        3e:31:c9:7d:3d:7a:e1:d4:77:3c:23:11:8e:c7:32:d1:
        9b:37:c9:fd:23:c4:63:e6:24:3d:d6:30:07:c4:a8:05:
        2f:30:e3:0a:01:b9:f4:0e:b2:18:71:b3:f7:ff:f6:44:
        11:c0:b0:ed:f3:3e:45:38:c0:34:e1:ef:4e:cb:02:cc:
        d2:f2:82:e9:1a:89:c2:f1:76:28:bf:6b:99:23:30:22
    Fingerprint (SHA-256):
        7A:E8:03:BA:08:D4:FB:74:A6:A3:3D:8D:68:94:C5:E6:58:E4:FF:3C:17:B8:2D:39:BA:68:94:73:AE:24:3C:91
    Fingerprint (SHA1):
        CE:43:95:45:E2:3A:92:D4:10:14:CF:C0:B7:F2:81:98:6F:7F:C2:27
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12339: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12340: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:17:55 2017
            Not After : Tue May 10 12:17:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:52:a9:0e:a6:61:2e:e0:3c:43:97:ec:b1:73:c2:8c:
                    17:a1:10:b3:de:0c:38:ec:45:e1:44:e8:f4:2c:2e:ae:
                    1c:ad:4c:14:f4:a9:0b:66:6b:99:ff:63:30:92:40:70:
                    1a:26:b7:3c:66:b7:ef:89:82:89:d6:a5:0e:94:a0:ce:
                    cd:6a:9e:57:35:83:19:d6:1d:e3:2c:90:bf:90:22:6a:
                    bc:93:a5:50:47:6c:87:79:58:70:b3:03:33:8f:13:46:
                    e2:ac:5a:8e:36:27:a8:18:03:fc:f9:a6:c5:1b:51:82:
                    3d:57:17:17:07:14:d9:c9:c6:1f:1a:ea:20:bc:50:47:
                    dc:fb:04:31:60:44:64:3f:31:35:36:44:5e:33:43:8f:
                    64:01:3b:98:47:77:25:99:a1:b6:e0:ba:f6:4e:55:e3:
                    cb:9d:e6:b3:38:78:8a:a7:f1:42:aa:81:6d:94:02:68:
                    af:a9:57:1f:49:35:81:7d:be:c8:e6:35:6c:4d:79:25:
                    93:09:e9:6f:e4:4c:93:97:b7:b7:e6:8b:9e:7d:62:5b:
                    92:e1:a3:3e:78:88:eb:6d:73:9f:87:0a:89:b5:c9:00:
                    b5:88:05:52:ba:e4:30:ac:22:2a:8d:9a:02:95:cb:86:
                    0c:a8:35:71:e1:43:40:0b:97:ba:81:8c:07:68:93:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a8:87:7a:27:28:03:b2:cd:9a:a8:58:af:53:0a:f7:0e:
        44:17:48:31:5f:a0:c5:3e:75:6b:30:ac:3e:b2:92:5b:
        e8:fb:da:2c:c3:5c:86:6c:d4:38:f2:72:f8:86:05:e7:
        f3:aa:ec:75:9f:89:3e:3b:86:98:5c:fb:d0:2a:98:f8:
        dd:b5:79:53:00:55:ce:24:6b:15:cf:3c:46:a0:d1:41:
        4e:cc:00:43:02:90:6a:7d:a3:63:5a:af:01:00:24:e1:
        a8:63:27:0c:7b:f7:59:1d:f5:fc:90:6b:e1:72:b9:bf:
        3e:a1:21:b4:ba:1b:4b:7b:c4:1a:b4:ec:19:c4:c1:cb:
        8c:43:43:80:1f:00:62:07:d1:5b:ce:89:b2:b8:5e:ef:
        5b:af:e6:5c:ed:81:f8:5c:87:02:df:5f:9c:b9:16:ba:
        45:b1:52:b0:c8:ea:e9:ad:fc:4c:55:84:c2:c7:2f:dc:
        3e:31:c9:7d:3d:7a:e1:d4:77:3c:23:11:8e:c7:32:d1:
        9b:37:c9:fd:23:c4:63:e6:24:3d:d6:30:07:c4:a8:05:
        2f:30:e3:0a:01:b9:f4:0e:b2:18:71:b3:f7:ff:f6:44:
        11:c0:b0:ed:f3:3e:45:38:c0:34:e1:ef:4e:cb:02:cc:
        d2:f2:82:e9:1a:89:c2:f1:76:28:bf:6b:99:23:30:22
    Fingerprint (SHA-256):
        7A:E8:03:BA:08:D4:FB:74:A6:A3:3D:8D:68:94:C5:E6:58:E4:FF:3C:17:B8:2D:39:BA:68:94:73:AE:24:3C:91
    Fingerprint (SHA1):
        CE:43:95:45:E2:3A:92:D4:10:14:CF:C0:B7:F2:81:98:6F:7F:C2:27
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12341: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12342: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12343: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121297 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12344: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12345: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #12346: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12347: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 510121298   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12348: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12349: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12350: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510121069.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12351: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510121043.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12352: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12353: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #12354: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510121069.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12355: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 510121299   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12356: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12357: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12358: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510121069.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12359: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510121044.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12360: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12361: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #12362: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12363: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 510121300   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12364: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12365: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12366: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510121069.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12367: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510121045.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12368: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12369: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12370: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0-510121069.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12371: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9333/localhost-24947-CA0Root-510121046.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12372: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12373: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510121816Z
nextupdate=20180510121816Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:18:16 2017
    Next Update: Thu May 10 12:18:16 2018
    CRL Extensions:
chains.sh: #12374: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121817Z
nextupdate=20180510121817Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:18:17 2017
    Next Update: Thu May 10 12:18:17 2018
    CRL Extensions:
chains.sh: #12375: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510121817Z
nextupdate=20180510121817Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:18:17 2017
    Next Update: Thu May 10 12:18:17 2018
    CRL Extensions:
chains.sh: #12376: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510121817Z
nextupdate=20180510121817Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:18:17 2017
    Next Update: Thu May 10 12:18:17 2018
    CRL Extensions:
chains.sh: #12377: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121818Z
addcert 20 20170510121818Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:18:18 2017
    Next Update: Thu May 10 12:18:17 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:18:18 2017
    CRL Extensions:
chains.sh: #12378: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121819Z
addcert 40 20170510121819Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:18:19 2017
    Next Update: Thu May 10 12:18:17 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:18:18 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 12:18:19 2017
    CRL Extensions:
chains.sh: #12379: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12380: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12381: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #12382: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121297 (0x1e67d551)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:18:08 2017
            Not After : Tue May 10 12:18:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:63:48:ca:62:75:d0:b7:cc:e0:c7:27:7b:e7:76:c8:
                    53:f4:92:e0:a2:ca:8c:8a:26:42:8f:ec:ab:2c:96:67:
                    44:92:1e:16:f4:01:8a:9f:c2:81:2b:e2:29:b0:41:06:
                    3e:2f:73:f9:eb:3f:21:6a:c8:08:1e:4f:86:82:8d:97:
                    88:3b:53:d4:b1:59:d8:87:64:a1:04:96:81:8d:3f:18:
                    76:37:a4:17:2a:32:aa:f8:a1:e7:00:37:28:c7:15:02:
                    75:a0:e1:69:01:ca:e6:4e:4c:5a:00:ae:37:72:4e:0f:
                    a7:ec:f0:89:15:56:e5:c4:06:ad:3e:3c:f9:ea:ea:1e:
                    ca:94:6c:8b:b1:3d:35:46:03:ec:cb:5b:ad:af:07:44:
                    ce:d7:27:50:30:97:f4:21:d3:89:61:a1:e2:c3:e1:84:
                    c1:4e:8d:85:ed:e6:06:cc:77:a4:79:e0:84:c0:71:e7:
                    e3:d6:01:0d:50:02:89:fd:8f:47:2c:33:25:da:64:fa:
                    d8:cc:15:4e:43:2d:d5:1b:00:64:e1:38:22:26:32:fe:
                    1c:1f:51:f0:33:ea:15:c0:27:b4:cd:02:64:33:62:9a:
                    cc:fb:ee:dc:8f:34:12:98:09:df:5d:2c:0c:2d:4f:4f:
                    da:59:56:1f:20:86:0c:cd:f3:e5:e0:e3:ea:15:72:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:1d:db:5b:98:74:5f:29:2e:ae:95:c6:49:29:2c:09:
        fe:22:fb:b1:15:85:c4:ee:b5:05:f8:0c:aa:e4:59:99:
        18:f3:d0:2a:db:4d:de:13:b6:8c:9a:61:1d:fe:90:3f:
        f9:88:20:fe:b0:d8:a2:a8:63:24:bb:10:0e:f2:0d:d4:
        99:c0:41:aa:4e:6c:2a:1e:60:5a:ab:61:17:56:0a:c9:
        be:da:90:d7:89:58:00:11:43:b7:dc:b4:82:9a:7f:d1:
        44:4e:fa:9c:e2:48:be:6e:d8:e4:1e:9d:ba:09:fe:fb:
        a2:8f:28:c5:a8:bd:7e:ea:e5:0a:29:69:6f:ac:16:dd:
        d6:bb:16:ba:32:92:fc:97:c5:83:5b:ac:02:50:0d:3a:
        a1:30:c9:f8:63:34:7d:9c:a3:67:75:5a:43:3f:03:67:
        bc:82:94:f1:c3:4d:36:c7:a3:97:a3:1a:14:07:30:4d:
        d0:7d:b7:cb:a7:9d:14:9e:fd:23:dc:f5:8b:dd:91:f8:
        c4:6b:81:15:73:c8:17:48:07:7d:9c:a3:7a:64:ea:6d:
        c7:17:56:8f:e8:d7:50:2e:23:e3:04:5d:fa:f6:7a:b4:
        97:ab:5b:eb:df:32:2a:fa:26:fd:ff:89:f2:20:2d:1e:
        3f:4d:36:20:8c:3a:2a:7b:9f:ec:00:4e:d8:1a:75:5d
    Fingerprint (SHA-256):
        B7:45:70:82:EB:14:DC:79:C7:80:EC:FD:93:6C:D8:4C:C2:05:60:98:9C:B4:FC:FF:1A:62:A9:BC:97:96:78:58
    Fingerprint (SHA1):
        E4:39:D3:5E:27:29:49:9C:94:FA:0A:8E:D5:B3:99:83:33:52:5E:C5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12383: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12384: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121297 (0x1e67d551)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:18:08 2017
            Not After : Tue May 10 12:18:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:63:48:ca:62:75:d0:b7:cc:e0:c7:27:7b:e7:76:c8:
                    53:f4:92:e0:a2:ca:8c:8a:26:42:8f:ec:ab:2c:96:67:
                    44:92:1e:16:f4:01:8a:9f:c2:81:2b:e2:29:b0:41:06:
                    3e:2f:73:f9:eb:3f:21:6a:c8:08:1e:4f:86:82:8d:97:
                    88:3b:53:d4:b1:59:d8:87:64:a1:04:96:81:8d:3f:18:
                    76:37:a4:17:2a:32:aa:f8:a1:e7:00:37:28:c7:15:02:
                    75:a0:e1:69:01:ca:e6:4e:4c:5a:00:ae:37:72:4e:0f:
                    a7:ec:f0:89:15:56:e5:c4:06:ad:3e:3c:f9:ea:ea:1e:
                    ca:94:6c:8b:b1:3d:35:46:03:ec:cb:5b:ad:af:07:44:
                    ce:d7:27:50:30:97:f4:21:d3:89:61:a1:e2:c3:e1:84:
                    c1:4e:8d:85:ed:e6:06:cc:77:a4:79:e0:84:c0:71:e7:
                    e3:d6:01:0d:50:02:89:fd:8f:47:2c:33:25:da:64:fa:
                    d8:cc:15:4e:43:2d:d5:1b:00:64:e1:38:22:26:32:fe:
                    1c:1f:51:f0:33:ea:15:c0:27:b4:cd:02:64:33:62:9a:
                    cc:fb:ee:dc:8f:34:12:98:09:df:5d:2c:0c:2d:4f:4f:
                    da:59:56:1f:20:86:0c:cd:f3:e5:e0:e3:ea:15:72:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:1d:db:5b:98:74:5f:29:2e:ae:95:c6:49:29:2c:09:
        fe:22:fb:b1:15:85:c4:ee:b5:05:f8:0c:aa:e4:59:99:
        18:f3:d0:2a:db:4d:de:13:b6:8c:9a:61:1d:fe:90:3f:
        f9:88:20:fe:b0:d8:a2:a8:63:24:bb:10:0e:f2:0d:d4:
        99:c0:41:aa:4e:6c:2a:1e:60:5a:ab:61:17:56:0a:c9:
        be:da:90:d7:89:58:00:11:43:b7:dc:b4:82:9a:7f:d1:
        44:4e:fa:9c:e2:48:be:6e:d8:e4:1e:9d:ba:09:fe:fb:
        a2:8f:28:c5:a8:bd:7e:ea:e5:0a:29:69:6f:ac:16:dd:
        d6:bb:16:ba:32:92:fc:97:c5:83:5b:ac:02:50:0d:3a:
        a1:30:c9:f8:63:34:7d:9c:a3:67:75:5a:43:3f:03:67:
        bc:82:94:f1:c3:4d:36:c7:a3:97:a3:1a:14:07:30:4d:
        d0:7d:b7:cb:a7:9d:14:9e:fd:23:dc:f5:8b:dd:91:f8:
        c4:6b:81:15:73:c8:17:48:07:7d:9c:a3:7a:64:ea:6d:
        c7:17:56:8f:e8:d7:50:2e:23:e3:04:5d:fa:f6:7a:b4:
        97:ab:5b:eb:df:32:2a:fa:26:fd:ff:89:f2:20:2d:1e:
        3f:4d:36:20:8c:3a:2a:7b:9f:ec:00:4e:d8:1a:75:5d
    Fingerprint (SHA-256):
        B7:45:70:82:EB:14:DC:79:C7:80:EC:FD:93:6C:D8:4C:C2:05:60:98:9C:B4:FC:FF:1A:62:A9:BC:97:96:78:58
    Fingerprint (SHA1):
        E4:39:D3:5E:27:29:49:9C:94:FA:0A:8E:D5:B3:99:83:33:52:5E:C5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12385: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12386: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #12387: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121301 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12388: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #12389: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12390: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12391: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510121302   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12392: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12393: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12394: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12395: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121303   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12396: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12397: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12398: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12399: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 510121304   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12400: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12401: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #12402: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510121305 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12403: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #12404: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #12405: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12406: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 510121306   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12407: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12408: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12409: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12410: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 510121307   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12411: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12412: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #12413: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #12414: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #12415: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121301 (0x1e67d555)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:18:22 2017
            Not After : Tue May 10 12:18:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:a0:61:de:d3:66:da:eb:25:72:c7:aa:d0:29:ab:61:
                    51:d0:4e:ba:3d:fd:65:cc:ad:2e:67:58:bd:67:99:3f:
                    e9:a3:e5:b7:93:b8:f1:2e:25:e4:41:3c:5e:7d:7a:a3:
                    31:38:50:0e:2e:03:c8:df:e7:82:3c:3d:c3:a2:f6:0a:
                    d8:98:c9:3b:ee:90:61:d3:2d:d1:51:3c:79:02:ed:f0:
                    84:42:69:a5:05:bb:51:48:47:4a:a2:41:40:74:e4:e6:
                    93:f4:c3:68:c4:c1:02:45:e7:27:cb:86:4e:c3:fa:02:
                    f6:f6:bf:aa:55:5d:2c:3d:78:82:c7:04:52:a5:fb:29:
                    3c:98:74:80:32:1f:62:0f:4e:12:58:5b:b9:80:a6:85:
                    01:45:5d:6d:37:8a:87:b0:c3:fc:dd:25:a1:4d:8c:3c:
                    f2:86:c1:42:86:56:c4:f0:ec:26:39:55:20:b5:0b:5c:
                    b1:3a:1c:15:46:44:72:e6:a4:b4:40:a7:cb:66:99:59:
                    00:ce:20:0b:2a:4c:b1:2b:b9:2d:d3:ca:f2:f7:84:5f:
                    3f:91:16:38:99:e3:f7:6c:33:8d:ec:a9:f5:19:2a:9c:
                    a4:0b:4a:07:93:3a:54:a6:ba:48:10:e6:22:23:e0:e0:
                    d4:ca:fb:e4:0b:68:bd:b2:94:ae:25:a5:49:13:3d:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:cf:79:40:67:15:c8:9e:3a:d3:df:2d:db:3c:30:51:
        b6:4c:20:60:46:fc:b8:20:25:c1:b0:f5:a5:5a:56:18:
        aa:7f:c5:8e:78:69:4c:ad:fd:ac:06:cd:2b:b8:27:ad:
        2b:50:95:8c:73:50:cf:ad:c5:69:be:78:bd:0f:68:5f:
        a8:3c:94:0a:bb:52:42:b7:2b:97:7f:3f:be:ae:86:ab:
        e5:00:31:d0:18:81:63:7a:e6:df:ab:c8:10:ce:81:9c:
        34:21:9b:cb:75:44:74:df:1d:70:c5:53:99:2f:a3:da:
        df:57:62:d4:aa:31:88:a3:7e:31:d0:cd:96:99:1f:44:
        f7:07:83:cc:e2:1e:b5:4e:c2:65:d8:b7:3b:81:42:4b:
        ff:c1:c9:4a:f3:af:8a:48:de:3a:b8:10:3b:99:d9:96:
        e0:2b:cf:66:3a:83:44:1a:42:83:72:2b:5a:e2:a5:37:
        f0:c9:d5:df:85:49:59:26:8c:6a:06:d9:3b:5d:02:2f:
        51:97:2a:f1:6f:1e:aa:6e:35:15:c6:d3:bb:f1:1e:c8:
        7a:1a:62:b1:aa:61:3d:f4:17:9e:04:4c:0f:29:bb:eb:
        d4:99:ca:fd:56:9b:7e:de:fc:a7:59:ca:fa:04:df:60:
        4d:8d:8d:62:2e:28:c2:81:85:9c:71:b7:37:d6:d6:1c
    Fingerprint (SHA-256):
        98:3C:0E:43:93:42:6A:64:C3:5C:78:B4:17:FD:39:42:92:1C:F1:48:2C:0E:07:F7:97:F0:82:D1:48:BB:B2:0D
    Fingerprint (SHA1):
        5F:11:03:17:36:61:46:2D:C4:14:4F:32:E6:4C:85:40:24:77:E0:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12416: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121303 (0x1e67d557)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:18:24 2017
            Not After : Tue May 10 12:18:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:1d:be:72:94:a1:33:bb:9e:64:48:cc:7a:8e:93:ba:
                    ca:77:89:d6:44:99:9e:ce:9d:92:ad:c5:fa:07:d8:57:
                    d3:17:1f:f5:ef:e9:5f:d4:95:42:98:54:85:9c:9b:7d:
                    06:b6:21:c0:35:57:79:7c:9f:47:b0:b7:e9:69:3a:21:
                    28:e9:72:78:31:67:ad:bc:26:68:c4:a9:de:1e:c8:84:
                    86:01:d1:5a:92:28:33:bf:b9:cf:d2:31:7c:09:32:34:
                    c3:ee:dd:6c:9a:ae:b2:b7:8b:25:df:00:6e:94:0a:72:
                    a4:d2:b0:89:d3:8c:a4:87:46:8f:0a:06:44:0b:63:74:
                    cb:35:d8:95:72:ab:cf:a3:ba:8d:9d:4c:3d:b0:88:75:
                    20:c5:c1:54:b0:7f:93:82:82:c4:59:67:d0:5a:bd:42:
                    68:ff:42:3f:93:03:cb:73:a8:98:36:d2:99:83:bd:5d:
                    c3:1d:65:74:fc:75:a6:8a:5f:af:3f:63:eb:bf:5f:c8:
                    b3:74:27:60:e0:2e:7b:e9:f2:5c:19:36:ed:da:55:f0:
                    67:00:e9:d9:28:f6:ee:31:53:96:76:4a:6f:6f:a3:a7:
                    12:de:40:da:f1:d9:a4:ce:f6:68:ad:74:e5:68:fc:80:
                    4a:72:5e:25:74:36:ed:b4:c0:ba:a2:2a:fc:e2:0b:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:64:ce:b5:e1:46:9a:d1:8f:74:cb:07:c9:f5:4b:5f:
        db:4d:fe:3c:2f:08:3a:33:60:0d:6b:a4:6b:08:ae:f2:
        62:d8:34:39:d6:49:1f:a0:aa:ed:8d:04:fe:e0:76:a0:
        0f:aa:97:10:af:a3:38:5f:0b:32:2e:36:22:22:a3:d4:
        e9:f2:cd:76:80:8a:98:3b:b3:71:a8:2d:36:53:ec:6b:
        17:4f:bd:78:41:48:eb:13:e8:de:38:ac:94:ff:d2:b5:
        1f:1e:4a:84:8b:d4:3d:b8:24:d0:c0:22:75:e4:ae:d7:
        85:50:66:bc:e5:73:4e:99:0f:5d:34:c3:a1:e9:e6:c8:
        25:cf:a2:a8:cb:09:ca:03:3b:0a:40:27:1b:21:bb:0c:
        d2:08:7f:3b:c0:2f:95:92:3f:68:62:78:8a:93:3b:25:
        c5:5f:b9:32:0e:6a:5e:a9:48:82:f9:ad:0c:3a:89:3a:
        63:53:7d:85:3c:a7:7d:51:93:d2:64:e1:9b:39:76:f1:
        06:d4:23:6d:7e:a2:4b:57:2e:79:df:01:ad:98:f5:3b:
        d9:33:4c:7a:a5:4e:d9:24:e7:ae:f3:89:4c:32:1b:50:
        3e:f5:fa:75:e8:a6:60:e3:82:67:88:ec:f2:38:ed:a9:
        1e:a4:54:e4:d3:63:79:2b:47:13:e8:41:1e:2d:81:b6
    Fingerprint (SHA-256):
        61:78:AB:9E:9D:F1:98:AD:8B:07:28:EB:0A:61:B9:FA:80:EB:EF:73:92:08:A3:CA:63:A7:65:F5:55:32:FE:3D
    Fingerprint (SHA1):
        04:E3:11:2C:83:15:C5:54:DD:F1:46:AB:1C:D2:98:9B:10:85:F4:8C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12417: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121301 (0x1e67d555)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:18:22 2017
            Not After : Tue May 10 12:18:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:a0:61:de:d3:66:da:eb:25:72:c7:aa:d0:29:ab:61:
                    51:d0:4e:ba:3d:fd:65:cc:ad:2e:67:58:bd:67:99:3f:
                    e9:a3:e5:b7:93:b8:f1:2e:25:e4:41:3c:5e:7d:7a:a3:
                    31:38:50:0e:2e:03:c8:df:e7:82:3c:3d:c3:a2:f6:0a:
                    d8:98:c9:3b:ee:90:61:d3:2d:d1:51:3c:79:02:ed:f0:
                    84:42:69:a5:05:bb:51:48:47:4a:a2:41:40:74:e4:e6:
                    93:f4:c3:68:c4:c1:02:45:e7:27:cb:86:4e:c3:fa:02:
                    f6:f6:bf:aa:55:5d:2c:3d:78:82:c7:04:52:a5:fb:29:
                    3c:98:74:80:32:1f:62:0f:4e:12:58:5b:b9:80:a6:85:
                    01:45:5d:6d:37:8a:87:b0:c3:fc:dd:25:a1:4d:8c:3c:
                    f2:86:c1:42:86:56:c4:f0:ec:26:39:55:20:b5:0b:5c:
                    b1:3a:1c:15:46:44:72:e6:a4:b4:40:a7:cb:66:99:59:
                    00:ce:20:0b:2a:4c:b1:2b:b9:2d:d3:ca:f2:f7:84:5f:
                    3f:91:16:38:99:e3:f7:6c:33:8d:ec:a9:f5:19:2a:9c:
                    a4:0b:4a:07:93:3a:54:a6:ba:48:10:e6:22:23:e0:e0:
                    d4:ca:fb:e4:0b:68:bd:b2:94:ae:25:a5:49:13:3d:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:cf:79:40:67:15:c8:9e:3a:d3:df:2d:db:3c:30:51:
        b6:4c:20:60:46:fc:b8:20:25:c1:b0:f5:a5:5a:56:18:
        aa:7f:c5:8e:78:69:4c:ad:fd:ac:06:cd:2b:b8:27:ad:
        2b:50:95:8c:73:50:cf:ad:c5:69:be:78:bd:0f:68:5f:
        a8:3c:94:0a:bb:52:42:b7:2b:97:7f:3f:be:ae:86:ab:
        e5:00:31:d0:18:81:63:7a:e6:df:ab:c8:10:ce:81:9c:
        34:21:9b:cb:75:44:74:df:1d:70:c5:53:99:2f:a3:da:
        df:57:62:d4:aa:31:88:a3:7e:31:d0:cd:96:99:1f:44:
        f7:07:83:cc:e2:1e:b5:4e:c2:65:d8:b7:3b:81:42:4b:
        ff:c1:c9:4a:f3:af:8a:48:de:3a:b8:10:3b:99:d9:96:
        e0:2b:cf:66:3a:83:44:1a:42:83:72:2b:5a:e2:a5:37:
        f0:c9:d5:df:85:49:59:26:8c:6a:06:d9:3b:5d:02:2f:
        51:97:2a:f1:6f:1e:aa:6e:35:15:c6:d3:bb:f1:1e:c8:
        7a:1a:62:b1:aa:61:3d:f4:17:9e:04:4c:0f:29:bb:eb:
        d4:99:ca:fd:56:9b:7e:de:fc:a7:59:ca:fa:04:df:60:
        4d:8d:8d:62:2e:28:c2:81:85:9c:71:b7:37:d6:d6:1c
    Fingerprint (SHA-256):
        98:3C:0E:43:93:42:6A:64:C3:5C:78:B4:17:FD:39:42:92:1C:F1:48:2C:0E:07:F7:97:F0:82:D1:48:BB:B2:0D
    Fingerprint (SHA1):
        5F:11:03:17:36:61:46:2D:C4:14:4F:32:E6:4C:85:40:24:77:E0:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12418: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #12419: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121301 (0x1e67d555)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:18:22 2017
            Not After : Tue May 10 12:18:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:a0:61:de:d3:66:da:eb:25:72:c7:aa:d0:29:ab:61:
                    51:d0:4e:ba:3d:fd:65:cc:ad:2e:67:58:bd:67:99:3f:
                    e9:a3:e5:b7:93:b8:f1:2e:25:e4:41:3c:5e:7d:7a:a3:
                    31:38:50:0e:2e:03:c8:df:e7:82:3c:3d:c3:a2:f6:0a:
                    d8:98:c9:3b:ee:90:61:d3:2d:d1:51:3c:79:02:ed:f0:
                    84:42:69:a5:05:bb:51:48:47:4a:a2:41:40:74:e4:e6:
                    93:f4:c3:68:c4:c1:02:45:e7:27:cb:86:4e:c3:fa:02:
                    f6:f6:bf:aa:55:5d:2c:3d:78:82:c7:04:52:a5:fb:29:
                    3c:98:74:80:32:1f:62:0f:4e:12:58:5b:b9:80:a6:85:
                    01:45:5d:6d:37:8a:87:b0:c3:fc:dd:25:a1:4d:8c:3c:
                    f2:86:c1:42:86:56:c4:f0:ec:26:39:55:20:b5:0b:5c:
                    b1:3a:1c:15:46:44:72:e6:a4:b4:40:a7:cb:66:99:59:
                    00:ce:20:0b:2a:4c:b1:2b:b9:2d:d3:ca:f2:f7:84:5f:
                    3f:91:16:38:99:e3:f7:6c:33:8d:ec:a9:f5:19:2a:9c:
                    a4:0b:4a:07:93:3a:54:a6:ba:48:10:e6:22:23:e0:e0:
                    d4:ca:fb:e4:0b:68:bd:b2:94:ae:25:a5:49:13:3d:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:cf:79:40:67:15:c8:9e:3a:d3:df:2d:db:3c:30:51:
        b6:4c:20:60:46:fc:b8:20:25:c1:b0:f5:a5:5a:56:18:
        aa:7f:c5:8e:78:69:4c:ad:fd:ac:06:cd:2b:b8:27:ad:
        2b:50:95:8c:73:50:cf:ad:c5:69:be:78:bd:0f:68:5f:
        a8:3c:94:0a:bb:52:42:b7:2b:97:7f:3f:be:ae:86:ab:
        e5:00:31:d0:18:81:63:7a:e6:df:ab:c8:10:ce:81:9c:
        34:21:9b:cb:75:44:74:df:1d:70:c5:53:99:2f:a3:da:
        df:57:62:d4:aa:31:88:a3:7e:31:d0:cd:96:99:1f:44:
        f7:07:83:cc:e2:1e:b5:4e:c2:65:d8:b7:3b:81:42:4b:
        ff:c1:c9:4a:f3:af:8a:48:de:3a:b8:10:3b:99:d9:96:
        e0:2b:cf:66:3a:83:44:1a:42:83:72:2b:5a:e2:a5:37:
        f0:c9:d5:df:85:49:59:26:8c:6a:06:d9:3b:5d:02:2f:
        51:97:2a:f1:6f:1e:aa:6e:35:15:c6:d3:bb:f1:1e:c8:
        7a:1a:62:b1:aa:61:3d:f4:17:9e:04:4c:0f:29:bb:eb:
        d4:99:ca:fd:56:9b:7e:de:fc:a7:59:ca:fa:04:df:60:
        4d:8d:8d:62:2e:28:c2:81:85:9c:71:b7:37:d6:d6:1c
    Fingerprint (SHA-256):
        98:3C:0E:43:93:42:6A:64:C3:5C:78:B4:17:FD:39:42:92:1C:F1:48:2C:0E:07:F7:97:F0:82:D1:48:BB:B2:0D
    Fingerprint (SHA1):
        5F:11:03:17:36:61:46:2D:C4:14:4F:32:E6:4C:85:40:24:77:E0:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12420: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121303 (0x1e67d557)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:18:24 2017
            Not After : Tue May 10 12:18:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:1d:be:72:94:a1:33:bb:9e:64:48:cc:7a:8e:93:ba:
                    ca:77:89:d6:44:99:9e:ce:9d:92:ad:c5:fa:07:d8:57:
                    d3:17:1f:f5:ef:e9:5f:d4:95:42:98:54:85:9c:9b:7d:
                    06:b6:21:c0:35:57:79:7c:9f:47:b0:b7:e9:69:3a:21:
                    28:e9:72:78:31:67:ad:bc:26:68:c4:a9:de:1e:c8:84:
                    86:01:d1:5a:92:28:33:bf:b9:cf:d2:31:7c:09:32:34:
                    c3:ee:dd:6c:9a:ae:b2:b7:8b:25:df:00:6e:94:0a:72:
                    a4:d2:b0:89:d3:8c:a4:87:46:8f:0a:06:44:0b:63:74:
                    cb:35:d8:95:72:ab:cf:a3:ba:8d:9d:4c:3d:b0:88:75:
                    20:c5:c1:54:b0:7f:93:82:82:c4:59:67:d0:5a:bd:42:
                    68:ff:42:3f:93:03:cb:73:a8:98:36:d2:99:83:bd:5d:
                    c3:1d:65:74:fc:75:a6:8a:5f:af:3f:63:eb:bf:5f:c8:
                    b3:74:27:60:e0:2e:7b:e9:f2:5c:19:36:ed:da:55:f0:
                    67:00:e9:d9:28:f6:ee:31:53:96:76:4a:6f:6f:a3:a7:
                    12:de:40:da:f1:d9:a4:ce:f6:68:ad:74:e5:68:fc:80:
                    4a:72:5e:25:74:36:ed:b4:c0:ba:a2:2a:fc:e2:0b:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:64:ce:b5:e1:46:9a:d1:8f:74:cb:07:c9:f5:4b:5f:
        db:4d:fe:3c:2f:08:3a:33:60:0d:6b:a4:6b:08:ae:f2:
        62:d8:34:39:d6:49:1f:a0:aa:ed:8d:04:fe:e0:76:a0:
        0f:aa:97:10:af:a3:38:5f:0b:32:2e:36:22:22:a3:d4:
        e9:f2:cd:76:80:8a:98:3b:b3:71:a8:2d:36:53:ec:6b:
        17:4f:bd:78:41:48:eb:13:e8:de:38:ac:94:ff:d2:b5:
        1f:1e:4a:84:8b:d4:3d:b8:24:d0:c0:22:75:e4:ae:d7:
        85:50:66:bc:e5:73:4e:99:0f:5d:34:c3:a1:e9:e6:c8:
        25:cf:a2:a8:cb:09:ca:03:3b:0a:40:27:1b:21:bb:0c:
        d2:08:7f:3b:c0:2f:95:92:3f:68:62:78:8a:93:3b:25:
        c5:5f:b9:32:0e:6a:5e:a9:48:82:f9:ad:0c:3a:89:3a:
        63:53:7d:85:3c:a7:7d:51:93:d2:64:e1:9b:39:76:f1:
        06:d4:23:6d:7e:a2:4b:57:2e:79:df:01:ad:98:f5:3b:
        d9:33:4c:7a:a5:4e:d9:24:e7:ae:f3:89:4c:32:1b:50:
        3e:f5:fa:75:e8:a6:60:e3:82:67:88:ec:f2:38:ed:a9:
        1e:a4:54:e4:d3:63:79:2b:47:13:e8:41:1e:2d:81:b6
    Fingerprint (SHA-256):
        61:78:AB:9E:9D:F1:98:AD:8B:07:28:EB:0A:61:B9:FA:80:EB:EF:73:92:08:A3:CA:63:A7:65:F5:55:32:FE:3D
    Fingerprint (SHA1):
        04:E3:11:2C:83:15:C5:54:DD:F1:46:AB:1C:D2:98:9B:10:85:F4:8C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12421: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #12422: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #12423: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #12424: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121301 (0x1e67d555)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:18:22 2017
            Not After : Tue May 10 12:18:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:a0:61:de:d3:66:da:eb:25:72:c7:aa:d0:29:ab:61:
                    51:d0:4e:ba:3d:fd:65:cc:ad:2e:67:58:bd:67:99:3f:
                    e9:a3:e5:b7:93:b8:f1:2e:25:e4:41:3c:5e:7d:7a:a3:
                    31:38:50:0e:2e:03:c8:df:e7:82:3c:3d:c3:a2:f6:0a:
                    d8:98:c9:3b:ee:90:61:d3:2d:d1:51:3c:79:02:ed:f0:
                    84:42:69:a5:05:bb:51:48:47:4a:a2:41:40:74:e4:e6:
                    93:f4:c3:68:c4:c1:02:45:e7:27:cb:86:4e:c3:fa:02:
                    f6:f6:bf:aa:55:5d:2c:3d:78:82:c7:04:52:a5:fb:29:
                    3c:98:74:80:32:1f:62:0f:4e:12:58:5b:b9:80:a6:85:
                    01:45:5d:6d:37:8a:87:b0:c3:fc:dd:25:a1:4d:8c:3c:
                    f2:86:c1:42:86:56:c4:f0:ec:26:39:55:20:b5:0b:5c:
                    b1:3a:1c:15:46:44:72:e6:a4:b4:40:a7:cb:66:99:59:
                    00:ce:20:0b:2a:4c:b1:2b:b9:2d:d3:ca:f2:f7:84:5f:
                    3f:91:16:38:99:e3:f7:6c:33:8d:ec:a9:f5:19:2a:9c:
                    a4:0b:4a:07:93:3a:54:a6:ba:48:10:e6:22:23:e0:e0:
                    d4:ca:fb:e4:0b:68:bd:b2:94:ae:25:a5:49:13:3d:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:cf:79:40:67:15:c8:9e:3a:d3:df:2d:db:3c:30:51:
        b6:4c:20:60:46:fc:b8:20:25:c1:b0:f5:a5:5a:56:18:
        aa:7f:c5:8e:78:69:4c:ad:fd:ac:06:cd:2b:b8:27:ad:
        2b:50:95:8c:73:50:cf:ad:c5:69:be:78:bd:0f:68:5f:
        a8:3c:94:0a:bb:52:42:b7:2b:97:7f:3f:be:ae:86:ab:
        e5:00:31:d0:18:81:63:7a:e6:df:ab:c8:10:ce:81:9c:
        34:21:9b:cb:75:44:74:df:1d:70:c5:53:99:2f:a3:da:
        df:57:62:d4:aa:31:88:a3:7e:31:d0:cd:96:99:1f:44:
        f7:07:83:cc:e2:1e:b5:4e:c2:65:d8:b7:3b:81:42:4b:
        ff:c1:c9:4a:f3:af:8a:48:de:3a:b8:10:3b:99:d9:96:
        e0:2b:cf:66:3a:83:44:1a:42:83:72:2b:5a:e2:a5:37:
        f0:c9:d5:df:85:49:59:26:8c:6a:06:d9:3b:5d:02:2f:
        51:97:2a:f1:6f:1e:aa:6e:35:15:c6:d3:bb:f1:1e:c8:
        7a:1a:62:b1:aa:61:3d:f4:17:9e:04:4c:0f:29:bb:eb:
        d4:99:ca:fd:56:9b:7e:de:fc:a7:59:ca:fa:04:df:60:
        4d:8d:8d:62:2e:28:c2:81:85:9c:71:b7:37:d6:d6:1c
    Fingerprint (SHA-256):
        98:3C:0E:43:93:42:6A:64:C3:5C:78:B4:17:FD:39:42:92:1C:F1:48:2C:0E:07:F7:97:F0:82:D1:48:BB:B2:0D
    Fingerprint (SHA1):
        5F:11:03:17:36:61:46:2D:C4:14:4F:32:E6:4C:85:40:24:77:E0:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12425: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121305 (0x1e67d559)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:18:27 2017
            Not After : Tue May 10 12:18:27 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:62:91:c3:d1:56:f6:f5:02:a1:e1:f0:b3:a9:49:21:
                    8c:1f:d2:34:a8:c3:c8:4a:64:80:32:6a:c7:57:13:12:
                    3d:e1:d1:75:74:9e:40:e8:a9:01:ac:3b:35:a0:73:c4:
                    cf:99:74:16:bb:8f:ca:13:d3:7d:2d:02:9f:1e:8f:61:
                    26:97:76:8d:8b:0b:d7:ef:46:2a:3e:a7:62:54:dc:40:
                    df:0f:02:31:47:66:bd:a7:4f:85:71:39:c2:1c:27:0e:
                    63:29:17:46:f0:7e:8d:96:73:bd:e9:af:6b:19:56:7b:
                    cc:ed:a5:b0:04:5b:0a:98:d6:bf:8a:ee:42:e4:61:24:
                    fc:91:eb:bb:ef:77:8a:a4:4d:09:1c:66:61:f2:35:c7:
                    b0:27:7a:0d:e2:62:cd:34:3e:c7:43:a4:70:b5:60:c0:
                    4a:0c:28:9e:70:cf:ee:a4:06:d4:e3:8e:83:4e:e9:91:
                    c0:82:21:eb:9a:7d:9c:ad:cc:3b:2c:de:39:a9:70:1a:
                    a3:5f:ac:26:ed:d0:5b:e2:45:85:e2:27:9f:18:0d:ae:
                    e9:6d:4f:c4:ea:85:6c:ce:49:b3:f2:01:e1:4e:b6:24:
                    77:3c:cd:ca:e6:03:37:9a:c9:fa:bd:50:e9:af:7b:40:
                    d3:50:c2:b1:3d:55:76:4f:c7:1a:d1:a4:b2:cb:2a:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:6f:c7:2e:2d:2d:ca:df:98:f6:3a:12:f9:a6:48:5c:
        fb:f8:5e:16:0e:17:db:74:52:f0:15:4a:5c:a6:ba:50:
        e6:16:1f:3f:76:24:4f:61:c1:43:ba:29:4a:37:5a:4e:
        25:47:0c:13:e9:4a:9e:09:84:d9:51:22:5c:60:be:58:
        40:3d:46:63:8f:4b:af:8f:95:02:5b:86:d7:fe:84:9a:
        35:35:83:56:84:fd:45:70:e3:ba:f2:04:08:ec:6b:c1:
        b0:a0:22:76:ef:79:5e:6c:6e:f0:9a:40:e7:92:6d:e5:
        29:33:05:b1:6c:77:16:0b:c8:61:86:1b:d8:72:10:46:
        1f:6d:d9:f4:43:dc:bd:5c:70:f3:1d:40:8c:d2:2e:05:
        69:3e:2c:d2:0c:87:cd:3d:43:81:49:15:a0:64:85:64:
        5c:78:5a:3a:cd:8e:8c:78:34:5a:a2:35:19:5f:0b:88:
        46:35:c8:7d:dd:f1:90:1f:52:ae:fd:e2:de:19:82:43:
        92:88:72:c2:37:1a:22:2a:fe:b8:fe:c7:4e:07:54:7e:
        e6:3f:27:79:dd:bb:9d:60:77:37:28:4c:40:82:fb:64:
        79:32:0b:2f:55:e2:b9:ce:80:b2:da:08:66:94:65:e0:
        a4:de:a2:af:72:2f:ea:39:13:59:16:36:75:46:09:35
    Fingerprint (SHA-256):
        7D:2C:ED:53:19:CB:66:97:F7:06:78:2E:A9:C6:36:24:47:C3:1F:D9:4A:AB:90:0F:1A:0E:07:06:36:FB:A6:36
    Fingerprint (SHA1):
        3E:4B:0E:C9:6F:AC:A4:DA:0A:E7:4C:32:B3:99:47:38:13:40:DC:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #12426: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121301 (0x1e67d555)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:18:22 2017
            Not After : Tue May 10 12:18:22 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:a0:61:de:d3:66:da:eb:25:72:c7:aa:d0:29:ab:61:
                    51:d0:4e:ba:3d:fd:65:cc:ad:2e:67:58:bd:67:99:3f:
                    e9:a3:e5:b7:93:b8:f1:2e:25:e4:41:3c:5e:7d:7a:a3:
                    31:38:50:0e:2e:03:c8:df:e7:82:3c:3d:c3:a2:f6:0a:
                    d8:98:c9:3b:ee:90:61:d3:2d:d1:51:3c:79:02:ed:f0:
                    84:42:69:a5:05:bb:51:48:47:4a:a2:41:40:74:e4:e6:
                    93:f4:c3:68:c4:c1:02:45:e7:27:cb:86:4e:c3:fa:02:
                    f6:f6:bf:aa:55:5d:2c:3d:78:82:c7:04:52:a5:fb:29:
                    3c:98:74:80:32:1f:62:0f:4e:12:58:5b:b9:80:a6:85:
                    01:45:5d:6d:37:8a:87:b0:c3:fc:dd:25:a1:4d:8c:3c:
                    f2:86:c1:42:86:56:c4:f0:ec:26:39:55:20:b5:0b:5c:
                    b1:3a:1c:15:46:44:72:e6:a4:b4:40:a7:cb:66:99:59:
                    00:ce:20:0b:2a:4c:b1:2b:b9:2d:d3:ca:f2:f7:84:5f:
                    3f:91:16:38:99:e3:f7:6c:33:8d:ec:a9:f5:19:2a:9c:
                    a4:0b:4a:07:93:3a:54:a6:ba:48:10:e6:22:23:e0:e0:
                    d4:ca:fb:e4:0b:68:bd:b2:94:ae:25:a5:49:13:3d:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:cf:79:40:67:15:c8:9e:3a:d3:df:2d:db:3c:30:51:
        b6:4c:20:60:46:fc:b8:20:25:c1:b0:f5:a5:5a:56:18:
        aa:7f:c5:8e:78:69:4c:ad:fd:ac:06:cd:2b:b8:27:ad:
        2b:50:95:8c:73:50:cf:ad:c5:69:be:78:bd:0f:68:5f:
        a8:3c:94:0a:bb:52:42:b7:2b:97:7f:3f:be:ae:86:ab:
        e5:00:31:d0:18:81:63:7a:e6:df:ab:c8:10:ce:81:9c:
        34:21:9b:cb:75:44:74:df:1d:70:c5:53:99:2f:a3:da:
        df:57:62:d4:aa:31:88:a3:7e:31:d0:cd:96:99:1f:44:
        f7:07:83:cc:e2:1e:b5:4e:c2:65:d8:b7:3b:81:42:4b:
        ff:c1:c9:4a:f3:af:8a:48:de:3a:b8:10:3b:99:d9:96:
        e0:2b:cf:66:3a:83:44:1a:42:83:72:2b:5a:e2:a5:37:
        f0:c9:d5:df:85:49:59:26:8c:6a:06:d9:3b:5d:02:2f:
        51:97:2a:f1:6f:1e:aa:6e:35:15:c6:d3:bb:f1:1e:c8:
        7a:1a:62:b1:aa:61:3d:f4:17:9e:04:4c:0f:29:bb:eb:
        d4:99:ca:fd:56:9b:7e:de:fc:a7:59:ca:fa:04:df:60:
        4d:8d:8d:62:2e:28:c2:81:85:9c:71:b7:37:d6:d6:1c
    Fingerprint (SHA-256):
        98:3C:0E:43:93:42:6A:64:C3:5C:78:B4:17:FD:39:42:92:1C:F1:48:2C:0E:07:F7:97:F0:82:D1:48:BB:B2:0D
    Fingerprint (SHA1):
        5F:11:03:17:36:61:46:2D:C4:14:4F:32:E6:4C:85:40:24:77:E0:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12427: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #12428: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #12429: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #12430: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #12431: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #12432: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121306 (0x1e67d55a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:18:28 2017
            Not After : Tue May 10 12:18:28 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:13:f0:fc:d9:4a:8e:b1:95:66:9b:e1:39:68:53:75:
                    92:7a:96:25:68:5a:65:ff:a9:4c:0c:bf:b4:1a:8b:55:
                    94:2f:d0:39:8d:39:16:69:b2:d6:48:20:b1:c1:70:56:
                    c7:cb:b4:34:a9:a9:70:d3:36:e6:93:d4:09:22:80:06:
                    39:ce:52:1a:81:e1:37:2e:0c:aa:19:b0:74:23:bd:ce:
                    3f:e9:c0:f9:07:fa:b4:b9:b6:34:48:c5:8c:58:8d:e2:
                    71:48:dd:14:f4:39:3a:9b:e0:d5:9f:e4:9e:7c:cd:df:
                    52:60:b8:b2:da:2a:69:c3:40:7b:d6:4f:43:e8:b0:f7:
                    c1:56:bb:e4:d4:84:82:e4:dd:54:f7:78:a9:57:d6:94:
                    4d:41:01:be:b7:c1:d4:f9:ca:bf:36:d1:ae:08:e6:5f:
                    29:71:65:ad:85:f7:f2:60:60:0c:47:11:20:08:b8:76:
                    86:44:9f:25:3f:ed:ce:60:58:cc:8d:f0:5c:69:08:d7:
                    bd:84:5c:a5:a4:41:e2:3b:2e:f4:e0:5a:30:9d:38:1e:
                    32:5b:62:99:53:ca:35:e5:1b:e3:0c:88:3f:25:e7:f9:
                    2c:e2:66:31:11:50:60:36:70:ba:1a:ac:3f:e2:9b:48:
                    8f:fa:ab:b4:63:e1:ca:bd:a6:e9:40:4d:0c:7f:86:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ca:94:dc:5a:cc:95:8b:75:25:f2:08:c1:a7:5b:ee:1b:
        4c:f3:8a:11:06:77:3d:52:3f:41:8a:7a:e2:57:c4:4c:
        cc:eb:c6:a5:77:d4:28:3c:ef:77:9a:fc:c9:16:c4:bd:
        60:3d:bd:66:4f:23:8b:06:be:16:c7:6c:bc:e8:73:75:
        93:53:17:39:80:de:5d:04:82:2a:68:0e:75:f8:2f:26:
        2c:30:46:cb:28:6a:1a:cd:83:8b:f9:89:59:a5:77:5a:
        b5:6b:ab:09:05:fd:bd:63:ea:dd:d3:a0:a7:da:9c:78:
        87:77:d1:53:4b:c2:0a:ce:2c:cb:2c:4b:02:bc:eb:e8:
        5a:96:4e:7b:37:f9:f5:e1:28:d8:45:61:71:89:5a:df:
        2e:8f:67:67:42:47:85:36:84:87:f2:b7:be:c6:8a:8f:
        5e:ae:1d:e7:fa:da:fd:31:af:6c:8e:2d:71:1b:81:67:
        36:5d:94:3c:13:29:4b:2a:ae:d1:51:f0:34:f1:79:af:
        fd:26:95:fc:1e:e3:c6:cc:34:51:64:4b:b4:f9:89:d8:
        bb:2e:89:fc:22:66:65:af:50:2e:13:51:d1:bc:7a:80:
        93:38:b9:07:de:fd:ed:5f:54:64:68:03:1d:1f:b7:32:
        f3:ec:ac:ba:b0:e9:67:9b:7e:9c:9b:d3:78:fd:4f:d7
    Fingerprint (SHA-256):
        2C:1D:75:EF:91:FB:67:C7:92:AE:74:B8:48:06:EB:8D:08:95:E8:0F:E4:40:68:E2:90:BD:AC:01:95:0E:5C:FE
    Fingerprint (SHA1):
        61:67:80:08:2C:1E:26:A8:D4:C3:44:38:D2:49:5C:83:B2:CE:4A:1B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #12433: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #12434: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #12435: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #12436: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #12437: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12438: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12439: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12440: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12441: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12442: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12443: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12444: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12445: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12446: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12447: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12448: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12449: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12450: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12451: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12452: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12453: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #12454: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12455: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #12456: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 8569 at Wed May 10 12:18:37 UTC 2017
kill -USR1 8569
httpserv: normal termination
httpserv -b -p 9333 2>/dev/null;
httpserv with PID 8569 killed at Wed May 10 12:18:37 UTC 2017
TIMESTAMP chains END: Wed May 10 12:18:37 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Wed May 10 12:18:37 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Wed May 10 12:18:37 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #12457: ec(perf) test - PASSED
TIMESTAMP ecperf END: Wed May 10 12:18:37 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Wed May 10 12:18:37 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12458: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12459: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12460: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12461: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #12462: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #12463: pk11 ec tests - PASSED
TIMESTAMP ectest END: Wed May 10 12:18:39 UTC 2017
TIMESTAMP ec END: Wed May 10 12:18:39 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Wed May 10 12:18:39 UTC 2017
gtests: prng_gtest der_gtest pk11_gtest util_gtest
gtests.sh: #12464: Skipping prng_gtest (not built) - UNKNOWN
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (0 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #12465: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #12466: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #12467: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #12468: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #12469: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #12470: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #12471: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #12472: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #12473: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #12474: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #12475: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #12476: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #12477: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #12478: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #12479: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #12480: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #12481: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #12482: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #12483: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Wed May 10 12:18:40 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Wed May 10 12:18:40 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #12484: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12485: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12486: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12487: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12488: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12489: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12490: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12491: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12492: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12493: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12494: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12495: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12496: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12497: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12498: create certificate: sign  - PASSED
ssl_gtest.sh: #12499: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Wed May 10 12:18:50 UTC 2017
SUMMARY:
========
NSS variables:
--------------
HOST=localhost
DOMSUF=localdomain
BUILD_OPT=1
USE_X32=
USE_64=1
NSS_CYCLES=""
NSS_TESTS="libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests"
NSS_SSL_TESTS="crl fips_normal normal_fips iopr policy"
NSS_SSL_RUN="cov auth stapling stress"
NSS_AIA_PATH=
NSS_AIA_HTTP=
NSS_AIA_OCSP=
IOPR_HOSTADDR_LIST=
PKITS_DATA=
Tests summary:
--------------
Passed:             12483
Failed:             0
Failed with core:   0
ASan failures:      0
Unknown status:     16
TinderboxPrint:Unknown: 16
~/build/BUILD/nss-3.30.2
+ popd
+ killall selfserv_9323
selfserv_9323: no process found
+ :
+ '[' x == x ']'
++ grep -c FAILED ./tests_results/security/localhost.1/output.log
okay: test suite detected no failures
test suite completed
+ TEST_FAILURES=0
+ GREP_EXIT_STATUS=1
+ '[' 1 -eq 1 ']'
+ echo 'okay: test suite detected no failures'
+ echo 'test suite completed'
+ exit 0
Processing files: nss-3.30.2-1.1.fc26.ppc64
Executing(%license): /bin/sh -e /var/tmp/rpm-tmp.wcCXDs
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.30.2
+ LICENSEDIR=/builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/licenses/nss
+ export LICENSEDIR
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/licenses/nss
+ cp -pr nss/COPYING /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64/usr/share/licenses/nss
+ exit 0
Provides: config(nss) = 3.30.2-1.1.fc26 libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.10.2)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.1)(64bit) libnss3.so(NSS_3.11.2)(64bit) libnss3.so(NSS_3.11.7)(64bit) libnss3.so(NSS_3.11.9)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.1)(64bit) libnss3.so(NSS_3.12.10)(64bit) libnss3.so(NSS_3.12.3)(64bit) libnss3.so(NSS_3.12.4)(64bit) libnss3.so(NSS_3.12.5)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.12.7)(64bit) libnss3.so(NSS_3.12.9)(64bit) libnss3.so(NSS_3.13)(64bit) libnss3.so(NSS_3.13.2)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.1)(64bit) libnss3.so(NSS_3.14.3)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.15.4)(64bit) libnss3.so(NSS_3.16.1)(64bit) libnss3.so(NSS_3.16.2)(64bit) libnss3.so(NSS_3.18)(64bit) libnss3.so(NSS_3.19)(64bit) libnss3.so(NSS_3.19.1)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.2.1)(64bit) libnss3.so(NSS_3.21)(64bit) libnss3.so(NSS_3.22)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.3.1)(64bit) libnss3.so(NSS_3.30)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.5)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.7.1)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnss3.so(NSS_3.9.2)(64bit) libnss3.so(NSS_3.9.3)(64bit) libnssckbi.so()(64bit) libnssckbi.so(NSS_3.1)(64bit) libsmime3.so()(64bit) libsmime3.so(NSS_3.10)(64bit) libsmime3.so(NSS_3.12.10)(64bit) libsmime3.so(NSS_3.12.2)(64bit) libsmime3.so(NSS_3.13)(64bit) libsmime3.so(NSS_3.15)(64bit) libsmime3.so(NSS_3.16)(64bit) libsmime3.so(NSS_3.18)(64bit) libsmime3.so(NSS_3.2)(64bit) libsmime3.so(NSS_3.2.1)(64bit) libsmime3.so(NSS_3.3)(64bit) libsmime3.so(NSS_3.4)(64bit) libsmime3.so(NSS_3.4.1)(64bit) libsmime3.so(NSS_3.6)(64bit) libsmime3.so(NSS_3.7)(64bit) libsmime3.so(NSS_3.7.2)(64bit) libsmime3.so(NSS_3.8)(64bit) libsmime3.so(NSS_3.9)(64bit) libsmime3.so(NSS_3.9.3)(64bit) libssl3.so()(64bit) libssl3.so(NSS_3.11.4)(64bit) libssl3.so(NSS_3.11.8)(64bit) libssl3.so(NSS_3.12.10)(64bit) libssl3.so(NSS_3.12.6)(64bit) libssl3.so(NSS_3.13)(64bit) libssl3.so(NSS_3.13.2)(64bit) libssl3.so(NSS_3.14)(64bit) libssl3.so(NSS_3.15)(64bit) libssl3.so(NSS_3.15.4)(64bit) libssl3.so(NSS_3.2)(64bit) libssl3.so(NSS_3.2.1)(64bit) libssl3.so(NSS_3.20)(64bit) libssl3.so(NSS_3.21)(64bit) libssl3.so(NSS_3.22)(64bit) libssl3.so(NSS_3.23)(64bit) libssl3.so(NSS_3.24)(64bit) libssl3.so(NSS_3.27)(64bit) libssl3.so(NSS_3.28)(64bit) libssl3.so(NSS_3.30)(64bit) libssl3.so(NSS_3.30.0.1)(64bit) libssl3.so(NSS_3.4)(64bit) libssl3.so(NSS_3.7.4)(64bit) nss = 3.30.2-1.1.fc26 nss(ppc-64) = 3.30.2-1.1.fc26
Requires(interp): /bin/sh /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): /bin/sh /usr/sbin/update-alternatives
Requires(postun): /bin/sh /usr/sbin/update-alternatives
Requires: libc.so.6()(64bit) libc.so.6(GLIBC_2.3)(64bit) libc.so.6(GLIBC_2.3.4)(64bit) libc.so.6(GLIBC_2.4)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.1)(64bit) libnss3.so(NSS_3.11.2)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.3)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.19.1)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.21)(64bit) libnss3.so(NSS_3.22)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.3.1)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.12.3)(64bit) libnssutil3.so(NSSUTIL_3.12.5)(64bit) libnssutil3.so(NSSUTIL_3.13)(64bit) libnssutil3.so(NSSUTIL_3.14)(64bit) libnssutil3.so(NSSUTIL_3.15)(64bit) libnssutil3.so(NSSUTIL_3.17.1)(64bit) libnssutil3.so(NSSUTIL_3.21)(64bit) libnssutil3.so(NSSUTIL_3.24)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.3)(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
Conflicts: firefox < 50.1.0-3 seamonkey < 2.46-2 thunderbird < 45.6.0-5 xulrunner < 44.0-9
Processing files: nss-tools-3.30.2-1.1.fc26.ppc64
Provides: nss-tools = 3.30.2-1.1.fc26 nss-tools(ppc-64) = 3.30.2-1.1.fc26
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: libc.so.6()(64bit) libc.so.6(GLIBC_2.3)(64bit) libc.so.6(GLIBC_2.3.4)(64bit) libc.so.6(GLIBC_2.4)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.7)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.1)(64bit) libnss3.so(NSS_3.12.3)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.12.9)(64bit) libnss3.so(NSS_3.13)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.1)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.16.1)(64bit) libnss3.so(NSS_3.16.2)(64bit) libnss3.so(NSS_3.18)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.30)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.5)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnss3.so(NSS_3.9.2)(64bit) libnss3.so(NSS_3.9.3)(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.12.7)(64bit) libnssutil3.so(NSSUTIL_3.15)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.3)(64bit) libsmime3.so()(64bit) libsmime3.so(NSS_3.10)(64bit) libsmime3.so(NSS_3.2)(64bit) libsmime3.so(NSS_3.3)(64bit) libsmime3.so(NSS_3.4)(64bit) libsmime3.so(NSS_3.6)(64bit) libsmime3.so(NSS_3.9.3)(64bit) libsoftokn3.so()(64bit) libssl3.so()(64bit) libssl3.so(NSS_3.12.6)(64bit) libssl3.so(NSS_3.13.2)(64bit) libssl3.so(NSS_3.14)(64bit) libssl3.so(NSS_3.15)(64bit) libssl3.so(NSS_3.15.4)(64bit) libssl3.so(NSS_3.2)(64bit) libssl3.so(NSS_3.20)(64bit) libssl3.so(NSS_3.22)(64bit) libssl3.so(NSS_3.24)(64bit) libssl3.so(NSS_3.27)(64bit) libssl3.so(NSS_3.4)(64bit) libssl3.so(NSS_3.7.4)(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
Processing files: nss-sysinit-3.30.2-1.1.fc26.ppc64
Provides: libnsssysinit.so()(64bit) nss-sysinit = 3.30.2-1.1.fc26 nss-sysinit(ppc-64) = 3.30.2-1.1.fc26 nss-system-init
Requires(interp): /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): coreutils sed
Requires: /bin/sh libc.so.6()(64bit) libc.so.6(GLIBC_2.3)(64bit) libc.so.6(GLIBC_2.4)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.14)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) rtld(GNU_HASH)
Processing files: nss-devel-3.30.2-1.1.fc26.ppc64
Provides: nss-devel = 3.30.2-1.1.fc26 nss-devel(ppc-64) = 3.30.2-1.1.fc26 nss-static = 3.30.2-1.1.fc26 pkgconfig(nss) = 3.30.2
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: /bin/sh /usr/bin/pkg-config pkgconfig(nspr) >= 4.14.0 pkgconfig(nss-util) >= 3.30.2
Processing files: nss-pkcs11-devel-3.30.2-1.1.fc26.ppc64
Provides: nss-pkcs11-devel = 3.30.2-1.1.fc26 nss-pkcs11-devel(ppc-64) = 3.30.2-1.1.fc26 nss-pkcs11-devel-static = 3.30.2-1.1.fc26
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Processing files: nss-debuginfo-3.30.2-1.1.fc26.ppc64
Provides: nss-debuginfo = 3.30.2-1.1.fc26 nss-debuginfo(ppc-64) = 3.30.2-1.1.fc26
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Checking for unpackaged file(s): /usr/lib/rpm/check-files /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64
Wrote: /builddir/build/RPMS/nss-3.30.2-1.1.fc26.ppc64.rpm
Wrote: /builddir/build/RPMS/nss-tools-3.30.2-1.1.fc26.ppc64.rpm
Wrote: /builddir/build/RPMS/nss-sysinit-3.30.2-1.1.fc26.ppc64.rpm
Wrote: /builddir/build/RPMS/nss-devel-3.30.2-1.1.fc26.ppc64.rpm
Wrote: /builddir/build/RPMS/nss-pkcs11-devel-3.30.2-1.1.fc26.ppc64.rpm
Wrote: /builddir/build/RPMS/nss-debuginfo-3.30.2-1.1.fc26.ppc64.rpm
Executing(%clean): /bin/sh -e /var/tmp/rpm-tmp.B8QGGW
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.30.2
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.ppc64
+ exit 0
Child return code was: 0